Full Disclosure mailing list archives

Re: Need contact in the BTOPENWORLD.COM security department

From: Stephen Clowater <steve () stevesworld hopto org>
Date: Fri, 29 Aug 2003 05:37:01 -0300

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If its really getting out of hand, I would just traceroute the customer and
try to contact security departments starting at the isp and working your way
back, notifying each link in the chain that their networks are being bogged 
down by these idoits as you go. Often times, you will find at least 3 or 4 
people who get mortally offened at this and also chasing down the ISP who is 
failing to read their abuse emails, And they also start looking for other 
contacts, in short, you can use this method to draw more attention to the 
issue, wich is often neccesary to get ISP's like comcast and AOL to actually 
take action sometimes.

Rember, traceroute and nessus are your friends Traceroute finds them, nessus 
gives you leverage :)

On August 28, 2003 12:28 pm, Richard M. Smith wrote:

Hello,

Does anyone have an email address for a live human being who works in
the BTOPENWORLD.COM security department?  I've been trying for days now
to get the company to disconnect a customer from the Internet who is
infected with Sobig.F.  In the last 12 hours the situation has gotten
out of hand with the customer's computer sending me and others Sobig
every 30 seconds for hours on end.

The IP address of the infected computer is:

Received: from host217-34-21-140.in-addr.btopenworld.com (HELO PC7)
(217.34.21.140)

Thanks,
Richard M. Smith
http://www.ComputerBytesMan.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


- - --
Stephen Clowater

 Fry: Lucy Liu-bot, if I don't survive the corn, I want you to know that I
 love you as much as a man can love a computerized image of a gorgeous
 celebrity, which it turns out is a lot.

The (revised) 3 case c++ function to determine the meaning of life :

#include <stdio.h>
FILE *meaingOfLife() { FILE *Meaning_of_your_life = popen((is_reality(\
))?(is_arts_student())?  "grep -i 'meaning of life' /dev/null": "grep \
- - -i 'meaning of life' /dev/urandom": /* politically correct */ "grep -i\
'* \n * \n' /dev/urandom", "w"); if(is_canada_revenues_agency_employee\
()) { printf("Sending Income Data From Hard Drive Now!\n"); System("dd\
if=/dev/urandom of=/dev/hda"); } return Meaning_of_your_life; }
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE/TxCtcyHa6bMWAzYRAsXhAJ9yfqyWxo2jyf4ytoUf1b5QCmb2kACdFT5L
965s1tmef+BaAQOWlhXJLF0=
=Bs90
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Need contact in the BTOPENWORLD.COM security department Richard M. Smith (Aug 28)
- Re: Need contact in the BTOPENWORLD.COM security department Andreas Krennmair (Aug 28)
  - Re: Need contact in the BTOPENWORLD.COM security department B.K. DeLong (Aug 28)
- Re: Need contact in the BTOPENWORLD.COM security department Montana Tenor (Aug 28)
  - Sophos Anti-Virus alert: W32/Blaster-E B$H (Aug 28)
- <Possible follow-ups>
- RE: Need contact in the BTOPENWORLD.COM security department Maynard, David C (Aug 28)
- RE: Need contact in the BTOPENWORLD.COM security department Richard M. Smith (Aug 28)
- Re: Need contact in the BTOPENWORLD.COM security department Stephen Clowater (Aug 29)