Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
News

Harvard's response to the Packet Storm incident 207

Harvard University News Office wrote in with their response to the whole Packet Storm ordeal. Hit the link below to read more, but it looks as if Harvard is returning the backups, but no longer hosting the site.

As a service to the Internet community, Harvard agreed to host a Packet Storm Security Website for security-related materials only. Without Harvard's knowledge, unrelated content was put on the Harvard server, including sexually-related material and personal attacks on an individual not affiliated with the University. A Harvard administrative site focused on security issues is not the forum for this type of material. We are returning the content on the site and hope that Packet Storm will make its security tools available through its own Website.

Joe Wrinn
Director, Harvard News Office
1350 Massachusetts Ave., Rm. 1060
Cambridge, MA 02138
Phone: 617-495-1585
Fax: 617-495-0754
joe_wrinn@harvard.edu

This discussion has been archived. No new comments can be posted.

Harvard's response to the Packet Storm incident

Comments Filter:
  • by Anonymous Coward
    Dare ./'ers to do what?

    Don't be foolish. PacketStorm had *nothing* to do with porn, and Ken is not a "kid" who no one is willing to host. Instead of making groundless claims, why don't you check http://packetstorm.nl.linux.org/ and actually look at the content.
    [this is where PacketStorm readers have started reconstructing the site from the things they downloaded]

    I went to Ken's site every day
    to check for the latest vunerabilities that would affect the servers I admin @ work. So did every other admin who cares about security.
  • by Anonymous Coward
    Well, there was no smut on the site. As far as anti-jp material, yes, there was a parody /jp directory. If memory serves, it was actually started after JP threatened to sue another site, http://www.innerpulse.org for having a parody of him. Ken decided to mirror the Innerpulse material, with their full permission, and may or may not have had a anti-JP page previous to that. Unlike JP, whose recent 'WhoRU' article stole copywritten photographs from all over the Net. Not links to the photographs, mind you. The actual photos themselves. Of course, JP won't talk about it.

    The reason Ken had an anti-JP page, quite frankly, is because he didn't like JP. JP, contrary to the image he likes to portray, is nothing more than an obnoxious little IRC packet warrior that has a web site. Ken made fun of him, and he got his revenge. Now, one wonders how much success he'll have against some of the other websites that mock him. http://www.antioffline.com comes to mind. Then again, one wonders how much success his little tattle-tale-I'll-turn-you-in business will have now that no one....NO ONE....in the mainstream OR underground will talk to him.

    CString
  • by Anonymous Coward
    You may want to check out

    www.opensec.net

  • by Anonymous Coward
    I agree 100% with your comments about JP but everything you said also applies to Ken Williams. He decided to use his security site as a platform to publish crap about soneone else and then tried to blame JP for his site being removed. Next, he and his coherts at crackernews.com go on to claim Harvard destroyed all of the security related files (which can be found in the BugTraq archives [securityfocus.com]) but they manage to "recover" the infamous /jp/ directory and place it online [genocide2600.com]. I certianly see where Ken's priorities are now! He, like JP and many others in the "hacker" community has chosen to spend more of his time trying to destroy specific people rather than help the community as a whole. The strangest part of this whole situation is that even after Ken's little game [slashdot.org] has been exposed, people still try to defend him.
  • by Anonymous Coward
    If they didn't give back the data, he could technically sue them for witholding copytrighted material against the wishes of the owner of the material. Recent protections of the copyright laws have basically said that you don't even have to include the copyright symbol on a documet. If you create it, it's automatically copyrighted.
  • by Anonymous Coward
    It is understandable that there are misunderstandings.

    Conflicts will persist.

    The truth is out there.

    Perpetuating FUD is BAD!

    Kevin and those who rally around him like a circle of vultures should take a breather and try to understand how they were indeed libelous and displaying sexually explicit content at the expense of others. It is understandable that these actions may have seemed innocent and in good fun at the time, but really, everyone needs to grow up and respect people as people. At risk of sounding moralistic: learn to forgive! Open development is based on people's willingness to recognize faults and work towards fixing them. The random emotional outbursts from people like 'kevlar' are a bit reactionary and not based on anything but rage.

    AntiOnline needs to do a little bit more of the same type of constructive forgiveness. A polite message to Kevin before going to Harvard would have been more appropriate. This can be tough. But, if Kevin couldn't be taught to provide a little more respect, then further action could ensue. Strongarming is not allowed in football, and it shouldn't be in used in general.

    To the rest of the community: learn from all of this--you never know when you'll step on somebody else's toes. If you do know, learn how to minimize it. Also, learn to read the content behind the emotion. My use of 'strongarming' above could be considered by some as 'exagerated', and by others as 'too weak' (and to still others, an odd reference).


    Try walking in someone else's shoes. --To Kill a Mockingbird (paraphrased?)


    The General Debugger
  • by Anonymous Coward
    http://www.genocide2600.com/jp/ [genocide2600.com]

    They "lost" all backups of the security archive but managed to keep that directory! My new formula:

    Antionline=Packetstorm
  • by Anonymous Coward on Friday July 02, 1999 @03:33AM (#1821457)


    PacketStorm Is Shut Down
    An AntiOnline Editorial
    Thursday , July 01 1999

    Apparently for some time now, PacketStorm Security, a popular underground collection of security related tools and information, has been maintaining a vast archive of
    materials about AntiOnline. These materials included entire stories, copies of the weekly mailbag, e-mails, and other materials copyrighted by AntiOnline LLP.

    On top of that, and what was far more serious, the site contained dozens and dozens of items which included: e-mails, messages, documents, images, and even public
    surveys. These materials were libelous, and in some cases, were blatant threats against members of my immediate family, myself, and my company.

    While I value the right to free speech as much, if not more, than the average American, I do not believe in individuals posting threatening and harassing documents
    about another individual, and their family members. It was for this reason, and no other, that I contacted Harvard University, which was hosting the PacketStorm
    Website, and requested that it be shut down. I did not threaten legal action, but simply directed University Administration to the website, for them to view, and to judge,
    on their own. Below is a copy of that letter:

    Greetings:

    May I first say that I did my best to see that this letter got sent to the appropriate individuals. I had some difficulty determining who those individuals may be, so if I
    have made an error, I would greatly appreciate it if you would forward this letter on to the appropriate individual(s).

    My name is John Vranesevich, and I am the Founder and General Partner of AntiOnline LLP, a computer security company based outside of Pittsburgh, PA.

    Earlier today, one of my colleagues forwarded me the following URL:

    http://packetstorm.harvard.edu/jp/

    Needless to say, I was shocked and outraged at what I saw. This page contains a large archive of libelous and, to put it bluntly, sick material. Everything from archives
    of copyrighted material from our website, to altered pictures of my family, to 'stories' about me which contain images ranging from people engaged in homosexual
    activities, to a nun that appears to be covered in seminal fluid.

    I am astounded that an institution as prestigious Harvard would be party to the dissemination of this type of material. It is my hope that the University Administration
    was unaware of this site, and now that it has been brought to their attention, it is my hope that it will be dealt with promptly.

    I have worked to help several educational institutions develop 'Acceptable Use Policies', and if Harvard is similar to them, the above URL would be a clear violation
    of that policy.

    It is my hope that the above mentioned domain will be shut down immediately, and that the individual responsible will be seriously reprimanded.

    I hope to hear from you soon about this matter, and what you may have done regarding it.

    Yours In CyberSpace,
    John Vranesevich
    Founder, AntiOnline


    Tonight, Ken Williams, the founder of Packet Storm Security, released a letter to the public. The letter read in part:

    Funny how I spent the past few years donating my time, literally thousands of hours, to "the security community", never making even a penny off the time and work I
    invested, and have now lost it all because some asshole named John Vranesevich is able to make a quick phone call, fabricate absurd stories about criminal activity
    and bullshit I never did, and effectively ruin years of work, my education, my career, my life.

    Ken, I know what it's like to dedicate many, many, thankless hours into a project, believe me. But, you did not loose your site because of me, you lost it because of you. I
    could not stand by and watch your site be used as a platform to harass and threaten my family, myself, and the business which I have worked hard to start. While you,
    and others who 'follow you' may criticize me for what I did, I think everyone that's reading this, who has family members that they love, and a career that they enjoy,
    will admit to themselves that if in my shoes, they would have done at least the same. I hold absolutely no grudge towards you as a person, and I hope that you have the
    best of success in all that you do.

    Due to the types of threats that I have been receiving, and that sites like PacketStorm have been propagating, local law enforcement agencies were put on alert, and
    began doing extensive extra patrolling of the residence of my family members, my own residence, and the AntiOnline Offices. I realize that the actions that I have taken
    against PacketStorm may greatly increase the immediate threat against my family, myself, and my company; and that the harassment will now only get worse. However,
    I will not allow my family, myself, nor my company to become a victim. I am standing my ground, and will continue AntiOnline's mission of putting an end to malicious
    hackers.

    People in this country have the right to say and do whatever they please, unless that is, what they say and do infringes on the rights of another - anonymous.

    Yours In CyberSpace,
    John Vranesevich
    Founder, AntiOnline
  • by Anonymous Coward on Friday July 02, 1999 @04:08AM (#1821458)
    Here's the story as I heard it from Harvard's unofficial side of things.

    They received an email about this /jp directory, so someone cruised over there, saw what was there and shut down HTTP access until things could get straightened out.

    Remember, Harvard was hosting the site as a favor to the creator and the community. It WAS an extremely popular site and was sucking up huge amounts of bandwidth, but it was deemed worthwhile.

    So, while the issue was being investigated, (and from what I understand, the assumption was that there'd be some discussion about removing the offending material and hopefully PacketStorm would be back up shortly) Ken started this flame attack on Harvard, and communities such as this one completely accepted what he said at face value.

    Suddenly Harvard, which was trying to do a Good Thing by hosting the site, was turned into the bad guy and being flamed across the net.

    So they figured "Screw this" and told Ken to take his files and find somewhere else to host the site.

    There was NEVER any intention of destroying the files, and with a bit of thought you should understand why. Even if Harvard was some malicious beast in this event, they'd still want the files to back up their allegations, right?

    ------

    I know you won't believe this, since I'm not one of you. But that's the 'unofficial' story.

    This event triggered my first visit to the slashdot forums, and frankly I was stunned by how many people took Ken's letter as total truth (ie, the big organization is stomping the poor little guy angle) but when the big organization responds, they're clearly lying.

    Weird

    Flame away.
  • Well, as I understand it, the /jp directory was on the Genocide2600 server before this whole fiasco began, and was placed there by someone at Genocide2600 is response to people asking questions about JP.
  • How about a recap? Antionline has been refusing connections for me. Yesterday their nameservers were down, now this...
  • First, we need to ask: Was the offensive material really there?

    If not, then Harvard and JP are at fault.

    If so, then: Was the offensive material there before Harvard offered to host the site?

    If it was, then Harvard is at fault, either for pulling the site or for offering to host it in the first place knowing what was there.

    If it wasn't, then Ken is at fault for placing the material there.
  • So your analogy is mute.

    It's "moot", Sparky. Irregardless ;-)
  • All that really counts here is that Harvard is returning the data.

    Yeah, the rest of the incident shows them to be completely spineless. So? Hey, as an ISP they have a right to yank anybody's web site if they want too; in this case, at least Packet Storm can go back up.

    ----

  • traceroute uses UDP packets by default I believe. Though it does have an ICMP ECHO option. Of course UDP and the default traceroute ports can always be blocked too.
  • Posted by !ErrorBookmarkNotDefined:

    Oy. When is this boy going to learn the difference?
    Ooops. I believe I just "slandered" him.
    There's something about this whole proceeding that reminds me of the Kennedy assassination.

    -----------------------------
    Computers are useless. They can only give answers.
  • Except that Harvard is not an ISP, its a University. Where freedom of speech is supposed to be sacred and protected. This just demonstrates that Harvard has no spine and only holds that ideal up when it suits them. Political Correctness at its finest.
    --
    Python
  • that someone hacked into and planted a new directory on the server for a security site . . .
  • Permission was granted to use a machine to run a security site, and the maintainer used it for other purposes. I'm not a member of the bar in that state, but in several others, this additional use would be theft of compter services--by a security site . . .
  • In common use around here, FUD has taken on a broader meaning - something said that isn't "politically correct" or something the speaker disagrees with.
  • I doubt Harvard ever intended to do that. They might have implied it, but more likely it was just something Williams said to bolster support.

    That's what happens when you only read one side of the story and judge prematurely.

    I think Harvard acted very professionaly here.
  • I don't think Harvard was being very spineless at all. If I offered to host a friend's web site AS A FAVOR, and he abused my trust by using it as a private forum for his personal vendetta against someone, complete with pornographic parodies and all sorts of rather nasty stuff, I wouldn't hesitate to drop him.

    Depending on how friendly I was with him, I *might* just ask him to get rid of the extra content, but with Harvard upper management now in the loop, I don't think they were out of line in the least by refusing to further host his site.

    Remember -- this was done as a favor, not a contractual agreement.
  • Apparently you don't seem to be aware of the "extra" stuff Williams posted on his web site. It was all sorts of rather nasty comments, pornographic imagery, etc. Very very bad stuff.

    Remember, Harvard agreed to host this site as a FAVOR, and Williams abused their trust by using the site for rather scandalous personal reasons. I think Harvard was perfectly justified in doing what they did.

    An institution's belief in the "facts" has nothing to do with this.
  • by Fastolfe ( 1470 )
    Thank God there are still some people with a clue on this sorry planet.

    On one hand I'm really glad Slashdot is as popular and has so many posters as it does, but on the other hand, it's really quite embarassing how many people here go off on what OBVIOUSLY little information that's been provided.

    The Slashdot authors are just as guilty as anybody else. Read the headlines/abstracts for some of these stories. It's very easy to believe just one side of an obviously partisan story instead of trying to get the full range of facts.
  • No offense to Williams, but in this case I'm more inclined to believe the contents of the original complaint e-mail sent to Harvard over Williams' "statement".

    Why would he send a letter to Harvard describing pornographic content when Harvard would just be able to look for themselves and see that he was just blowing a lot of hot air? The fact that Harvard DID act quickly and finally lends credence to the original complaint.

    That's my opinion, anyways.
  • It was probably their position all along -- Somebody else above posted a reply to a comment that I think summed up Harvard's side of things perfectly.

    Remember, this entire Slashdot thread was started by a message from Williams (the "victim"), and included only his side of the story. It's quite possible he embellished quite heavily.
  • Well whatever, I'm not going to get into an argument over this stupid little topic. I'm amazed it's gotten this much attention.

    I'm just annoyed by everyone labeling one person's side of things as gospel truth before even hearing the other side of the story. When you do hear things from all THREE parties (including Harvard), stuff starts to make a LOT more sense.
  • by Fastolfe ( 1470 ) on Friday July 02, 1999 @10:52AM (#1821477)
    I think I've done more than enough research into this whole fiasco.

    The fact is that Williams e-mailed Slashdot with his whiny story, and Slashdot went with it. They simply thought to themselves, "Wow, the evil guy with money destroyed a valuable resource!" They made no effort to look at the "other" side of the story or validate any of the things Williams said. They simply assumed that what he said was FACT. For things like factual articles, where people are offering links to *real* news sites, this is a PERFECTLY FINE way to run a news site like Slashdot, but when you get into personal things like this, you're basically posting an editorial, not objective news.

    That's what I was objecting to.

    I don't expect Slashdot to do its own reporting and investigating, but I DO expect them to at least TRY not to be biased or partisan when they do post things like this. The instant I read the abstract I *knew* there was a lot more to this story than what was being said. Everyone else should have been smart enough to realize this as well.

    FYI I've probably read more Slashdot articles and posted more informative Slashdot comments than you ever will. Don't go tell me to "Try reading" before I post, and *especially* don't do it as an AC.
  • Right now, securityfocus.com [securityfocus.com] seems to be the best bet.
  • What content is that? All I've heard is vague references to "sexually explicit" content.

    So where is it? What is it? Do you know? If not, then why are you supporting one side or the other, sight unseen??
  • Ken Williams, author of packet strorm, claims that there never was any sexual explicit contents on his site. You can find his statement here [hackernews.com].
  • All this attention is probably making JP happy, since it's free publicity.
  • The issue is that currently, high-speed, always-on connections are not the norm - and so we have to use ISP and other dedicated hosting sites to provide our content. True freedom of speech will only be possible when high-speed connection providers (who are not responsible for the contents of sites they don't host, even if they are the common carrier for the packets to/from that site), connect your personal site box (sitting on your property) to the net.

    The other issue then would be the disturbing practice of police to some and confiscate all of of someones computer equipment, backups, etc. on some phoney-balony charge (several stories come to mind) - thereby silencing that person.
    --

  • CMU is willing to stick up for people in its community, though, perhaps moreso than Harvard - I don't know without having seen the material in question. But when Scientology lawyers started sending letters to shut down dst's anti-scientology webpage, they didn't give in, and scientology lawyers are much more... intimidating... than JP, I would think.

    Of course, there was also the whole porn thing...

  • As an MIS admin I found everything on PacketStorm to be of the highest quality and I went there almost daily to check for security info that could affect my company's servers. I don't believe for a minute that PacketStorm was hosting smut or anti-John V. material...I think anti-online probably hates competition from a better site...I hope I am right in my opinions....If my T1 was hooked up I would host packetstorm on one of my company's webservers.... ... cat flames > /dev/null
  • just because i like to send them to the eternal bit-bucket doesnt mean i still dont enjoy reading them :)
  • The moral of this story is, keep a copy of everything you've got. Harvard gave this guy back his data, but certainly didn't have to.

    When you put data on a server that's not yours, you're assuming that there's reliable hardware and the ISP is doing regular backups. From experience, those are both assumptions that aren't good to make. Harddrives are cheap, CD-Burners are cheap. Keep a copy of your site. Even if it was four gig of data, that's five, maybe six CD's. Its not like all of it changes all the time.

    Hell even if it IS your server, you should always keep copies of the data separate from your backups and the server. The government has been known to inappropriately seize servers at ISP's and things like that.

  • Scroll down to the bottom of the root directory. /jp/ was mirrored by the genocide2000.com admin (who is not Williams).

    [quote]

    Here is the REAL scoop on

    John Vranesevich, aka JP

    AntiOnline Founder, Jackass, Crackhead, Cock Smoker, Narc, Media Whore,

    and the gimp who is currently diving into Carolyn Meinel's muff

    --Mirror made available by doxavg@Genocide2600.com

    [/quote]

    J.

  • This is a simple test I look for when I see FUD. Who is dishing it out and does it preserve some advantage they think they hold?
  • Hard to believe you did not hear both sides from the previous links. Did you notice the comments from others (minus the ACs) claiming that JP is not credible based upon prior experience? Listening to both sides is not an excuse for being gullible!
  • True. But Harvard has not helped their case with the wealth of information they are providing ;-).


    I searched for information yesterday and read the statement posted above. Seems to me like Harvard holds most the cards. They have the original JP message as well as any communications with Ken. Despite the education they are dishing out, it looks like they were the student in this issue!

  • This is the question I would like to see answered. Did Ken participate in the creation of the material or was he simply archiving it? Sounds like a number of people approved of the material Ken was archiving!
  • Maybe. We already have two versions of a single email Ken is credited with authoring. Given enough light, we can see who is trying to hide beneath the shadows.
  • And for the sequel, maybe he can sell everyone software that protects you from PC viruses (as long as you send him more money ;-)
  • If anyone is harbouring any sympathy for JP in this affair, I would advise them to check out http://www.attrition.org/nega tion/special/report.html [attrition.org] first.
    Pretty good evidence and a pretty conclusive argument that JP is funding the very people he proports to help defend against.
  • special.

    1) Intelligent people will support Harvard, ergo anyone criticizing their action must be intelligence challenged(tm).

    Reply: Yes. But. Never did I say they would "support" Harvard. Not finding fault in something is not the same as supporting it. I'll even give you an anology to play with: "I can't fault the chicken for crossing the road, but its certainly not an action I would support." - I'll even give you a more relevent one - "I wouldn't fault Packet Storm's admin for posting his opinions of antionline's admin, but if I were hosting his box and recieved a letter like that, and had a familly to care for, its certainly not an opinion I would be able to support."

    2) Censoring isn't very "Harvard", so rather than "censor" by requesting the removial of controversial materials, it is somehow more ethical and less "censorous" to go off half-cocked and delete EVERYTHING the site offered with no due process

    You really think Harvard gives a rats-rear-end about the public criticisms from Slashdot readers and the 'haqer' community? You seem to think you wield a lot more power behind your keyboard than I think you do.

    3) What harvard did was right. It was OK for them to spew FUD (untruths) because they needed "time."

    Welcome to the real world. It isn't a pretty place and it hasn't been for as long as I've been alive. Harvard did what needed to be done at the time, yes.

    If I understand your arguments correctly, burning entire libraries and spreading FUD about the personal lives and actions of the libraries is OK, even noble, as to do anything less (like lock up an objectionable book) would be "censorship." Anyone objecting to the burning of said libraries would clearly be stupid, as any intelligent person in the security community would support burning the entire library over the censorship the removal of one controversial book would imply. Interesting definitions.

    A - The library wasn't burned. It was simply closed. Even if they did indeed 'rm -rf /*' there was a backup. So your analogy is mute. This is a poor analogy at best. How about if I give you a better one that I do agree with and is reasonable:

    "If I open a private library with an office complex from which I lease free space (lets just say I pay a dollar a month), I go into that relationship knowing that at any day I could be kicked out of that space. But lets take it a step further, you see at this library you can only check out books on terrorism. How to stop terrorism, how to start terrorism, terrorism-terrorism-terrorism. But in one section of my "library" I have nothing but deragatory comments about Jesse Helms. Corresopondence with him are posted, what I think about him is posted, deflamatory pictures of him are posted on all the walls in the section of my "library".

    Does the lessor have the "OK" to kick me out of my "library"?
  • I am pleased you included the 'if' in your initial sentence. Being a part of the Slashdot community I most certainly do not think it consists either soley or primarily of any of the above. I do, however, think that a large percentage of the anti-harvard rehtoric was coming from exactly that stew of people you mentioned.

    Exactly what community and its view was I representing in any of my posts? I was speaking soley for myself, using "I" almost everywhere. I am quite comfortable in the real world though not always happy to be a part of it. The people that seem to be unable to grasp the concept of the real world are those that are arguing the injustice of doing the "right thing" (legally, socially, and politically vs. doing the "right thing" morally, heartfelt, utopianly.

    Yes, Harvard cares very little about what the Slashdot community has to say. We are talking about a learning institution with a history that dwarfs even that of computers in general. Never did I say they shouldn't give a rats-rear-end about what Slashdot readers have to say, simply that they don't.
  • I know. I was typing quickly and only quickly glanced over what I wrote when done. My co-workers were only too happy to point that one out to me.
  • Harvard took the site down because it became to controversial for them to take the time to deal with. They were doing the security community a favor and the intelligent people in the community would never fault Harvard for doing what it felt had to be done at the time.

    Sure, they would be praised if they had simply contacted Packet Storms admin and told him that the offensive material would have to go or they would be forced to shut down the site. But then they would have become censors. Censoring content just doesn't seem very Harvard to me.

    What they did was right. The actions they took, and the preliminary FUD they spewed merely gave them the time they needed to weigh thier options, without bringing about the wild accusations and rumors that would have flown in the face of silence.
  • As an MIS admin I found everything on PacketStorm to be of the highest quality

    I couldn't agree more...

    JP is pissing in his own backyard with stunts like this. Any admin at any ISP who hosts Antionline (including the current one) would do well to consider that he/she is hosting a service that is apparently committed to destroying the sites that all competent admins need.

    If I worked for his ISP I'd have been on the phone yesterday, "What the... You did what!? PacketStorm was one of my primary sources of security information! I think you'd better leave."



  • heh.

    --
    A host is a host from coast to coast...
  • Do you think that whoever pulled the plug at Harvard trotted over to the physical computer, logged in and did a

    ls -l /jp

    and used XV to look at every file?

    Doubt it. More likely they just pointed a browser at the URL from thier own desk.

    Now consider hypothetical site A which posts critique about hypothetical site B.

    Site A may contain hyperlinks and inlines to graphics on site B as examples. If site B wanted to make Site A look bad, they could clone their excerpted files, modify the clone to use unique URLs, then change the files that original URLs pointed to so they now point to nasty stuff.

    The effect of this is when someone pulls up the critique on site A, the see a bunch of nasty text and graphics. If that someone is the sysadmin checking for acceptable use, is he going to look at the HTML to see if the content is actually stored locally on the site, or is it going to be assumed that content was purposefully put there by site A because thats whose address is in the address textbox in the browser window?

    Unless fraud is suspected from the beginning, I can see the latter being the likely case.

    Therefore it is entirely possible that site A could be set up to look like a porn provider or other nasty thing just because site A had hyperlinked content, without site A being rooted or expoited at all.

    Was Packetstorm set up like this? Only the backup tapes can tell.

  • I hate it when I hear about a (potentially) useful website only when it is shut down. By many accounts, Packetstorm was a valuable security reference. The published words and acknowledged actions of AntiOnline's owner makes me averse to having my IP in their server logs.

    So, what good security resources are left out there? If Packetstorm were still up, I would undoubtedly have scoped it out for usefulness, and bookmarked it as a resource if it met my needs. Is there anyplace else comparable I can check out?

    phil

  • Education is not the business of dissemenating truth. Its the business of dissemenating "accepted" truth, and often, politically correct truth. I do not believe that Harvard is any different than any other university in this respect. Maybe they are just better at it. Truth is all about perception, anyway.
  • Nope. If it's not the sig for the message, it says 'Bad Signature' - that signature block doesn't match the message. Signing is just that - proving it's you.

  • Well, I'm sure that a reputable publication such as 2600 Magazine would never condone or support any actions which violated Computer Misuse laws...


    You've got to remember that the "hackers" JP spoke/communicated/chatted on IRC with, are mostly teenaged kids who "hack" using scripts, etc. The more mature, older hackers, both those who have parlayed their unique skills into a career in information security, networking, programming, etc., and those who continue to hack illegally, (but, unlike the script-kiddies who provide JP with his news content, don't seek media exposure or recognition) will, by and large, have nothing to do with JP.


    I suppose, in a way, JP is the ultimate wannabe. He was originally seduced by the supposedly "sexy" image of hacking (that film 'Hackers' has a lot to answer for) and, although he apparently spins a good line of bullshit, he doesn't have the technical prowess to actually be a decent hacker. So, I reckon he decided instead to become a hacking "expert" by the back door, and AntiOnline was his way of doing this, and of gaining respect in the community.


    Unfortunately for him, the only people who respect him are other wannabe's like him. Birds of a feather flock together and it's no coincidence that JP numbers Carolyn Meinel amongst his allies. The real hackers have long recognised him for what he is and have chosen to have nothing to do with him.


    I've heard rumours that some of them have owned him and that, occaisionally, they've also been playing with him by doing things like hijacking his DNS and upstream routers in order to "spoof" him with fake website hacks, just to see him do a "press release" about whitehouse.gov or nato.int being hacked...


    It could well be that they've decided that enough is enough and have decided to hit JP where it hurts - by making his website unavailable. Not only does this seriously dent his credibility (what sort of hacking expert can't even defend his own website), but it also means that his company is, to all intents and purposes, inoperational.


    Of course, this is all merely hypothesis (for you linguistically-challenged individuals, that means that I'm just guessing). :-)




    The Dodger

  • I'm beginning to think we need a "User's Bill of
    Rights", and we need to start boycotting ISPs
    that don't support that bill of rights.


    That sounds like a fine idea, but I wouldn't be shoving a Bill of Rights into the face of the private institution that has agreed to host my site for free, given that it serves a specific purpose.

    Remember, ISP's are not in the business of defining constitutional rights, they provide bandwidth and try not to rock the boat. I wouldn't want to have to spend money to defend my ISP (if'n I had an ISP) from lawsuits of people libelled by my users. Even if their cases have no merit, you still have to hire a lawyer to point that out.

    If I had an ISP, I wouldn't agree to your bill of rights unless it included the ability of the ISP to yank any content that is cruisin' for a lawsuit.

    Off subject, have you all seen Geocities new agreement that says that anything you put on Geolcities becomes their property?




  • Yes. My personal opinion of Harvard's network admins wasn't very high when I had heard that the data was going to be deleted without hesitation. Either the original report was misunderstood, or somebody had a change of heart after receiving complaints from the internet community. Either way, being able to re-create the site at a different location is nice.

    I don't know what ISP would host a site as popular as that free of charge (unless banner ads were allowed). But I think that the next move would be to actually receive the data and start looking.

    I sincerely hope that any people that sent complaints to AntiOnline or Harvard that specifically referenced Slashdot were written with cool heads and a moderation of actual flaming and insults; it would certainly make us look a lot more mature in the eyes of the outsiders. Of course, I know that this is just wishful thinking, especially after some of the comments made to yesterday's article here. [smile]

    Anyway, things look a bit better now, and I hope that a new site can be set up quickly.
    --
  • Sure, they would be praised if they had simply contacted Packet Storms admin and told him that the offensive material would have to go or they would be forced to shut down the site. But then they would have become censors. Censoring content just doesn't seem very Harvard to me.

    Removal of a site is also censorship.

    Maybe if they forwarded the complaint to the maintainer of the site and have the maintainer explain exactly how he was going to react to the complaint (remove the materials, shut down his own site, etc.) and then have the web admins decide if the action was enough. This seems nicer in theory, but it would have taken some time and the offending materials may have still been available.

    However, whether or not the offending materials were ever removed, the fact remains that they may have been there, and they may have been accessible to anybody who knew their location. If so, the claim of damage may have still been valid and a lawsuit could possibly still been filed. (Of course, I don't even play a lawyer on TV...!)

    I sincerely think that Harvard had a right to shut down the site, for whatever reason. And I think it proper for them to return the data, if that's what they are claiming that they will do. I cannot see how you can fault them too much for this at this point.

    Again, we'll see if Packet Storm reappears in a new location. And I think that it will have a much better agreement with the entities hosting them than they did with Harvard... I hope that this may be a learning experience for Packet Storm AND for all of us.
    --


  • People in this country have the right to say anddo whatever they please, unless that is, what they say and do infringes on the rights of another - anonymous.



    Yeah. The real reason this is anonymous is because no fool would want to be known for ranting this absurd statement!

    In absolute terms, any right someone has automatically infringes upon the rights of others. You enact a law to outlaw murder. It infringes on my right to kill. 'Rights' are like energy, they can't be created or destroyed, only redirected/modifed, etc.

    What an absolutely obtuse quote. The law is (or at least was) in place to provide safety to people more than it was to protect 'rights'.

    I don't know much about John Vranesevich. But based on what I've read [from|about] him, that's probably not a bad thing.
  • In absolute terms, no person has any more right to do/not do something, to allow/limit any other person. Is it 'wrong' when dog kills another?

    Just because I believe murder is wrong doesn't mean, from an absolute, perspective that it is. This belief , the ability to reason and opine, on one's own is what separates man from animals.

    This said, law isn't put in place to 'give' rights -- any law that gives rights to one group removes rights from another -- and thus, there is no way to grant rights that don't infringe on rights of others.

    On a more down-to-earth example, but equal in principle, I have the right to free speech. However, there are limits on this. I can't yell 'Fire!' in the theatre, I can't incite riot, as there are laws that limit my speech in those respects. These impinge on my 'rights'. But they transfer the 'right' to safety to those around me. They're for the good of the people; that is the basis of law. There has been no loss of 'rights'. Just transferral.

    I'd recommend some John Locke. Good reading.
  • Yeah, the new Geoshitties agreement has to do with their recent acquisition by, Yahoo I think?

    With regards to the topic at hand, I can't believe people are on this board bitching and moaning about Harvard, AN EDUCATIONAL INSTITUTION, protecting it's own ass from being sued by someone using the bandwidth they DONATED. Packet Storm should be greatful that Harvard is giving their data back...
    However, I am not saying Packet Storm didn't get screwed over by whomever made those calls to Harvard... those people who made the calls are to blame, not Harvard. Harvard should be thanked for how they handled it.
    and no, i don't attend harvard, i attend U of L [louisville.edu]
    :-)
    ------------------------------------------
    Reveal your Source, Unleash the Power. (tm)

  • by FreeUser ( 11483 ) on Friday July 02, 1999 @03:27AM (#1821513)
    So, let me get this strait. You contend:

    1) Intelligent people will support Harvard, ergo anyone criticizing their action must be intelligence challenged(tm).

    2) Censoring isn't very "Harvard", so rather than "censor" by requesting the removial of controversial materials, it is somehow more ethical and less "censorous" to go off half-cocked and delete EVERYTHING the site offered with no due process, no notification, and no opportunity for the web page maintainer to copy his material to an offsite location (their belated agreement to give him the backups after being subjected to a storm of public criticism hardly counts).

    3) What harvard did was right. It was OK for them to spew FUD (untruths) because they needed "time."

    4) Finally, of course, we see the success of their strategy, in the resoundling lack of accusations and outrage their lack of silence has engendered.

    If I understand your arguments correctly, burning entire libraries and spreading FUD about the personal lives and actions of the libraries is OK, even noble, as to do anything less (like lock up an objectionable book) would be "censorship." Anyone objecting to the burning of said libraries would clearly be stupid, as any intelligent person in the security community would support burning the entire library over the censorship the removal of one controversial book would imply. Interesting definitions.
  • Also because it's a checksum of all the data between the --Begin PGP and --End PGP lines, if you were to download a copy of Ken's message and change the message in anyway and re-upload it, it would again fail.


    Is it an encrypted checksum or cyclic redundancy check code? If it's just a checksum, you can fiddle with the altered message to produce the same sum. It's far more difficult to produce the same CRC code (I think), but which is being used here?


    The most secure way that I know of to encode a message to verify that it's from you is to encrypt the whole thing with your private key. The receiver runs it through your public key as if they were sending it as a reply to you, and the plaintext pops out.


    OTOH, this requires you to encode the entire message with RSA, which PGP doesn't.

  • I don't see how Harvard can be expected to host a site from an individual who is in NO way associated with Harvard. Not even a damn student!
    Would your little University admins host a non-students web site? I freaking doubt it...
    (as I assume well over 50% of you are still students) Hell, for those of you in the "real"
    world (sic:jargon file) would your company in ANY
    way wish to associate itself with hosting a non-involved site if you were not an ISP? Doubtfull at best.

    Not returning the backups WAS out of line, however
    they have returned what some courts have held up to be personal property, as an author. (web content) Harvard has distanced itself from a
    controversial situation that their academic
    charter has nothing to do with. (the anti-online
    vs. anyone who objects thang)

    Where did Harvard REALLY go wrong? Allowing their admin to host the site in the first place. Anyone
    wanna bet he/she was severely reprimanded? Possibly threatened with release? A little birdie tells me he was getting his resume' together over this one...

    da' fly
  • But then they would have become censors. Censoring content just doesn't seem very Harvard to me.
    Removal of a site is also censorship.
    Uh...neither of these are censorship. Censorship is when someone is prevented from saying something. Saying `I'm not going to host your web site or this particular bit of content' in no way stops the content owner from posting his content elsewhere.

    Censorship is a serious issue, and it still does exist in modern democracies today. (There's nothing like the threat of a huge libel suit to silence someone without the resources to defend himself.) Please don't trivialise it by applying it to things that are not.

    cjs

  • I haven't been able to reach AntiOnline all day... hell.. all night too for that matter... In fact, I did a traceroute, and couldn't even make it to his provider. Eventually JP (Gay Pee) will probably be shutdown because nobody wants to host a site that gets DoS'd everytime the site owner does something incredicly stupid and obnoxious. Thats my $0.02.
    echo You Suck | mail JP@antionline.com
  • Do you actually believe that happenned? Are you really that gullible? That is such a blatent lie! He sounds worse than a 12 year old... hell a 12 year old could make it sound more realistic. Cops didn't patrol the neighborhoods outside pittsburgh, he made it up to justify himself as a complete jerk who is trying to take as much control of the website security industry as possible. We all need to see this loser for what he is: an irresponsible jerk who tries his hardest to get attention by smearing people.
  • Not if the content was illegal. Then it could be considered censorship, but justified censorship. I really can't picture harvard taking a stand on protecting content that it doesn't believe in. Had the actual security content been called into question then yes i would expect harvard to stand up and say something (it's not like they are in short supply of lawyers).
  • I think the content that is in question should never have been posted in the first place. If harvard had gone ahead and destroyed everything without giving kevin a chance to recover his data that would have been wrong, but since they are giving him his data back, he really isn't at any personal loss. I doubt he'd have any trouble finding a new place to host the site, most likely w/o the JP content. Most importantly he has his school work back. I don't know if harvard actually was going to delete everything in the first place, or if the publicity around the event made them change their mind, but the important thing is they are doing the right thing now. The only thing I can see them doing that would be even better would be allowing him to open the site up again on harvard's network w/o the jp content, but I doubt that would happen.
  • Maybe they don't sell dial-up access commercially, but they most certainly were acting as an ISP in providing the website. What's YOUR definition of "ISP", exactly?
  • > So? Hey, as an ISP
    > they have a right to yank anybody's web site if > they want too; in this case, at least Packet
    > Storm can go back up.

    It actually bother's the hell out of me that
    *all* ISPs are this spineless. Their legal
    agreements all *suck*. "We get to do anything
    we want, we guarantee you nothing, we take no
    responsibility for what you do, but if we don't
    think it's appropriate we'll stop you, we're the
    sole arbiters of what's appropriate, and by the
    way we can change this agreement without notice
    and you've still got to follow it."

    Is this anyway to run a brave new world of free information?

    I'm beginning to think we need a "User's Bill of
    Rights", and we need to start boycotting ISPs
    that don't support that bill of rights.

  • > Remember -- this was done as a favor, not a
    > contractual agreement.

    The point is that you wouldn't be any better off
    with a website with Harvard or with a commecial
    ISP: everyone's stated policy seems to be to cave
    in the moment they get a scary legal notice.

    What's wrong with saying "This has nothing to
    do with us, we're just carrying the information,
    we didn't put it up there. Take it up with the
    person who's responsible for the content."

    If you make an obscene phone call, can they
    sue the phone company?

    And would it make sense to require the phone company to screen all calls for obscene content,
    to make sure that no one is misusing the service?

  • I'm guessing Harvard was referring to the "Back Orifice 2000" ad. Notice, they didn't say "sexually explicit"; they said "sexually related." Though I'm not particularly offended by it, I wouldn't want the banner on the college site I maintain.
  • We are not sure if Harvard was aware of the "extra"
    content on the server specially the /JP directory
    which seems to be the cause of this whole problem
    and I am pretty sure that if they (Harvard) were
    aware of this then they would have asked that
    the pornographic and libelous content be removed
    or else. Harvard offered to host the site
    because of the security related content. Nuns
    covered in seminal fluid doesn't fit in this
    category regardless of public opinion
  • Harvard has the right to do anything to the site.
    Keep in mind that Ken was _INVITED_ to run the
    site using Harvard's network connectivity and therefore
    this is Harvard's party, if you do not like the
    rules then you can take your business elsewhere.
    I am impressed at Harvard handled the entire
    situation by deciding to not host the site.
    The same thing goes with anything. How would you like it when
    you invite me over to your house and then suddenly you see law enforcement
    raiding the entire place just because I had a search warrant and I didn't tell you.

  • That letter at hackernews.com is not PGP Signed, as his first, highly publicized letter was.

    Just a thought.
    There's a reason for PGP.

    Zeitgeist
  • IMHO, it's irresponsible to create a parody-in-bad-taste of a person or group you don't like, and associate it with a legitimate "hacker" security tools site. It's just as likely to sabotage your own reputation. as that of the target.

    In another thread above, someone posted the url of an alleged copy [genocide2600.com] of the data that was in the disputed directory. I don't know whether this is the actual content from the page but it seems likely.
  • Same here .. and this must be the second time in a couple of months that I have tried to access the site. Seems like they're blocking href's from slashdot.
  • *sigh* Crisis management has taken such a turn in these days. A few years ago it would have taken atleast a couple of days between the various events that have taken place. Nowadays, everyone wants to jump on a hot story, be the first person to post, the first person to break the news (drudge, cnn etc all have fallen victim to this).

    On a side note, I remember a story on segfault, called an anti-/. kit.... perhaps there is really a market to detect abnormal traffic (e-mail, hits on web sites, DOS etc..) and firing off alerts on various pagers?

  • It seems like you didn't get the whole story.
    This wasn't a kid that was using his student's home page for distributing the latest and greatest script kiddy warez.
    Ken did a lot of good and hard work (with a server like this, you probably have more to do to secure your site than the average web admin, esp. mass downloads and hacking attempts).
    He refused also to do banner ads to get some money (I never understood why...).
    Some time (a week?) ago he was _offered_ that harvard hosts his site - you don't get a url like packetstorm.harvard.edu just for asking or because you are a student.
    Again - they offered to host him, and if I were him I too would have had the impression they would know what they get.
    He has every right to complain....
  • Read my post above, this was _not_ "joe students" webpage, harvard wanted the server...
  • this stuff was on ken's side BEFORE harvard offered to host it.
  • When you "sign" a message with PGP, it uses your personal "Private" key to build the signature from. This signature is actually a checksum. Anyone that Ken has given his public key to can ask pgp to verify his signature, in the case above where you just added it to your message it will definetly fail. Also because it's a checksum of all the data between the --Begin PGP and --End PGP lines, if you were to download a copy of Ken's message and change the message in anyway and re-upload it, it would again fail.

    Of course PGP relies on the ability for the user doing the verification that the "public" key they have actually came from the party in question. Look up PGP and web of trust for more information.
  • FUD means Fear, Uncertainty, Doubt. Mostly as a tactic of a large, redmond-based software company, but they're not the only ones using it... They probably wanted to get a copyright on it but weren't allowed to :-)
  • by JohnnyCannuk ( 19863 ) on Friday July 02, 1999 @08:18AM (#1821538)
    Well, I've just spent the last 2 hours "hacking" through the Ken vs JP stories here on /. and I must say its really quite amusing. One group Says "yay..us HaXor doodz will destroy anti-online" and other says "hey, that's a violation of free speech! You can't do that!" another says "Yes they can!" Blah blah blah....

    For me it boils down to who owns the computers - Harvard. Just as I don't have to have any program on MY computer that I don't want (are you listening MS?) Harvard doesn't have to have ANYTHING on THEIR computers that they don't want, irregardless of free speech or who owns the content. So Harvard did the right thing.

    As for the rest, well, it reminds me of two 10 year olds fighting. Personally I don't thing either is telling the whole truth. JP may well just be a "wannabe" who is pumping himself up. But I have also seen some of the "evidence" published by a great many other sources that are, to say the least, laughable and and insult to the intelligence of anyone on /. It seems to me these two kids did something along time ago to each other so they now hate each other and they will battle it out anytime and in any forum. And often in war, truth is the first causalty.

    Is JP a rogue bastard who is selling snake oil, making up "hacks" so he can ride in and save the day? Sure, its possible.
    Its also possible that Ken has enginieered a great many of these so-called "evidence" logs and irc sessions as a disinformation/smear campaign. Either scenario is just as plausible as the other.

    Frankly I don't care who is right or wrong. Both sides are indulging in Ad Homenem attacks, which is the least logical, poorly premised and misguided of all arguement. If you can't attack the aguement attack the arguer...

    This is incredibly childish. I don't beleive either side. The sad part is that two fairly decent sites for getting security information (anti-code that is, not antionline) are gone (for now) and we are all losing out on information.

    Now, when the teenagers are done with the pissing contest, perhaps us adults can get down to the business of discussing some REAL issues...

  • If I'm going to let you on my system, its going to be by my rules alone. If you don't like it, then go somewhere else or build your own system. What are you thinking?
  • Why didn't they simply ask that the content to which they objected be removed?

    Since there were no written agreements between the creator of the site and Harvard (according to the creator of the site), I find it hard to believe that Harvard had set up any rules prior to this incident regarding site content. If they want to create rules after the fact, then they should have, at the very least, given the guy an opportunity to remove whatever they objected to before permanently revoking his ability to access the server and shutting it down. It would have been *very* simple to just temporarily turn off http and ask the site creator to remove the content that they didn't like.

    Harvard overreacted in an extreme way that reflects very poorly on them.
  • My first thought, when Ken said that Harvard would delete all his data, was that we weren't getting the whole story.

    Do we have _proof_ that Harvard threatened to destroy all data, or was it just the accusation of a lone man?
  • I would say this situation varies greatly from college to college. At (the) Ohio State University, things are locked down pretty tightly, not just for dorm resnet'ers, but even for OSU employees. Take me for instance. I work helpdesk. We are lucky to get away with having tribes (a quakish type game) on the machines, and thats only b/c us students are careful about hiding/using/etc. But to put a server? Hah, we'd get reamed up on side, down another. Heck, we've even been told (officially) having any mp3s on our work computers is a Bad Thing.

    Overall, what OSU wants the high-speed internet access to be used for is a phat modem. Web, irc, mail, (firewall borks ICQ, yes even w/ firewall settings in ICQ) is okay, but no servers. Not even telnet. Man, OSU internet access sucks. (/whining)

    So, thats how my college works (or doesn't).

    -jeff
  • It's called mob mentality, and /. is full of it (myself included). Just follow any holy war on here. When ignorant people get religious you end up with crusades.

    Even if every /. reader only made half informed emotional posts 1% (reasonable) of the time, the sheer volume of traffic on /. makes mob mentality a painful reality.


  • Constructive forgiveness? Get bent.
  • 3) What harvard did was right. It was OK for them to spew FUD (untruths) because they needed "time." Welcome to the real world. It isn't a pretty place and it hasn't been for as long as I've been alive. Harvard did what needed to be done at the time, yes.

    Survey says...XXX!

    Living in the real world is no excuse for doing the Wrong Thing. Spreading untruth is almost always the Wrong Thing, and it is more so for Harvard.

    Not only is Harvard a college, it has a valid (though disputable) claim of being the best college in the world. Harvard is in the business of education. They are in the business of dissemenating knowledge. They are in the business of dissemenating truth.

    Every lie, every piece of FUD that Harvard puts out attacks their own credibility, their own reputation. Where are they without that?

  • I don't think that was it. AntiOnline seems to be back (for the moment). There's an editorial at http://antionline.com/archives/editorials/packetst orm.html [antionline.com] that includes a copy of the letter JP sent to Harvard. There's some explicit descriptions of the alledged sexual and libelous content. -Jennifer
  • by PapaZit ( 33585 ) on Friday July 02, 1999 @03:29AM (#1821551)
    Most colleges and "academic environments" have official rules that cover things like this. Hackers and 3133t war3z d00dz have been around for long enough that almost every university with an internet connection has policies in place for appropriate content.

    Colleges also tend to have a high level of trust. If you work for the college in any sort of technical capacity, you can get away with a lot of things, because it's assumed that you have a good reason for breaking the rules.

    It's pretty common for people around here (CMU) to have vanity domains and private web servers on their work machines. It's also pretty common for people to create accounts on their machines for friends, or even put machines on the network for outside friends to play with. This is all strictly against policy, but so long as nobody complains, we don't worry about it too much.

    If we were to get a letter from someone who was threatening to sue us because of the actions of someone who isn't even affiliated with the university, we'd stomp on them hard and fast. Covering our collective ass is more important than looking the other way while someone breaks the rules.

    I don't know if this was the situation between Harvard and Packetstorm, but it does sound that way. Universities run on paper, and there's no way that they'd officially permit an outsider to run a machine on their network with only a verbal agreement.

  • I know Ken Williams, and although I didn't see the material in question or talk to him yet about all this, I do not think he would put the kind of content being described on his site. It seems (from Harvard's email) that he is getting his data back, which is good - I know that he has put a LOT of time into it.

    If I knew more about this, I would comment on it, but PacketStorm is no longer up, so I can't see what JP alleged was on the site. The 'public letter' that JP refers to is at his old site [genocide2600.com], which is now inoperative.

    It's too bad Vranesevich didn't contact Ken directly instead of Harvard. If he wanted the offending material removed, Ken could have done that, not Harvard. No, he wanted the ENTIRE SITE removed. That's pretty selfish; there was so much more to the site that just the small part the he had a problem with.

    It's also interesting that Vranesevich describes AntiOnline's mission as 'putting an end to malicious hackers', but does any of the material that offended him really have anything to do with hacking? From his (JP's) description of it, it doesn't seem so. Assuming, of course, that what he said was on the site really was - which I am not convinced of. Perhaps a better question is, is Ken a malicious hacker? Not as far as I know, and in fact it seems that since he provided for free a very large and useful website that took much of his time to maintain, he definately NOT a 'malicious hacker'. In fact, I believe Ken (and PacketStorm) were (and hopefully will be again) very useful to many people around the world. I certainly don't think PacketStorm was getting 400,000+ hits/day because of AntiOnline insults/threats (if there were any there in the first place). Maybe JP should define what exactly a 'malicious hacker' is.

    -Dan Streetman
    ddstreet@eos.ncsu.edu
  • http://www.zdnet.com/zdnn/stories/news/0,4586,2287 456,00.html
  • Of course, it also means much the same thing as FUBAR, depending on the situation. Which still fits the Fear, Uncertainty, Doubt definition - but there're times when it's better to just say "F*cked Up Data," particularly if the FUD may just be a perpetuated mistake.

    "Never ascribe to malice that which can be adequately ascribed to incompetence." - Some Dead Guy ;)

  • Correction, this is all of the archive _I'm_ willing to post online. Everything that resides in the ~tattooman directory of Genocide2600.com is considered to be the personal property of Ken Williams. It does contain a two week old copy of the PSS archive site. But Genocide2600.com will no longer be hosting that site so we will NOT be putting up the data for any reason (with or without Ken's consent). I posted the /jp directory in an effort to let people know what content JP complained about and what this has supposedly been about.

    --DoXaVG
    --Security Admin - Genocide2600.com
    --doxavg@Genocide2600.com
  • ... In cases like this? What with the malleability of electronic information, both parties could present "evedence" to prove their own cases and no one would be the wiser? I myself believe Packetstorms side of things, but hey...

    -Heckler
    P.S. Pardon my newness, but whats the "FUD" in a "FUD Letter"?

"I'm a mean green mother from outer space" -- Audrey II, The Little Shop of Horrors

Working...