/prog/ - anti-sex: OpenSSH <= 5.2 zero day exploit

Name: Anonymous 2009-07-20 6:53

In 48 hours, the anti-sec movement will publicly unveil working exploit code and full details for the zero-day OpenSSH vulnerability we discovered. It will be posted to the Full-Disclosure security list.

Anyone think there's some credibility in this claim? Or do they just troll for amusement value?

Name: Anonymous 2009-07-20 7:00

I thought they were anti full-disclosure. Assuming they do it, doesn't that make them hypocrites?

Name: Anonymous 2009-07-20 7:03

In before the exploit code being 0x59 0x48 0x42 0x54.

Name: Anonymous 2009-07-20 7:05

They could ``unveil'' it in a practical way, such as hacking some high profile servers. Personally I think it's a troll, but if it's real, this could have large impact, such as the appearance of one of the biggest *nix botnets ever, and we know that something like that could do a lot more damage(high bandwidth) than any windows-based ones.

Name: Anonymous 2009-07-20 7:21

>>4
But it does say that they will give full details, and that the vulnerability will be posted.

Name: Anonymous 2009-07-20 8:27

>>5 You should know that the most systems are hosted without anyone caring about the security... an exploit would take years to be out of the internet until then ... WE ARE ALL DOOMED!!

Name: Anonymous 2009-07-20 8:29

>>6
Hi Nostradamus

Name: Anonymous 2009-07-20 8:31

>>2
I thought they were anti full-disclosure. Assuming they do it, doesn't that make them hypocrites?
I think they are going to demonstrate why full disclosure can be bad.

Name: Anonymous 2009-07-20 8:34

Well whatever, I'll just drop ssh packets and employ port knocking for now. I'll be rather annoyed when this whole thing turns out fake, since I wasted about two hours of my time on this.

Name: Anonymous 2009-07-20 8:47

>>8
That's the idea, but I still think it's hypocritical.

Name: Anonymous 2009-07-20 9:21

It is hypocritical. They're assholes.

Name: Anonymous 2009-07-20 10:23

Something's seriously off with these guys. To begin with, if I had an undiscovered SSH remote exploit, I'd be making millions with it right now, instead of playing child games by rm -rf'ing unimportant targets.

Name: Anonymous 2009-07-20 11:57

>>12
I'd be making millions with it right now
And just how would you do that? Also, I bet it'd be illegal.

Name: Anonymous 2009-07-20 12:09

iptables -L

ACCEPT    tcp -- 1.1.1.1    anywhere
DROP    tcp -- anywhere    anywhere
DROP    udp -- anywhere    anywhere
DROP    icmp -- anywhere    anywhere

No sploitan for them.

Name: Anonymous 2009-07-20 12:18

>>8
>>8
>>9
>>10
>>11
>>12
>>14
back to /g/ or /b/, please.

Name: Anonymous 2009-07-20 12:21

This is FUD

Name: Anonymous 2009-07-20 13:06

>>15
Go back to sucking your mother's cock please.

Name: Anonymous 2009-07-20 13:47

>>17

Its obvious, however I thought I'd write it anyway: mother - woman doesn't have a dick as a genital(s). for further reading go here http://en.wikipedia.org/wiki/Sex_organ

Name: Anonymous 2009-07-20 13:50

>>15
Please optimise your quotes!!:
>>8,8-14

Name: Anonymous 2009-07-20 17:44

if they really had an openssh zero-day exploit, they wouldn't be running their idiotic brute-force attack against my ssh server.

Name: Anonymous 2009-07-20 18:02

>>19
why he quote me twice ;_;

Name: Anonymous 2009-07-20 18:11

>>21
Oh, don't worry, he's just a big bully. :)

Name: Anonymous 2009-07-20 18:12

http://www.theregister.co.uk/2009/07/20/anti_sec_spoof/

Name: Nostradamus 2009-07-20 18:56

And what if the big bang happens? Oh I would love the dawn of the internet as we know it! I would realy appreciate a real web 3.0, with modular hubs. Am i know a doom day cult member?

Name: Anonymous 2009-07-20 19:06

>>18
Go back to fucking your mothers fat cock you faggot cock. Cock cock cock cock cock cock faggot.

Name: Anonymous 2009-07-20 19:26

Lulz it was a pretty good joke eh? Anti-Sec is awesome because we can make jokes under its name. whoever Anti-Sec is are awesome.

Faggots.

Name: Anonymous 2009-07-20 21:40

The general response on the Full Disclosure mailing list has been fucking stupid. I'd rather read shitty VX e-zines.

Name: Anonymous 2010-12-06 9:30

^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^{^Ba}c}k}}t}o}}/}b}/},}}`}`}G}N}A}A}}F}a}g}g}o}t}'}'}

anti-sex: OpenSSH <= 5.2 zero day exploit

1 Name: Anonymous 2009-07-20 6:53

2 Name: Anonymous 2009-07-20 7:00

3 Name: Anonymous 2009-07-20 7:03

4 Name: Anonymous 2009-07-20 7:05

5 Name: Anonymous 2009-07-20 7:21

6 Name: Anonymous 2009-07-20 8:27

7 Name: Anonymous 2009-07-20 8:29

8 Name: Anonymous 2009-07-20 8:31

9 Name: Anonymous 2009-07-20 8:34

10 Name: Anonymous 2009-07-20 8:47

11 Name: Anonymous 2009-07-20 9:21

12 Name: Anonymous 2009-07-20 10:23

13 Name: Anonymous 2009-07-20 11:57

14 Name: Anonymous 2009-07-20 12:09

15 Name: Anonymous 2009-07-20 12:18

16 Name: Anonymous 2009-07-20 12:21

17 Name: Anonymous 2009-07-20 13:06

18 Name: Anonymous 2009-07-20 13:47

19 Name: Anonymous 2009-07-20 13:50

20 Name: Anonymous 2009-07-20 17:44

21 Name: Anonymous 2009-07-20 18:02

22 Name: Anonymous 2009-07-20 18:11

23 Name: Anonymous 2009-07-20 18:12

24 Name: Nostradamus 2009-07-20 18:56

25 Name: Anonymous 2009-07-20 19:06

26 Name: Anonymous 2009-07-20 19:26

27 Name: Anonymous 2009-07-20 21:40

29 Name: Anonymous 2010-12-06 9:30