| |
| Current Topic: Miscellaneous |
|
BugTraq: [LSD] Technical analysis of the remote sendmail vulnerability (exploit enclosed) |
|
|
|---|
| Topic: Miscellaneous |
1:24 am EST, Mar 6, 2003 |
Well, I suppose this should start the first round of extreme controversy over the accuracy of the ISS advisory pertaining to this "remote root" Sendmail vulnerability. A group calling themselves the Last Stage of Delerium have posted a short technical paper pertaining to the vulnerability with what claims to be an exploit attached. By the way, kids, don't draw the wrong conclusions from the fact that they are exploiting some Slackware and RedHat binaries instead of your particular favorite distribution. BugTraq: [LSD] Technical analysis of the remote sendmail vulnerability (exploit enclosed) |
|
How to Write Like A Wanker |
|
|
|---|
| Topic: Miscellaneous |
1:56 am EST, Jan 9, 2003 |
Emily Netnews or Vanderpost or whatever your ancient name is, better look out. A more modern version of "tough love" for newbies has been drafted! How to Write Like A Wanker |
|
|
|---|
| Topic: Miscellaneous |
11:32 pm EST, Jan 8, 2003 |
Well, it's about time that _someone_ explained what the heck they're doing with those settings. I still like the patent-violating rendering method personally. It looks much nicer on CRTs than LCD screens, tho'. The FREETYPE Project |
|
|
|---|
| Topic: Miscellaneous |
2:06 am EST, Jan 5, 2003 |
FINALLY a tool for snatching Mac icons without having to use something that requires Swing Java be installed. BEARCA Shareware Page |
|
BOFH and the Nigerian 419 |
|
|
|---|
| Topic: Miscellaneous |
5:09 pm EST, Dec 11, 2002 |
My goodness, I had _no_ idea that someone was publishing new BOFH documents. Especially amusing considering that I just recently recieved my second Nigerian scam spam ever. BOFH and the Nigerian 419 |
|
Feds Label Wi-Fi a Terrorist Tool |
|
|
|---|
| Topic: Miscellaneous |
4:08 am EST, Dec 8, 2002 |
Okay, I can't help but think that somehow I've done something entirely wrong in my life to find myself _agreeing_ with the Feds about something, but then, this is actually a pretty clear issue for me... It's got sane, reasonable people who know what a serious risk allowing physical access to network media is on one side, and then tree hugging hippies who think that if they can buy something in a store it can't possibly be misused or it wouldn't be for sale. Did we learn NOTHING from the early wireless phones? Tip of the Day: Bleach and Ammonia, two common cleaning compounds available at every Safeway and corner store, can be mixed to produce _copious quantities_ of _mustard gas_. Much like a wireless access point, these can be purchased in a store and easily deployed to do something impossibly stupid to yourself and those around you. Unless he was misquoted, the "Missing the Point" Award in this article goes to Sky Dayton for "It's possible to secure a wireless network today, [...] But it needs to get easier." Hello? They need to be sold pre-configured in a belligerently secure mode, because we know quite well that John and Mary Websurfer won't do _anything_ to secure them. Feds Label Wi-Fi a Terrorist Tool |
|
Windows2000 was designed with what in mind again? |
|
|
|---|
| Topic: Miscellaneous |
4:30 pm EDT, Sep 6, 2002 |
Absolutely amazing how quickly Microsoft's security initiatives start to flounder once no one is willing to tell them about the holes that they claim so profoundly don't exist. This'll teach 'em to fail to at least give credit where credit is due for reporting holes. Windows2000 was designed with what in mind again? |
|
Theo De Radt Makes An Ass Of Himself |
|
|
|---|
| Topic: Miscellaneous |
3:30 pm EDT, Jun 26, 2002 |
Well, the cat is out of the bag, and apparently this terrible remote exploit which affected OpenSSH and required that Theo demand that the entire planet upgrade to OpenSSH 3.3 immediately, even though he himself admitted that the new version doesn't actually fix the bug, but makes it somehow immune to the exploit, is now fully revealed to us. Apparently the entire world is running BSD and/or S/Key authentication. Who wants to start a pool to guess how long before Debian has another package release just to disable protocol separation? :)
(This new version is creating about five new bug ids for them) Theo De Radt Makes An Ass Of Himself |
|
|
|---|
| Topic: Miscellaneous |
4:35 am EDT, Jun 1, 2002 |
Just when you thought you were safe from mac users with one-button mice (when every right-thinking person in America knows that all mice should have at least two buttons on them, and a wheel) there is now gesture support for Mozilla 1.0. For those of you who aren't familiar with gesture support, it's a type of input similar to PalmOS Graffiti writing, except you use your mouse pointer and just one button. With that button you can now order your browser to the home page, scroll up and down, create new tabbed windows, and even reload pages. You know, I could have sworn there were buttons in the UI for that. ;) Optimoz |
|
