Posts by koolholio

Devs rule, Geeks rule, Ops think they rule

The "happy as larry ecosystem"

Very much agreed --- "The fact that many developers do write awful code does not mean this is universally applicable."

Its interesting how it refers to the layers... of the OSI model? However this is different from knowing ITIL or other frameworks, which are (ab)/used commonly.

Doesnt cloud require hardware? even on a client and server side.

I guess an Operational Developer is better than a dysfunctional one though?

Fundamentally, I'd rather leave GPs out of my comment.

Own opinion of the patterns laid in this article

Aurora and RSA I believe had links with the TDSS (TDL) rootkit? Which ironically, Russian-based Kaspersky were the first AV company to make a tool to 'fix'

Night Dragon sounds similar to stuxnet style according to a whitepaper by Mcafee?

Whilst TitanRain, ShadyRAT sound like they go hand in hand? -- Like bugware would or Kryptik (which even sounds like a little russian gimmic?)

The chinese might use honeypots in order to identify threats to their networks (Provided they have sufficient HIPS and IDS solutions) --- I guess the great firewall of china was built for this purpose, perimeter control? --- Oh wait, it was to censure the population?

Next will the Arabic nations be to blame? Since I've noticed a trend of turkish / arabic groups on Zone-H.org?

AV is only as good as the heuristics it uses, its not a fully comprehensive security package!

Either way, It'll all seem to go in circles? :-/

Apple, ooh Apple!

How many will have upgraded or even noticed Quicktime 7.7.3 was released recently! New Apple TV and iOS revisions? with all this finger pointing at Java and Flash, since Apple kits are supposedly 'exempt' from vulnerability? --- the common fanboi attitude -- perhaps even a misconception?

At least Apple are trying to take a proactive approach! I'll give them kudos for that! But not for the prior TIFF bugs!

Although, He who throw stones in glass houses be a little silly? Since no company could ever be perfect and it is unrealistic to believe so. Issac Newtons law of gravity isn't it? Or is it Murphy's law?

JavaFX has been Integrated

Bad uninstall procedures if you ask me, given older versions of JavaFX is listed separately under the installer id's

Since they incorporated java FX updates within the JRE now!

Only just figured this out?

Web services are usually easy targets, since theres the issue of 'upgrading the platform' but 'forgetting' to upgrade the code running through the platform to suit, so they rarely do either usually, unless its break-fixing, mainly due to service level agreements.

I severely doubt application layer/multi vectors or spoofing or poisoning attacks are any "new" tactic, but it would make, theoretically, logical sense to get the maximum bang for your buck in the "criminal underworld"?

DNS specs have changed considerably in the last 10 years and the invention of IPv6, this is why some networks have modified their servers for their clients 'stupidity' without knowing/measuring the full extent of their changes.

If they contain the following in any java applet:

AverageRangeStatisticImpl its got an RCE.

Method Handle its got an RCE.

Thats not a misconfiguration, thats a 'security risk by code'. *applauds this so-called revolution*

Fish and chips is an english delicacy! Do I smell something sizzling?

They missed out on the handshake?

I'll go buy a milkshake instead, thats as secure as UDP is gonna get without handshaking!

Technically

Wheres the IT company/angle in this?

Could an IT company do the same?

Just some facts and food for thought...

Whilst we're all still alive and not in prison:

The system clearly failed in its design to 'rehabilitate' offenders... Because thats what it was designed to do?

It failed to identify a 'victim' to fund the charades... that was willing to take the case further...

It failed to convict a supposed offender, unless after his suicide / death counts? ...

It failed to add in any remorse for actions directly or indirectly of politicians or of those in power...

I wonder why he wanted to 'break rules' in the first place?

What they didnt mention was a hidden rootkit from the programming machine which fixes "the bug"

This is why an annual credit report helps to keep the fraudsters away

time to get strict on those data losses of idiots who 'couldnt care less for the consequences of their (in)/actions' ?

TippingPoint is by no means 'inpenetrable'... you could liken it somewhat to its 'snort signatures'

Sophisticatedly simple attacks rarely get noticed or even bothered about... Whats the most damage they can cause?

Day later: Oh... that damage!

Really old news

Not surprised at all...

Wonder if the UN / NATO would step in on cyber ops? Since its rediculous to begin with!

ARM stands for...

"A right mess"

Features:

Slower

Higher error rate

Fancy and Convenient, yet so many 'bugs'

F*C*book is what I'm thinking --- error bits included!

"This will help mitigate other Java vulnerabilities that MAY be discovered in the future."

As the title reads... Just as never turning the machine on will eliminate all except for WAKE ON technologies.

Its true that... if you have no plan to use it, or need it, why is it installed... However lets be realistic... Its not half as bad as Adobe's issues given most users probably werent aware that 11.5.502.146 was released recently since code for prior versions went public... and could easily be blocked by decent AV heuristics... because it mainly targets JMX classes in java.

Now lets focus upon more pressing matters such as... nginx, IIS 8 and Apache 2.4.3 ... IE 7,8,9 and 10 connection handling overruns which result in a DoS... and can be performed remotely!

6-to-4

Simple solution is there, its been made...

This solves the issue with NAT'ing which is Directly unneccessary and hardly secured. DNAT versus SNAT

Now would someone please masquerade (oops, serenade) the 6-to-4 ... http://en.wikipedia.org/wiki/6_to_4

then they could assign us all ipv6 addresses without needing to affect anybody?

Pro-active Prevention and Planning is key!

As simple as the title reads... the 3 P's

Filters are useful, better than just a heuristics engine with signatures!

Psychologists can read the DSM-V manual, particularly Internet Addiction Disorder (IAD)...

But trick cyclists are usually the ones doing the work? ^_^

I cant say this particular feeling is different

Theres one too many in the IT world, and elsewhere trying to get their leg over just to keep up with the jones' next door.

Americans on the other hand, this is not intended to offend, but can (yes CAN) tend to be a little OTT or overly dramatic as if its a religious calling.

What I believe is needed is more compassion within industry (notice industry and not commercial!), less 'one sided or unfair competition' and to put it simply, more morals and acceptance that every man has his vice, and that this is what selfish acts (particularly by government departments) can effectively lead to.

I wonder if they trust the right people to know what they're looking for in certain areas.... Since tradgedies such as this can result from what I call the 'leg humper' syndrome, particularly since nobody is perfect.

Too many chiefs, not enough indians

We didnt mean litterally grab a bunch of indians as cheap slaves...

Perhaps this is a repeat of history? Fuelled by the same thing that caused it back then? Greed?

All must be fully open

But must run on a valid, licensed "copy" of Windows

Ahaha you're havin' a laugh!

Wouldnt be too bad if the live id sign in worked half the time! LOL

surely ITU specs were patented

The ITU specs which were documented most likely way before this.... which would override any trolling patents! should take precendence!

Vira-catalogorically speaking

Are you sure it had the "apparent" Conficker-B infection in the DCIM.exe (backdoor.GENERIC) and Autorun (Downadup.B) files?

Given the vmx in the sys restore is infected under what appears to be a SERVICE SID... with Conficker.K variant?

Since some antiviruses have been known to report false positives, purely for certain MD5 checksums...

And the machine appears to have a newer variant? are you sure the machine isnt infected itself? or its an extremely mis-matching virus scan/signature?

Drivers run underneath the kernel

It is not a kernels fault for driver development, not knowing which code this is reference to though...

ioctl() does exactly what it says on the tin...

input <|> output control...

You can't blame a kernel for shoddy driver development! I've seen many a dodgy driver code in my time due to exception handling being missed out or broken! some causing some right old mayhem for device and machine. Not exclusive to linux either!