Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
The Internet

Submission + - Highly critical IOS flaw found in Cisco IOS

Submitted by ACMENEWSLLC
ACMENEWSLLC writes: There are a lot of Cisco router admins on /., I assume. If you don't watch the security alerts, Cisco released a big one on the 24th.

Apparently, it is possible to DOS and/or reboot a Cisco router by sending special packets to it, such as special ICMP(ping) packets.

Hopefully this sounds worse than it really is, otherwise this could be bad for the Internet. Cisco is providing free IOS updates to resolve this, per the Cisco documents.

The Secunia alert is here;
http://secunia.com/advisories/23867/

The Cisco advisories are here;
http://www.cisco.com/warp/public/707/cisco-sa-2007 0124-bundle.shtml
http://www.cisco.com/warp/public/707/cisco-sa-2007 0124-crafted-ip-option.shtml
http://www.cisco.com/warp/public/707/cisco-sa-2007 0124-crafted-tcp.shtml
http://www.cisco.com/warp/public/707/cisco-sa-2007 0124-IOS-IPv6.shtml

And CERT;
http://www.kb.cert.org/vuls/id/217912
http://www.kb.cert.org/vuls/id/274760
http://www.kb.cert.org/vuls/id/341288
Nintendo

Gates Pegs Nintendo, Not Sony, as Toughest Competition 178

Posted by Zonk from the when-white-plastic-fights dept.
njkid1 writes "Microsoft's Bill Gates thinks that because of the 'impressive strength' of the company and its new Wii console Nintendo is now Microsoft's biggest competition when it comes to videogames. This is somewhat understandable, given Nintendo's new projections for this year. The Japanese game maker plans to sell an impressive 100 Million DS games this year, along with 21 Million Wii games and some six million consoles. This may seem to be just more flack, to go along with Peter Moore's dismissive comments towards Sony at CES this week, but news of the Halo DS game that almost was puts credence to Microsoft's new priorities."
Businesses

Submission + - Paypal Won't Release Funds for Slain Soldier's Fam

Submitted by
robustyoungsoul
robustyoungsoul writes: "Popular sports blog Deadspin established the Adam Knox Fund for the purpose of raising money in honor of the fallen soldier who was killed in Iraq. They took the donations through a PayPal account. Turns out now, however, PayPal will not release the money due to the way the account was set up on their end. Looks like another in a long list of shady occurrences at PayPal..."
Security

Submission + - VeriSign puts Flaw Bounty on Vista, IE7

Submitted by
rchris1172
rchris1172 writes: "VeriSign's iDefense Labs has placed an $8,000 bounty on remote code execution holes in Windows Vista and Internet Explorer 7. As part of its its controversial pay-for-flaw VCP (Vulnerability Contributor Program), iDefense said it will pay the reward for each submitted vulnerability that allows an attacker to remotely exploit and execute arbitrary code on either of the two Microsoft products. In addition to the $8,000 award for the flaw, iDefense will pay between $2,000 and $4,000 for working exploit code that exploits the submitted vulnerability."
Security

Submission + - Disclosure for 70 million websites

Submitted by sectest
sectest writes: CSO posted an article about the shifting landscape of vulnerability disclosure from shrink-wrapped software to real-world websites. "Grossman (CTO, WhiteHat Security) claims XSS vulnerabilities can be found in 70 percent of websites." ... "If you apply those number to a recent Netcraft survey, which estimated that there are close to 100 million websites, you've got 70 million sites with XSS vulnerabilities. Repairing them one-off, two-off, 200,000-off is spitting in the proverbial ocean." Also unclear is the legality of even finding a vulnerability in a public website. Recent high profile prosecutions have cautioned security researches about sharing their discoveries. And if those people stop looking, "That leaves the malicious ones, unconcerned by the legal or social implications of what they do, as the dominant demographic still looking for Web vulnerabilities." Good news for the hackers, bad for the rest of us.
Businesses

Submission + - Normal Work Attire?

Submitted by
billdar
billdar writes: "- Business Suit
— Shirt, Tie, & Slacks
— Pollo Shirt & Jeans
— Work Shirt, Dickies, & Steel Toes
— T-Shirt and Shorts
— Nothing, and proud of it!
— Nothing, not so proud...
— Cowboyneal Under-roos"
Security

Submission + - Apple bug-fixer interviewed

Submitted by ukhackster
ukhackster writes: The software developer who is trying to protect users from the Month of Apple Bugs has given an interview explaining what motivates him to create his daily patches. Landon Fuller has explained how the fixes are being created (often within hours), and also argued that the security community has felt frustrated with Apple over its attitude towards security in the past. It may seem wrong that these fixes are being created by a guy in his spare time, rather than by Apple themselves, but it sounds like he's enjoying the challenge.
Patents

Submission + - Ruling Gives an Edge to Challengers of Patents

Submitted by Slagged
Slagged writes: A recent supreme court ruling is being reported by a number of media outlets.
http://www.nytimes.com/2007/01/10/washington/10sco tus.html?ref=business
The Supreme Court opened the door Tuesday to a category of patent lawsuits that a lower court had barred, issuing a decision that will probably shift power in the courtroom from bigger patent-owning companies to smaller start-up companies that rely on obtaining licenses for patented technology.

http://www.law.com/jsp/article.jsp?id=116833693033 3
The Court, by an 8-1 vote, reinstated a lawsuit by MedImmune challenging a Genentech patent related to Synagis, a popular drug for treatment of respiratory disease in children. The opinion in MedImmune v. Genentech, written by Justice Antonin Scalia, says patent licensees no longer have to breach the license in order to have standing to challenge the patent that they dispute. Patent lawyers say the ruling could lead to a flurry of challenges to existing patents.
Graphics

Submission + - Is XGI Technology Dead On The Desktop?

Submitted by Anonymous Coward
An anonymous reader writes: After 2003 seen the introduction of a new graphics contender there was much hope that eXtreme Graphics Innovation (XGI) would be able to cause greater competition for NVIDIA Corporation and ATI Technologies. From the Volari V3 to the 8300 many had hoped they would deliver open-source drivers — especially after Phoronix had stated they had discussed the very matter with XGI about GPL drivers. Now it has been over a year since XGI had last released a Volari Linux display driver (that added Linux 2.6 kernel support and 3D functionality), and Phoronix has revisited the Volari display drivers. Based upon XGI's actions the author comes out saying "At the end of 2005 there was a glimmer of hope that we would be seeing quality XGI Volari display drivers as a result of open-sourcing their display drivers, but as we see it now all hope has been lost on the desktop side." There hasn't even been a new XGI Windows driver since last April. Is XGI Technology dead on the desktop?
Google

Submission + - Gmail: 60 users mailboxes were lost

Submitted by
asphyx0r
asphyx0r writes: "According to the french website Clubic ( http://www.clubic.com/actualite-67645-gmail-emails -60-utilisateurs-disparu.html , french), 60 Gmail users have lost their emails. Google confirmed that 60 users have lost their mailboxes content, and was unable to resotre a backup. The only recovered mail was 1 week old. To avoid problem, Clubic advise you to backup your mail using the free Gmail POP access."
Microsoft

Submission + - A Microsoft-speak timeline: From Altair to Zune

Submitted by
netbuzz
netbuzz writes: "No company has had more to say about software over the past 30 years than Microsoft (for better or worse). How they've said it — the actual language used — reveals a lot about the company's evolution and is the focus of a new timeline-like "tag cloud" provided by the Seattle P-I. In addition to analyzing the linguistics of about 90 documents, there are also links to such gems as Bill Gates' Playboy interview and his famous "Open Letters to Hobbyists."

Blog item about it:
http://www.networkworld.com/community/?q=node/1017 7

Link to P-I tool:
http://blog.seattlepi.nwsource.com/microsoft/tags/ "
Operating Systems

Submission + - Amsterdam starts open source trial

Submitted by ukhackster
ukhackster writes: Another European city is taking a serious look at open source and open standards. This time it's Amsterdam, which hopes to cut its spending in proprietary software. Microsoft has been using its controversial Get The Facts campaign to try and deter companies and governments from moving to Linux, but Amsterdam's move suggests that the tide may still be flowing against it.
Displays

Submission + - Interactive building-high display

Submitted by fons
fons writes: A local bank in Brussels has equipped its new 142m high building with 4200 LED bars, turning the façade into an immense display. In front of the building they put a public console on which you can create a light-plan for the building. Once a composition is created it is displayed on the tower for a few minutes. Your artwork can be sent as an electronic postcard with a snapshot from the tower, taken from a distant location. It is also uploaded on the specific project website.
Communications

Submission + - SAVVIS data centers offline

Submitted by
bigV
bigV writes: "Apparently the SAVVIS datacenter in Boston is down to to some circuit-related issue.

It's not clear how many clients are affected by this outage, but since (1) my hosting reseller (for whom SAVVIS is the upstream provider) has hundreds of servers and they are all offline, and (2) SAVVIS is the 12th largest hosting provider with 205175 servers, the effects may be pretty far-reaching.

Is your site affected by this blackout?"

Slashdot Top Deals

"Only the hypocrite is really rotten to the core." -- Hannah Arendt.

Close