[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ids
Subject:    IDS: Re: Re: Re: NAI & McAfee hacked.
From:       "bacano" <bacano () esoterica ! pt>
Date:       2000-12-17 11:09:23
[Download RAW message or body]

Archive: http://msgs.securepoint.com/ids
FAQ IDS: http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm
FAQ NIDS: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems... email questions to ids-owner@uow.edu.au
NOTE: Remove this section from reply msgs otherwise the msg will bounce.
SPAM: DO NOT send unsolicted mail to this list.
UNSUBSCRIBE: email "unsubscribe ids" to majordomo@uow.edu.au
-----------------------------------------------------------------------------
Of course the problem is not only based in Brazil, thats not the point, the
point is that NAI as a security vendor, and having in their products not
only IDS but other kind of security applications, did they let that ISP
without the proper protection? or were they protected with NAI products and
that wasnt enough? if so, was it a software problem or a humanware problem?
IMHO, NAI must clarify that properly or else this episode can stole them
some customers.

Jaspion's concerns rise other interesting question, should we trust in
security vendors site mirrors? are they secure as the main site? or can we
ask, is the main site as weak as the mirrors?

But as Andy pointed out, Eeye was hit on the primary site, so probably this
is not even a 'mirrors issue'. The nasty question is: are security vendors
secure? seems not ...

Just as a side note, while Microsoft and NAI hits dont take my sweet sleep
... Eeye defacement had broke my heart, as much as the Metallica defacement
... its a religious issue here :P~

[  ]'s bacano

P.S. - i wonder if Marc will start a holly war? you know i'm here!! eheheh


----- Original Message -----
From: "Jaspion Research Protection" <jaspion@dicas.org.br>
To: <ids@uow.edu.au>
Sent: Saturday, December 16, 2000 2:13 PM
Subject: IDS: Re: Re: NAI & McAfee hacked.


> Archive: http://msgs.securepoint.com/ids
> FAQ IDS: http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm
> FAQ NIDS: http://www.ticm.com/kb/faq/idsfaq.html
> IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
> HELP: Having problems... email questions to ids-owner@uow.edu.au
> NOTE: Remove this section from reply msgs otherwise the msg will bounce.
> SPAM: DO NOT send unsolicted mail to this list.
> UNSUBSCRIBE: email "unsubscribe ids" to majordomo@uow.edu.au
> --------------------------------------------------------------------------
---
> Not just on Brazil, but all around the world we can find a lot of
> enterprises that make mirrors in a lot of ISP's to make a faster
connection.
> This strategy works fine, but we can find a lot of ISP's without any
> security structures. Neither a single IDS were found in major number of
> enterprises or ISP's that are avaiable on Internet.
> Unfortunally, just since last 2 years they are looking a little more to
this
> security issues.
> Microsoft and NAI were just a little part of the big hole. And we all know
> that another enterprises, as finantial ones, have this strategy too.
>
> Best Regards,
> Jaspion
>
> ----- Original Message -----
> From: "bacano" <bacano@esoterica.pt>
> To: <ids@uow.edu.au>
> Sent: Friday, December 15, 2000 7:50 PM
> Subject: IDS: Re: NAI & McAfee hacked.
>
>
> > Hi2all
> >
> > The brazilian site of NAI never followed the standarts of the 'mother'
> site,
> > so in the first place NAI should give a better look at their partners
> around
> > the globe, before blame some ISP. For example, products that usually
need
> a
> > registration from the user before somebody could download them, were
> allways
> > available in the .br site, just with the usual click in the download
link.
> I
> > cant say its a surprise, at least for me, that many other things were
> (are?)
> > exposed.
> >
> > [  ]'s bacano
> >
> > P.S. - and as we all know, the history repeats it self ...
> > http://www.attrition.org/mirror/attrition/2000/12/14/www.microsoft.si/
> >
>
>

[prev in list] [next in list] [prev in thread] [next in thread]