SecurityRatty: tag: txt

Setting file ACLs with PowerShell part 5

2008-01-09 04:53:00 by Keith Brown in Security Briefs

...txt).GetAccessControl newRule = New-Object Security.AccessControl.FileSystemAccessRule "keith", Modify, Allow modified = $false dacl.ModifyAccessRule("Add", $newRule, [ref]$modified dir foo.txt).SetAccessControl($dacl All I've got left to explain is the last line of code. It's important to note that when you're tweaking ACLs, there are...

Tags: object, new-object security, dir foo, txt, series, code, acl, dacl, newrule

Anton Security Tip of the Day #15: Fear and Loathing in Event 560 (and 562 and 567)

2008-05-08 13:37:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...txt Image File Name : C:WINDOWSsystem32notepad.exe Primary User Name : Anton Primary Domain : XXXXXX Accesses : READ CONTROL SYNCHRONIZE ReadData (or ListDirectory WriteData (or AddFile AppendData (or AddSubdirectory or CreatePipeInstance ReadEA WriteEA ReadAttributes WriteAttributes WTH is that? Well, we know that the user 'Anton' has...

Tags: text file, 0testbedsimple text file, audit file access, file access, simple text file, event, access, file, anton security tip

Eicar.pdf

2008-05-20 18:02:02 by Dave Lewis in Liquidmatrix Security Digest

...txt). This PDF document has also an annotation with a JavaScript action linked to it. Clicking the annotation will export the embedded eicar.txt file to a temporary folder and launch the default editor for .txt files Read on Article Link

Tags: eicar, eicar test file, txt, txt files, pdf document, usual formats, txt file, javascript action, quick post

The Bot Hunter: An Event Processing Challenge

2008-08-15 09:35:00 by Tim Bass in The Complex Event Processing Blog

...txt where each line is an IP address of a bot, followed by a semicolon (or other delimiter of your choice) and the confidence factor, for example, 10.0.0.1;10 means that 10.0.0.1 is a bot, 100% sure Your solution must compare bots detected to a file/table called, for example, ./bots allowed.txt and ./bots denied.txt that are in the format IP...

Tags: bot, winner, bot hunter winner, bot based, non-bot results, results, bot scorecard, solution, block rogue bots

The Pseudo "Real Players"

2008-01-14 18:12:00 by HASH0x86ec1f0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...txt which was returning the following message during the last couple of hours " You're welcome for being saved from near infection As I'm sure others too like to analyze post incident response behavior of the malicious parties, in respect to this particular attack, during the weekend they took advantage of what's now a patent of the Russian...

Tags: main campaign domains, domains, campaign, real players, attack, error, malware attack, error messages, realplayer

Links for 2008-01-21 [del.icio.us]

2008-01-22 00:00:00 by Editor in Anton Chuvakin Blog -

...txt re: Hearing, Wednesday 25 April 07, entitled Addressing the Nation's Cybersecurity Challenges: Reducing Vulnerabilities Requires Strategic Investment and Immediate Action People Over Process What One MSP Needs - barcampESM session FFIEC InfoSec Handbook on Security Monitoring and Logging

Tags: information security knowledge, security, ffiec infosec handbook, soa world magazine, barcampesm session, socioeconomic factors, dancho danchev, mind streams, cybersecurity challenges

Anton Security Tip of the Day #14: More accesslog Fun: What Are You Not GETting?

2008-03-12 13:35:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...txt HTTP/1.0" 405 223 "-" "Microsoft Data Access Internet Publishing Provider DAV 1.1 The above uses a PUT request which is pretty much deprecated now; the purpose of the above is clearly malicious. In fact, modern Apache shouldn't even allow it, thus it responds with code 405 "Method Not Allowed." Nothing to worry about (even though some...

Tags: web server, server, web, web browsers, security, web discussion board, anton security tip, fun, modern apache

The Phorm Webwise System

2008-04-04 16:53:06 by Richard Clayton in Light Blue Touchpaper

...txt file to determine whether the website owner has specified that search engine spiders and other automated processing systems should not examine the site. This goes a little way towards obtaining the permission of the website owner for intercepting their traffic however, in my view, failing to prohibit the GoogleBot from indexing your page...

Tags: phorm, system, phorm assumes, phorm argue, phorm system, extensive technical details, technical details, system anonymises, details

Malware Attack Exploiting Flash Zero Day Vulnerability

2008-05-27 17:33:43 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...txt with the following binaries already obtained, analyzed and distributed among AV vendors 117276.cn /1.exe 117276.cn /2.exe 117276.cn /3.exe woai117.cn /bing.exe Detection rates for the exploit, the obfuscations and the malware binaries obtained Sample obfuscation Scanners result : 3/32 (9.38 F-Secure - Exploit.JS.Agent.oa GData -...

Tags: flash, malware, macromedia flash content, flash content, sample flash file, adobe flash player, adobe, participation domains, domains

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo