[nylug-talk] Increased amount of port hacking attempts

Tue Dec 4 08:11:30 EST 2007

Gregg Levine wrote:

> Here's a funny one, (funny meaning peculiar) on my ISP's news spaces
> over the weekend was this bit of news, http://tinyurl.com/3a7kkp .
> And  if nothing else it manages to confirm my comments earlier in this
> thread. And it describes what I happen to think about that country. I
> wonder if our CIA gang is pursuing the same line of dirty tricks? It
> also confirms my earlier theories concerning the firm mentioned in the
> news blurb.
> 

At this point, anything coming out of AT&T's Naurus laced networks
in my eyes would be moot. Secondly things coming out of security
vendors' mouths/spokesgoons are to be taken with a grain of salt.
"We've notice increasing attacks from Pokemon around the world but
we definitely have the right product to stop it."

This whole cyber cold war crapaganda isn't anything new. The US
started its JTF-CND after "Solar Sunrise" concluded the same
exact thing they're seeing now - a rise in alleged "hacker"
attempts. The thing to take note of here is that, its easy to
blame a country for attacks but what the vendor (Crapafee) fails
to remind people is that, China's networks are heavily infested
with crapware, malware, scumware. So to be diplomatically correct
it should have been iterated as "attacks seems to be coming from
China" instead of "the Chinese government".

While I'm sure the Chinese government does do the do as does
every other country, its not that difficult for some curious
teen to compromise hundreds, thousands of hosts in say China and
then use them to traverse back into the US for something as
innocuous as "alien searching" as did NASA script kiddiot
Gary McKinnon (http://en.wikipedia.org/wiki/Gary_McKinnon).

In the mid to late 90's, government servers were compromised
by the hundreds by idiots wanting to replace index.html with
echo "my name here" > index.html. What I find appalling is the
fact that we spend our tax dollars on defense, billions of
dollars and they never seem to get it right. Is it because
they don't want to. How much easier is it to leave a machine
vulnerable here and there and come up with the same arguments
quarter after quarter: "Hackers! Pesky hackers from Zimbabwe
are after you great American taxpayer, therefore we're going
to need to increase the budget by umteenjillion dollars for
more firewalls, IDS', IPS' and some golf balls." I don't buy
the majority of it for a second. 

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
J. Oquendo
SGFA #579 (FW+VPN v4.1)
SGFE #574 (FW+VPN v4.1)

echo c2lsQGluZmlsdHJhdGVkLm5ldAo=|\
python -c "import sys; print sys.stdin.read().decode('base64')"

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xF684C42E