|
Home > Archive > Anonymous Servers > February 2005 > What 'meqsuser' doesn't want you to see
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
What 'meqsuser' doesn't want you to see
|
|
| Nomen Nescio 2005-02-11, 7:45 am |
| He can call all the names he wants, but 'meqsuser' can't change the facts.
Posted below, and available to anyone who cares to google it, are Richard
Christmans own PGP signed words, declaring Quicksilver to be a 'major
security breach'. There may be more buried in google, for those who care
to dig.
'me qsuser' - next time you may want to stay gone. You do less damage that
way.
-----BEGIN PGP SIGNED MESSAGE-----
Hi folks,
It appears this upgrade of the QS/QSpgp plugin has been the release
from hell.
A user has reported a serious security flaw in QS PGP encryption. I
have tested and confirm the flaw exists.
When the user chooses to encrypt the message the encryption does not
take place. The text of the message remains unencrypted while a small
encrypted block is inserted at the end of the message. I do not know
how this escaped my testing.
I have pulled both the QS 1.x versions and QSpgp1.1.x versions from my
ftp site and placed QS.9b20.11 and QSpgp1.0.0 there. If you use PGP
encryption please revert to these versions immediately. There is no
problem with updating to earlier versions of these programs using the
Update Wizard.
This is a major security breach. I am very sorry.
Richard
- --
R.Christman
quicksilver@skuz.net
http://www.quicksilvermail.net
How many people download QS? http://quicksilvermail.net/ftpusage.html
QuickSilver Help Pages http://www.cotse.net/users/bluejay/qs/menu.html
Superb remailer statistical analysis http://www.noreply.org
If you are new here, click for important info regarding frog-admin.
http://www.quicksilvermail.net/BEWARE.html
-----BEGIN PGP SIGNATURE-----
Version: N/A
iQBVAwUBQC6NhPkiDnOECmYBAQETAQH/cKbnkX1HNF0s6pqA2jNoyeYzrTk8_P3hx
Rw0u31/ q6luw8XIIAvJmlvstkCp748K1hHCHHO0rUcQynxo
RViccUw==
=260l
-----END PGP SIGNATURE-----
| |
| John Stillman 2005-02-12, 2:45 am |
|
"Nomen Nescio" <nobody@dizum.com> wrote in message
news:0cdb39cfbf8a5041682dac607a624046@di
zum.com...
> He can call all the names he wants, but 'meqsuser' can't change the facts.
> Posted below, and available to anyone who cares to google it, are Richard
> Christmans own PGP signed words, declaring Quicksilver to be a 'major
> security breach'. There may be more buried in google, for those who care
> to dig.
>
> 'me qsuser' - next time you may want to stay gone. You do less damage that
> way.
===================
Perhaps we can give Richard credit for warning us and admitting there was a
problem, at that time. I've used QS for almost a year now and was never
outed.
JohnS
| |
| Italy Anonymous Remailer 2005-02-12, 5:45 pm |
| On Sat, 12 Feb 2005, "John Stillman" <JS@JS.net> wrote:
>"Nomen Nescio" <nobody@dizum.com> wrote in message
> news:0cdb39cfbf8a5041682dac607a624046@di
zum.com...
>===================
>Perhaps we can give Richard credit for warning us and admitting there was a
>problem, at that time. I've used QS for almost a year now and was never
>outed.
>
>JohnS
Agreed. Credit where credit is due.
Some of us old timers that started with hand rolling, then Private Idaho,
and finally JBN still won't change from our older but time tested programs
and techniques. In all of the years JBN has been around, never has an
incident been reported or a flaw uncovered.
| |
| George Orwell 2005-02-12, 8:45 pm |
| In article <R560BAJX38395.6593055556@anonymous.poster>
nobody@See.Comments.Header (Italy Anonymous Remailer) wrote:
>
> On Sat, 12 Feb 2005, "John Stillman" <JS@JS.net> wrote:
>
> Agreed. Credit where credit is due.
>
> Some of us old timers that started with hand rolling, then Private Idaho,
> and finally JBN still won't change from our older but time tested programs
> and techniques. In all of the years JBN has been around, never has an
> incident been reported or a flaw uncovered.
The Brooklyn bridge is for sale, you interested.
| |
| Italy Anonymous Remailer 2005-02-12, 8:45 pm |
| On Sun, 13 Feb 2005, George Orwell <nobody@mixmaster.it> wrote:
>In article <R560BAJX38395.6593055556@anonymous.poster>
>nobody@See.Comments.Header (Italy Anonymous Remailer) wrote:
>
>The Brooklyn bridge is for sale, you interested.
Sorry, it has already been sold to 12,459 QS users, each now owning 100% of
the bridge.
| |
| Anonymous 2005-02-12, 8:45 pm |
| In article < 6695474b8da9e6f2f80029a34f3308fc@mixmast
er.it>
George Orwell <nobody@mixmaster.it> wrote:
>
> In article <R560BAJX38395.6593055556@anonymous.poster>
> nobody@See.Comments.Header (Italy Anonymous Remailer) wrote:
>
> The Brooklyn bridge is for sale, you interested.
LOL! I know what you mean, some of the people in this group are very gullible.
| |
| me qsuser 2005-02-13, 2:45 am |
| In article <PYQLJ0NH38396.0562037037@anonymous.poster>
nobody@See.Comments.Header (Italy Anonymous Remailer) wrote:
>
> On Sun, 13 Feb 2005, George Orwell <nobody@mixmaster.it> wrote:
>
> Sorry, it has already been sold to 12,459 QS users, each now owning 100% of
> the bridge.
Poor QS Basher, just can't get any respect. You're now our village idiot.
|
|
|
|
|