A
-
Welcome to Tux Reports: Where Penguins Fly. We hope you find the topics varied, interesting, and worthy of your time. Please become a member and join in the discussions.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
F
Frank
Flightless Bird
On 3/4/2010 9:40 AM, Alias wrote:
> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>
>
Yawn.
> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>
>
Yawn.
S
Spring Sprung
Flightless Bird
From Sancho's viewpoint, the DEP bypass doesn't exploit a vulnerability in
Microsoft's code, but rather takes advantage of a design flaw. "Microsoft
can fix this, and I have faith they will," he said.
A big so what. This morning one of my websites was hacked and defaced - the
server was running linux.
"Alias" <aka@masked&anonymous.com.invalido> wrote in message
news:hmorau$7bt$1@news.eternal-september.org...
> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>
> --
> Alias
A
Alias
Flightless Bird
Spring Sprung wrote:
>
>
> A big so what. This morning one of my websites was hacked and defaced -
> the server was running linux.
You need a hosting service that actually has IT folks who know what
they're doing.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmorau$7bt$1@news.eternal-september.org...
>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>
>>
>> --
>> Alias
>
--
Alias
>
>
> From Sancho's viewpoint, the DEP bypass doesn't exploit a vulnerability
> in Microsoft's code, but rather takes advantage of a design flaw.
> "Microsoft can fix this, and I have faith they will," he said.
I don't.
>
>
>
> A big so what. This morning one of my websites was hacked and defaced -
> the server was running linux.
You need a hosting service that actually has IT folks who know what
they're doing.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmorau$7bt$1@news.eternal-september.org...
>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>
>>
>> --
>> Alias
>
--
Alias
J
Jasper
Flightless Bird
"Alias" <aka@masked&anonymous.com.invalido> wrote in message
news:hmosud$dl3$2@news.eternal-september.org...
> Spring Sprung wrote:
>>
>>
>> A big so what. This morning one of my websites was hacked and defaced -
>> the server was running linux.
>
> You need a hosting service that actually has IT folks who know what
> they're doing.
>
>>
>>
>>
>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>> news:hmorau$7bt$1@news.eternal-september.org...
>>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>>
>>> --
>>> Alias
>>
>
>
> --
> Alias
You really need to read the full article not just the headline.
"The proof-of-concept that Wever published doesn't actually do damage, since
it is wrapped around an exploit of a bug in Internet Explorer 6 that was
patched years ago."
"This exploit targets a bug that was fixed in IE6 in 2005, which explains
why it does not affect any recent install," said Wever in a comment he added
to his blog entry. "This release is for academic purpose only, it is not an
0-day that script-kiddies can use to pwn your grandma's computer."
news:hmosud$dl3$2@news.eternal-september.org...
> Spring Sprung wrote:
>>
>>
>> From Sancho's viewpoint, the DEP bypass doesn't exploit a vulnerability
>> in Microsoft's code, but rather takes advantage of a design flaw.
>> "Microsoft can fix this, and I have faith they will," he said.
>
> I don't.
>
>>
>>
>>
>> A big so what. This morning one of my websites was hacked and defaced -
>> the server was running linux.
>
> You need a hosting service that actually has IT folks who know what
> they're doing.
>
>>
>>
>>
>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>> news:hmorau$7bt$1@news.eternal-september.org...
>>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>>
>>> --
>>> Alias
>>
>
>
> --
> Alias
You really need to read the full article not just the headline.
"The proof-of-concept that Wever published doesn't actually do damage, since
it is wrapped around an exploit of a bug in Internet Explorer 6 that was
patched years ago."
"This exploit targets a bug that was fixed in IE6 in 2005, which explains
why it does not affect any recent install," said Wever in a comment he added
to his blog entry. "This release is for academic purpose only, it is not an
0-day that script-kiddies can use to pwn your grandma's computer."
S
Spring Sprung
Flightless Bird
"Alias" <aka@masked&anonymous.com.invalido> wrote in message
news:hmosud$dl3$2@news.eternal-september.org...
> .
>
> You need a hosting service that actually has IT folks who know what
> they're doing.
>
Yet you think linux will make it on the desktop. If linux guys themselves
have a time of it with linux .. well .. sheesh.
news:hmosud$dl3$2@news.eternal-september.org...
> .
>
> You need a hosting service that actually has IT folks who know what
> they're doing.
>
Yet you think linux will make it on the desktop. If linux guys themselves
have a time of it with linux .. well .. sheesh.
D
DanS
Flightless Bird
"Spring Sprung" <spring.sprung@not.an.address.net> wrote in
news:hmotno$i6q$1@speranza.aioe.org:
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmosud$dl3$2@news.eternal-september.org...
>> .
>>
>> You need a hosting service that actually has IT folks who know what
>> they're doing.
>>
>
> Yet you think linux will make it on the desktop. If linux guys
> themselves have a time of it with linux .. well .. sheesh.
There's IT schmucks everywhere, it doesn't matter what OS.
(FWIW, a system being 'hacked' by someone that was able to guess/brute
force crack a password is not an exploit.)
news:hmotno$i6q$1@speranza.aioe.org:
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmosud$dl3$2@news.eternal-september.org...
>> .
>>
>> You need a hosting service that actually has IT folks who know what
>> they're doing.
>>
>
> Yet you think linux will make it on the desktop. If linux guys
> themselves have a time of it with linux .. well .. sheesh.
There's IT schmucks everywhere, it doesn't matter what OS.
(FWIW, a system being 'hacked' by someone that was able to guess/brute
force crack a password is not an exploit.)
A
Alias
Flightless Bird
Spring Sprung wrote:
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmosud$dl3$2@news.eternal-september.org...
>> .
>>
>> You need a hosting service that actually has IT folks who know what
>> they're doing.
>>
>
> Yet you think linux will make it on the desktop.
It already has.
> If linux guys
> themselves have a time of it with linux .. well .. sheesh.
Who are these "linux guys"? Why should we believe you?
--
Alias
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmosud$dl3$2@news.eternal-september.org...
>> .
>>
>> You need a hosting service that actually has IT folks who know what
>> they're doing.
>>
>
> Yet you think linux will make it on the desktop.
It already has.
> If linux guys
> themselves have a time of it with linux .. well .. sheesh.
Who are these "linux guys"? Why should we believe you?
--
Alias
S
Spring Sprung
Flightless Bird
Linux guys are people who run linux.
"Alias" <aka@masked&anonymous.com.invalido> wrote in message
news:hmovas$mst$1@news.eternal-september.org...
> Spring Sprung wrote:
>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>> news:hmosud$dl3$2@news.eternal-september.org...
>>> .
>>>
>>> You need a hosting service that actually has IT folks who know what
>>> they're doing.
>>>
>>
>> Yet you think linux will make it on the desktop.
>
> It already has.
>
>> If linux guys themselves have a time of it with linux .. well .. sheesh.
>
> Who are these "linux guys"? Why should we believe you?
>
> --
> Alias
"Alias" <aka@masked&anonymous.com.invalido> wrote in message
news:hmovas$mst$1@news.eternal-september.org...
> Spring Sprung wrote:
>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>> news:hmosud$dl3$2@news.eternal-september.org...
>>> .
>>>
>>> You need a hosting service that actually has IT folks who know what
>>> they're doing.
>>>
>>
>> Yet you think linux will make it on the desktop.
>
> It already has.
>
>> If linux guys themselves have a time of it with linux .. well .. sheesh.
>
> Who are these "linux guys"? Why should we believe you?
>
> --
> Alias
A
Alias
Flightless Bird
Spring Sprung wrote:
> Linux guys are people who run linux.
And some know what they're doing and some don't. Yours don't.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmovas$mst$1@news.eternal-september.org...
>> Spring Sprung wrote:
>>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>>> news:hmosud$dl3$2@news.eternal-september.org...
>>>> .
>>>>
>>>> You need a hosting service that actually has IT folks who know what
>>>> they're doing.
>>>>
>>>
>>> Yet you think linux will make it on the desktop.
>>
>> It already has.
>>
>>> If linux guys themselves have a time of it with linux .. well .. sheesh.
>>
>> Who are these "linux guys"? Why should we believe you?
>>
>> --
>> Alias
>
--
Alias
> Linux guys are people who run linux.
And some know what they're doing and some don't. Yours don't.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmovas$mst$1@news.eternal-september.org...
>> Spring Sprung wrote:
>>> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
>>> news:hmosud$dl3$2@news.eternal-september.org...
>>>> .
>>>>
>>>> You need a hosting service that actually has IT folks who know what
>>>> they're doing.
>>>>
>>>
>>> Yet you think linux will make it on the desktop.
>>
>> It already has.
>>
>>> If linux guys themselves have a time of it with linux .. well .. sheesh.
>>
>> Who are these "linux guys"? Why should we believe you?
>>
>> --
>> Alias
>
--
Alias
S
Spring Sprung
Flightless Bird
Who cares? You're in Spain, go out and get some sun and have a nice end week
and weekend or something.
and weekend or something.
B
Bill Yanaire, ESQ
Flightless Bird
Best thing you can do is power down you PC, fill your BONG or BOWL with Hash
and waste the day away!
Just FYI.
and waste the day away!
Just FYI.
F
FiOS-Dave
Flightless Bird
The Address Space Randomization bypass only happens because 32 bits isn't
enough!
Systems running a 64 bit OS are protected.
Dave
"Spring Sprung" <spring.sprung@not.an.address.net> wrote in message
news:hmosnt$fp8$1@speranza.aioe.org...
>
> A big so what. This morning one of my websites was hacked and defaced -
> the server was running linux.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmorau$7bt$1@news.eternal-september.org...
>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>
>> --
>> Alias
>
enough!
Systems running a 64 bit OS are protected.
Dave
"Spring Sprung" <spring.sprung@not.an.address.net> wrote in message
news:hmosnt$fp8$1@speranza.aioe.org...
>
>>
> From Sancho's viewpoint, the DEP bypass doesn't exploit a vulnerability in
> Microsoft's code, but rather takes advantage of a design flaw. "Microsoft
> can fix this, and I have faith they will," he said.
>
>
> A big so what. This morning one of my websites was hacked and defaced -
> the server was running linux.
>
>
>
> "Alias" <aka@masked&anonymous.com.invalido> wrote in message
> news:hmorau$7bt$1@news.eternal-september.org...
>> http://www.computerworld.com/s/article/9165378/New_exploit_technique_nullifies_major_Windows_defense
>>
>> --
>> Alias
>