Re: CIRT Advisory CA-2003-0401: /dev/null Vulnerability
From: Ian Kluft (email@example.com)
From: firstname.lastname@example.org (Ian Kluft) Date: 2 Apr 2003 13:41:47 -0800
OK, April Fools Day is over. I'll take responsibility for this one...
One of the first things that people were supposed to notice was that
CERT was misspelled "CIRT". And the implausibility of a /dev/null
vulnerability was supposed to be a giveaway for some too. But it
looks like most people initially overlooked that because it had the
format of a CERT advisory. One response pointed out that the
fictitious poster's name "Lirpa Sloof" is indeed April Fools
backwards. Apparently making it "Dr. Lirpa Sloof" got past some of my
friends' pattern-recognition, and probably others out there. You've
gotta watch for stuff like that on April 1. :-)
Of course, the further you go, the less plausible it becomes,
especially once it starts enumerating the effects of connecting
/dev/null to various hardware devices. By some point anyone who began
taking it seriously knew they'd been had. And that's what an April
Fools joke is supposed to do. The light bulb turns on, you know it's
a joke and, if it worked right, you laugh.
I hope everyone had fun with it - that's what was intended. Feel free
to share it with your friends.