SecurityRatty: tag: odd

The Inevitable iPhone 3G Post

2008-06-11 12:37:46 by Glennf in Wi-Fi Networking News

...odd for me. The iPhone is much more like a full-blown computer than any smartphone I've used. It might be the superior browser, and the fact that a single company and design vision has ensured the maximum CPU is available for each current task, and that the interface and actions are nearly always consistent across every piece of software....

Tags: iphone, wi-fi hotspot, wi-fi, device, mobile device, wi-fi requires, non-compromise device, computer, full-blown computer

Orphaned Symantec Root Certificates

2007-08-02 15:12:18 by Editor in Cheap Hack

...odd. The selected certificate is one of two Symantec certificates. Three things are of interest, and you can see the first two in the picture: The purposes for the certificate are " ". Usually certificates are listed as being used for a more limited set of purposes, such as server authentication or code signing. Also note that the "Friendly...

Tags: symantec, symantec products, system unstable, symantec loans, system, norton removal tool, expect normal users, vista systems, sign malware

Google Spamming Us

2007-12-20 22:11:11 by RSnake in ha.ckers.org web application security lab

...odd traffic. Some of it good, some of it not so much. Lets take a look at some of Googles traffic since its a slow day. If nothing else its good for a laugh. First lets look at Google trying to hack us - XSS style 66.249.73.40 - - [26/Nov/2007:01:53:58 +0000] GET /blog/?%22%3E%3Cscript%3Ealert(1)%3C/script%3E HTTP/1.1 200 55053 - Mozilla/5.0...

Tags: google, html http1, http1, html, google likes viagra, referrer spam, spam, google spam, con google

Initiating Probes Against Servers Via Other Servers

2007-12-09 22:41:37 by RSnake in ha.ckers.org web application security lab

Okay, this is convoluted but still kinda cool. I was looking through some pages on various tools out there, and happened across GRCs probe page that is designed to detect if there are open ports and what the threats are associated with that port. It is protected from nefarious purposes by only scanning the port of the IP address you are...

Tags: grcs probe, probe, grcs probe page, port, port scan, page, w3cs port, w3cs validator, grc

1&1 Internet Customers Vulnerable to XSS

2007-12-30 21:15:23 by RSnake in ha.ckers.org web application security lab

...Odd problem. Ive ran into similar problems with hosting providers that put log files for all their customers in the same predictable location. So finding their customers is the only hard part. Getting their logs is easy! Nice find

Tags: customers, xss, internet, dom based xss, file, john smith, predictable location, pretty easily, ads based

Bogus Microsoft sweepstakes emails

2007-08-19 22:35:48 by Steve Riley in Steve Riley on Security

...odd The subject line is "YOU WON (500,000.00GBP)! Microsoft congratulates you!" Official communications from us typically DON'T SHOUT FROM THE ROOFTOPS. Also, it's incorrect to use both a currency symbol and the three-letter currency name. This like saying "$1,000USD." It's either "$1,000" or "1,000USD," but not both. And why is the amount in...

Tags: microsoft sweepstakes, sweepstakes, microsoft, email, email insists, domain, american domain, subject line, emails

Zune Killer App - Windows Media Center

2007-11-26 21:55:40 by jrjones in Jeff Jones Security Blog

...odd place (mine is on an external half-TByte drive Plug in your Zune device as a guest Sync recorded TV shows to your heart's content Now, let's see why this rocks... iPod vs Zune TV Comparison The Apple Way There was much ado when the Daily Show became available on iTunes for $1 per show or $9.99 for 16 episodes (roughly 3 weeks of shows). I...

Tags: zune, apple tv, apple, tv, tv movies, zune software, zune tv comparison, media center, windows media center

MySpace Phishers Now Targeting Facebook

2008-01-07 19:20:52 by HASH0x898bea0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...odd postings of messages on their "wall" from one of their friends, saying: "lol i can't believe these pics got posted.... it's going to be BADDDD when her boyfriend sees these," followed by what looks like a genuine Facebook link. But the link leads to a fake Facebook login page hosted on a Chinese .cn domain. The fake page actually logs the...

Tags: facebook, site facebook, facebook users, genuine facebook link, login details, login, myspace, facebook-login, malware

Turns out John found a bargain

2008-01-17 10:35:00 by Keith Brown in Security Briefs

...odd that Comodo didn't use their established trusted root to issue the SSL cert for the site where they sell these certificates Mea culpa

Tags: root, root cert, root store, ssl cert, excellent deal, cert costs, apparently john, mea culpa, comodo

Process Doubling

2008-01-27 22:44:57 by RSnake in ha.ckers.org web application security lab

I was working on a client a week ago or so and we completely compromised their network. Its a fairly common occurrence during an audit (given there are logistical reasons that make many common techniques off limits). It was mission accomplished for showing the vulnerabilities in the client. However, I started thinking about the firewall egress...

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo