decrypted08 - Slashdot User

Comment Windows 7 (Score 0) 1

by decrypted08 on Wednesday July 15, 2009 @12:37PM (#28704707) Attached to: Windows 7 flies off virtual shelf ;)

I'll be purchasing all new computers and running 7- After using it for about a month now it definitly beats Vista and has been running very very smooth.

Comment Time to XsPl0it firef0x (Score 0) 1

by decrypted08 on Tuesday July 07, 2009 @01:36PM (#28610753) Attached to: IE's market share falls below 60%

Good with IE exploited to hell already- maybe now we can focus on firefox.:)---Personally, I like the new style of I.E. in Windows 7 - but thats just because Bill Gates pays me to counter/comment on slashdat.

Comment Visit what url? (Score 0) 1

by decrypted08 on Tuesday July 07, 2009 @01:31PM (#28610661) Attached to: zero day vulnerability in Microsoft Video ActiveX

Why would a sys admin visit any remotely suspicious with a Win2K3 server and put themselves out there. You should only use unpatched Win2k machines to perform insecure browsing. Then take them into peoples networks and plug into a switch :)

Submission + - zero day vulnerability in Microsoft Video ActiveX 1

Submitted by ucanlookitup on Tuesday July 07, 2009 @02:17AM

ucanlookitup writes: Microsoft has warned of a zero day vulnerability affecting IE users on XP or Windows Server 2003. The vulnerability allows remote users to execute arbitrary code with the same privileges as the users. The vulnerability is triggered when users visit a web site with malicious code. The advisory can be found at http://www.microsoft.com/technet/security/advisory/972890.mspx. Until Microsoft develops a patch, a work around is available at http://support.microsoft.com/kb/972890#FixItForMe

Comment A floating pool? (Score 0) 1

by decrypted08 on Monday July 06, 2009 @11:20AM (#28594827) Attached to: Floating Cities for People Who Are Sick of Land

I find it amusing that there is a pool on the floating "land"- The title should be: for those of you tired of living on land... how about living on another piece of land- that floats :)

Comment Still my baby (Score 0, Offtopic) 338

by decrypted08 on Wednesday July 01, 2009 @03:39PM (#28547909) Attached to: Firefox 3.5 Benchmarked, Close To Original Chrome

Opera is still my baby- I'll take any browser that includes precustomized user interfaces that allow me to connect to international irc channells and "chat" bot style.

The Worst US Cities To Work In IT 538

Posted by timothy on Tuesday June 23, 2009 @12:04PM from the hmm-if-atlanta's-on-the-good-list dept.

bdcny7927 writes with an excerpt from CIO.com to inspire some caution before your next job switch: "IT workers have their choice of many great US cities for work and play (Atlanta, Chicago, Seattle), but what are the cities that you probably should avoid? Here's a very unscientific, highly subjective and unapologetically snarky list of our least favorite US tech job locales."

Comment Re:Summary of Vunerabilities (Score 1) 413

by decrypted08 on Thursday June 11, 2009 @10:30AM (#28293553) Attached to: Security Flaw Hits VAserv; Head of LxLabs Found Hanged

Summary from http://www.milw0rm.com/exploits/8880 seems pretty serious but quite difficult to fix all of them in 2 weeks.

Timeline :

05/21/2009 - sent initial email to vendor with a link to a private resource for viewing various kloxo hiab575 vulnerability info 05/23/2009 - received the following: "Thanks for the info. I will review this and let you know." (no signature) 05/30/2009 - sent an email asking if there were any updates 06/01/2009 - received the following: "Sorry for the delay. I am currently looking into this, and will reply in a couple of hours time." (no signature) 06/04/2009 - nothing heard from vendor, and the private resource containing the vulnerability info still does not appear to have been accessed

2 weeks have passed since the initial notification. Vendor appears uninterested.

ISSUE 1 - uid/gid reuse ISSUE 2 - unprivileged port use ISSUE 3 - default passwords ISSUE 4 - useradd string in the process list ISSUE 5 - XSS ISSUE 6 - remotely create partially user controlled file names and directories. Locally append uncontrolled data to any file ISSUE 7 - local users can take control of any file or directory ISSUE 8 - local users can take control of any file or directory ISSUE 9 - local users can overwrite any file on the box ISSUE 10 - yet another symlink attack for local users ISSUE 11 - metachar injection, local command execution as root ISSUE 12 - web stats world readable password hashes ISSUE 13 - local users can overwrite any file on the box ISSUE 14 - metachar injection, local command execution as root ISSUE 15 - remotely block any - or every - IP addr in hosts.deny ISSUE 16 - remote CPU and mem usage DoS ISSUE 17 - local users can truncate and control any file ISSUE 18 - just 2 more symlinks to own any file on the box ISSUE 19 - file manager, view and edit any file ISSUE 20 - file manager PT II ISSUE 21 - file manager PT III ISSUE 22 - local user symlink attack ISSUE 23 - local user symlink attack (last one) ISSUE 24 - sql injection in the "Forgot Password" form

LMAO! can you say botnet material? That network was like a hackers playground.

Slashdot Top Deals