Re: panix.com hijacked - cypherpunks-legacy - lists.cpunks.org

newer
FW: Securing Wireless Apps in...

Re: panix.com hijacked

older
Austrac beefs up for e-crime fight

R.A. Hettinga

16 Jan 2005 16 Jan '05

6:13 p.m.

--- begin forwarded text

Reply

Sign in to reply online Use email software

Show replies by date

Justin

18 Jan 18 Jan

10:59 p.m.

New subject: panix.com hijacked

On 2005-01-16T09:46:28-0500, R.A. Hettinga wrote:

On Sun, 16 Jan 2005 Valdis.Kletnieks@vt.edu wrote:

...
On Sun, 16 Jan 2005 01:32:46 EST, Henry Yen said:

...
. panix.net usable as panix.com (marcotte) Sat Jan 15 10:44:57 2005

So let's see.. the users will see this when they log into shell.panix.net (since shell.panix.com is borked). Somehow that doesn't seem to help much.

and the hijackers could be, potentially, running a box pretending to be shell.panix.com, gathering userids and passwds :(

Object lesson in why using replayable passwords is not a good idea. Allah invented nonce-based password hashes and public key crypto for a reason. -- "War is the father and king of all, and some he shows as gods, others as men; some he makes slaves, others free." -Heraclitus Kahn.83/D-K.53

Reply

Sign in to reply online Use email software

7278

Age (days ago)

7280

Last active (days ago)

Download

1 comments

2 participants

tags

participants (2)

Justin
R.A. Hettinga