Friday, September 29, 2006

Important IE and Windows Patch


Details: Buffer overflow in Vector Markup Language (VML) library file used by Microsoft Internet Explorer and Outlook.

Description:
Using IE and Visiting a website with the file will automatically download malware onto your computer without your knowledge. Even an Up to date patched machine can be infected. As of a few days ago, Microsoft released a patch available at update.microsoft.com
or http://www.microsoft.com/technet/security/advisory/925568.mspx
Be sure and update your computer if you are running Windows XP.

A demo video of what the Vulnerability can do to your machine
is available at this website.

Post On Forums? Here's ATip


Here is a tip on how to prevent and improve your posting on public forums.

How to prevent Email Spam
Most of us have found posting your own email address on a forum is a bad idea. For instance someones giving out GMail invites and I just don't have one yet, and I really want one, so I post my email address me@hotmail.com.
Hoping that I'll get that GMail invite, well you might just get that and a little extra spam.

I have seen this every where and this is one of the main reasons you have spam in your Inbox. Other techniques I've seen have been: "me(at)hotmail(dot)com","me--at--hotmail--dot--com", yeah that might work sometimes but spammers have caught on to that. If you want to be sure to prevent spam from showing up in your Inbox try http://tinymailto.com/
Tinymailto is a great service that turns your email address into a url, and adds a captcha to that page to prevent bots and spammers from sending you spam.

So for instance I want to post my email address on a forum so I surf over to http://tinymailto.com/ and create an account and provide my email address and them pick a url for instance "tinymailto.com/me" so then I post that link into the forum post instead of my email address. So when someone clicks on that link, it will take them to a page that has a captcha and after successful entry then your email address will be shown to that person giving out the invites.

It really has worked for me and I get very little spam now.

While I've been talking about spam and spammers recently, I'm going to put up a post soon on some free Spam solutions to help prevent that spam. Look for it! Let me here your comments on any spam software you've used by using the submission forum. Submit by clicking: "Want to submit something" on the right hand column.


Website Update and Situation


As I posted a few days ago that I opened a new website which included a Linux and Security blog, photos, forum, and security news. Well, come to find out that the host that I was using was a known spam company. So never use 555mb.com,122mb.com, or lxhost.org as they are spammers. I also wasn't able to login and my SQL Database became corrupt mysteriously. So now I'm going to have a tag for all security content and that tag will be "Security", so you can find those post's easier. I'm working on hosting through Godaddy and setting up a site and will let you know when I launch that site. So, In the meantime I will be only posting here no more at my old blog. Thanks!

Monday, September 25, 2006

New Security Fix Website

I will now be putting most of my time and effort into a daily and weekly website that is aimed at Home and Average computer users on what patches and what they need to due that week, to keep there computer safe. I will look at what patches and other tweaks to keep there information secure. Look for it real soon!

Friday, September 22, 2006

Take advantage of all Web 2.0 Content


Here are a few sites that list the most popular content form very popular and well know sites. One more thing to check in the morning along with your email:

THE WEBLIST .NET
Link
"What People are Clicking on Today"

Popurls.com
Link
"Popular urls to the latest web buzz"

Original Signal-Technology
Link
"Transmitting Tech"

Original Signal
Link
"Transmitting Web 2.0"

Wednesday, September 20, 2006

Ubuntu Suprised Me

I recently installed Ubuntu Linux on an older Intel Celeron machine and I got Automatix up and installed codecs, apps, and so forth. I've got to say that it is wonderful. It could be a bit faster if I ran in on my main machine, but works faster than Windows. I used a very, very simple Autmatix install.
One of the easiest I've found only three Terminal Lines. I'm really thinking about switching from Windows XP on the Main machine I'm using now and goto Ubuntu. The main reasons I'm not is: 1. I've customized every thing on the computer now and to start over, I just see no point. 2. My ATI card is having problems with Ubuntu. 3. There are so many apps that work on Windows and not Ubuntu. 4. I'm also waiting to see what Vista is going to be like. I guess I should read this article again.

Daily Update

School has now gotten to be very busy, now that I'm the Cross Country manager. Being Cross Country manager con sits of helping with scoring, setting stuff up, cleaning up and writing down times. Usually on days of CC meets I won't get home till around 8 o'clock. It was really quite funny how I got to be the Cross Country manager. I was just walking down the hallway and our Coach hollered to me and asked me to be the manager and I said sure. So, now I will be traveling with them on the road, Helping out.

Thursday, September 14, 2006

Office 2007 Technical Refresh Now Avaliable

Microsoft Office 2007 Technical Refresh build is now available for download from here . This is an update build to Beta 2 so you will need to already have Beta 2 installed to use it. As, I've heard there is only minor bug fixes and other minor UI changes and the ability to run on Vista RC1. I have not looked at it yet. I will post my results after I take a look at it. I'm not expecting much more than from the Original Build (Beta 2).
Check it out:
Download Link

Apple: Shame On You

Apple just announced there new addon to there product line called yep you guessed it iTv. iTV is a small box that can contain media that hooks in with iTunes, Your iPod, and your TV. Basically like Windows MCE but in a portable box. The cost of iTv was announced at $299. But the thing about it is that it looks exactly like Windows Media Center Edition. Take a look at the screenshots below and tell me what you think.


Apple iTV




Windows Media Center Edition (MCE)



So don't tell me that Microsoft Copies everything Apple, that is complete BS.

Watch the Presentation of iTV by Steve Jobs here

Tuesday, September 12, 2006

Open Source Software: Why To Use

I've metioned this before but haven't really talked about it in detail. Open Source software is the thing now. Why? It's Free, It works, Works better than lots of other apps that you have to pay for, and it's more secure. I believe that we will see a big boost in popularity with Open Source Software in the next few years. People are fed up with buying these expensive, bloated software applications.

Here are some reasons to use Open Source software:
(Feel free to add any into the comments)

1.Lots of times it's more secure than other closed source applications.
2.It's Free-The best part
3. We trust it because it's open source and anyone can view the source code
4.Reliable

I've mainly switched to Open Source software because software has gotten to be bloated with Junk and Crap I don't need. I recently downloaded Real Player to watch a real player file. It was just miserable the default settings were to change the file associations with all media files, wanted to install weather bug. That's why I enjoy freeware such as RealPlayer Alternative and Quicktime Alternative available at filehippo.

Look at this chart and tell me how many Open Source apps you find:
http://www.thepcspy.com/articles/other/what_slows_windows_down/2

Another page to check out if you can't find an alternative to that paid application that you love check out this list. Your bound to find something useful.

Saturday, September 09, 2006

Second Life Database Hacked

I just received and email in my inbox regarding that the Second Life Database was "Breached" with an "Zero-Day Exploit" through third-party software.

The Email Reads:

Hello Second Lifers,

As announced on our website at http://secondlife.com/corporate/bulletin.php and corporate blog at http://blog.secondlife.com/?tag=security, Second Life discovered an attack on our servers on September 6, 2006. The full security bulletin is reprinted below, followed by a FAQ that includes important security advice for our community.

===================
SECURITY BULLETIN


*SAN FRANCISCO, CA. (September 8, 2006)* - Linden Lab reported today that it is notifying its community of a database breach, which potentially exposed customer data including the unencrypted names and addresses, and the encrypted passwords and encrypted payment information of all Second Life users. Unencrypted credit card information, which is stored on a separate database, was not compromised.

The breach was discovered on September 6, 2006 and promptly repaired. The company then launched a detailed investigation that revealed an intruder was able to access the Second Life databases utilizing a "Zero-Day Exploit" through third-party software utilized on Second Life servers. Due to the nature of the attack, the company cannot determine which individual data were exposed. The company's technical investigation is ongoing.

"We're taking a very conservative approach and assuming passwords were compromised and therefore we're requiring users to change their Second Life passwords immediately," said Cory Ondrejka, CTO of Linden Lab. "While we realize this is an inconvenience for residents, we believe it's the safest course of action. We place the highest priority on protecting customer data and will continue to take aggressive measures to protect the privacy and security of the community."

Linden Lab advises all users to take appropriate precautions against misuse of personal information. To reduce the risk of fraud, Linden Lab will not contact individuals by phone or any other method asking for private information unless it is in response to an inquiry from the individual user.

===================
FREQUENTLY ASKED QUESTIONS

Q: I can't log in to Second Life. How can I regain login access?

A: As a security precaution, all Second Life account passwords have been invalidated. You need to establish a new password in order to log in. You can receive instructions for changing your password by visiting http://secondlife.com/password. Please note that we are updating the password request process - if you have recently tried that page and could not change your password, please try again.


Q: Was my account information compromised?

A: We discovered that a database was accessed by the intruder, and we are able to determine the aggregate size of the data that was downloaded through the intrusion. The database accessed includes customer account information, including Second Life account names, real-life name and contact information in unencrypted form. Account passwords and payment information (consisting of credit card numbers and Paypal transaction IDs) are stored in this same database in encrypted form. However, there is no way to identify which data were accessed at the level of individual users, only the aggregate size of the downloads returned from the intruding database queries. We are conducting further investigation to try to determine the class of data exposed.


Q. Is my information still at risk from another attacker?

A: The compromised system was rebuilt and made more secure. We will be announcing additional plans for security improvements in a post to come on our blog, at http://blog.secondlife.com/?tag=security.


Q: Should I be concerned that encrypted password and encrypted payment information may have been exposed? Is the encryption unbreakable?

A: We use an MD-5 hash (scramble function) and salt (additional data) to encode passwords and payment information, an industry standard technique that is commonly regarded as difficult to defeat. However, no hash or encryption is unbreakable, given enough time and computing power. If you believe that you may be the victim of credit card fraud, you should contact your credit card company. If you use your Second Life password on other websites, online services, or any other services, you should change the password on that service as well. You can find additional tips for protection of your identity online at http://www.privacy.ca.gov/sheets/cis1english.htm.


Q: What kind of attack was used to gain access to the Second Life databases? Has the identity of the attacker been established?

A: We have gathered a significant amount of information regarding the attack and the attacker. However, because the investigation is ongoing, we cannot provide very detailed information regarding the type of attack or identity of the attacker. We can disclose that the intrusion path took advantage of a "zero-day exploit" in third-party web software.


Q: What was the timing of the attack and Linden Lab's investigation?

A: Our forensic investigation began on September 6, 2006. Based on this investigation, the intrusion attempts may have started as early as September 3, 2006. However, we have not found evidence of successful database access occurring before September 5, 2006. On September 6, 2006, unusual activity in our database logs revealed the attack to Linden Lab, and we investigated, found and closed the intrusion on the same day. At that point, there was no evidence that databases containing customer identity information had been compromised. For the following two days, the focus of our investigation was to determine the extent of the database access and the nature of the data downloaded from our system. On September 8, 2006, we concluded that there was a substantial likelihood that customer account information could have been accessed. The investigation is ongoing and we will report further results as they become available at http://blog.secondlife.com/?tag=security.

Sincerely,

Linden Lab and the Second Life team


Links Regarding The Matter (Not Very Many since this was just released like eight minutes ago)

http://blog.secondlife.com/?tag=security

http://secondlife.com/corporate/bulletin.php