No one actually knows how RSA are carrying out their database attacks yet, hence the reason I called for clarity on the issue. But I really am suspect about the exact technical setup of the attacks that the RSA are carrying out against fake logins and their databases. Theres no way however they could carry out world wide attacks on hundreds of fake login targets, without the use of more than one ip host. And whats the definition of a bot network, isn't it more than one computer used to send data? In which case you would need to define the RSA as using a bot network to send their fake raw data to fake world wide phishing targets. And if they are, is it ok for everyone else to join in. No I didn't say I had a botnet, and I didn't say I was attacking anything, all I asked was for RSA to clarify their stance, to make it clear that its ok or not ok for everyone to join in the attacks they recommended via the Cnet news article as a good method to beat phishers.
<br><br>
<div><span class="gmail_quote">On 4/1/06, <b class="gmail_sendername">Morning Wood</b> <<a href="mailto:se_cur_ity@hotmail.com">se_cur_ity@hotmail.com</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">>*while RSA are carrying out these attacks, is it legally OK for hackers to<br>>"HELP OUT" the RSA by pointing a few of our bot net's at some Yahoo and
<br>>eBay<br>>fake login web pages that we know about and feed them with fake username<br>>and<br>>password data. We don't want to end up in jail, but since the RSA are doing<br>>it, so we can tell our lawyers that the RSA recommended the tactic to us.*
<br>>*Much regards,*<br>>*n3td3v international security group*<br><br>so... the "n3td3v group" has "a few [of our ] botnets" did I hear this<br>right? ( *blink* )<br>somehow I dont think RSA is using "botnets", which BTW are ILLEGAL in *most*
<br>countries<br>( yes, including your precious UK )<br><br>I just want to thank the biggest security group ( lol ) for using teh<br>botz!!!<br>I am sure Yahoo-Inc, Google, EBay, Microsoft and FooBarBlehCo will thank<br>you publicly on CNN so we will know how n3td3v group saved us all with
<br>botnets!!!<br><br>thanks b0td3v gr0upz,<br>MW<br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/">http://secunia.com/</a><br></blockquote></div><br>