Google Experiments / Alternatives

Posted on in geek, internet
   Leave a reply

Everyone knows the default Google queries, you get your URL’s, keywords and the headline of the pages in the result-query. It doesn’t stop there …

Google has some new features to improve the “search experience”. You can view your results on a timeline, map or in context of other information types. Take a look at Alternate views for search results and prepare yourself to spend a couple of hours of “ohwh”s.

Russell Coker : redirecting output from a running process

Posted on in linux
   Leave a reply

Occasionnly you have a process that’s been running for a while and you decide that it’s time to log out. Of course, you’ve forgotten to use screen so when you log out, the process dies. The post by Rusell Coker shows that it is still possible to redirect the output of a running process. The process for doing so involves looking up the file handles used by the process (in /proc//fd) and then run gdb. In gdb you call the “close” system call to the current output, then create a new handler.

Authentication bypass in embedded devices

Posted on in security
   Leave a reply

There is a very interesting post by Adrian Pastor about authentication bypass.

He talks about the well known vulnerability in the Linksys WRT54G router where the page that contains the different settings is password protected but the page that does the actual processing of the data (for the Linksys, a CGI script) was not protected at all.

Security Twits

Posted on in internet, security
   Leave a reply

An interesting post by Jennifer Leggio on Security Twits (Security folks using Twitter).

Enabling the dag wiers repository on centos

Posted on in linux
   1 Reply

Dag Wiers provides an excellent repository for Red Hat flavored Linux systems. Adding them to CentOS 5 is easy.

First download the “rpmforge-release”-rpm. For CentOS 5, I choosed rpmforge-release-0.3.6-1.el5.rf.x86_64.rpm. The rpm’s are available at http://dag.wieers.com/rpm/packages/rpmforge-release/. Then install the rpm.

cd /tmp
wget http://dag.wieers.com/rpm/packages/rpmforge-release/rpmforge-release-0.3.6-1.el5.rf.x86_64.rpm
rpm -ivh rpmforge-release-0.3.6-1.el5.rf.x86_64.rpm

Spam Honeypots

Posted on in internet, security
   1 Reply

The Project Honeypot allows for everyone who is hosting a website to create a mini honeypot to trap spammers. I’ve configured mine to run at this site at “coast.php”.

It is a “poor-man” honeypot but can still offer useful results. Watch for my future writeups on how to create honeypots with Bind, Apache and Postfix.

Differences of tcpdump linux / openbsd

Posted on in linux, open source, security
   1 Reply

One of the nicer options of tcpdump under Linux is the -C (that is a capital C). This allows you to write the captured traffic to a file and have the file rotated at a given size. According to the man-pages :

-C
Before writing a raw packet to a savefile, check whether the file is currently larger than file_size and, if so, close the current savefile and open a new one. Savefiles after the first savefile will have the name specified with the -w flag, with a number after it, starting at 1 and continuing upward. The units of file_size are millions of bytes (1,000,000 bytes, not 1,048,576 bytes).

How long before someone adds this to the openbsd version of tcpdump?

CAPTCHA security Hotmail.com / Live.com bypassed

Posted on in security
   1 Reply

An article from Websense shows how new bots are able to bypass the CAPTCHA security that prevents spammers from creating large number of accounts.

According to Websense the three main advantages for spammers to target this CAPTCHA are:

  • the Microsoft domain is unlikely to be blacklisted
  • they are free to sign up
  • it may be hard to keep track of them as there are millions of users worldwide using the service.

.

The same arguments are true for the other major providers like gmail, yahoo, etc.