Archive

Archive for February, 2006

VMWare Server Beta

February 9th, 2006 No comments

Hey Hey,

Today's just full of cool posts... Thanks to EyeCre8 on AntiOnline.com for pointing this one out. As a follow up to their free VMWare Player, VMWare is releasing a free server product, VMWare Server. The Beta is now available for download. While I haven't had a chance to play with it yet, I'm sure it will be just as amazing as previous VMWare Products. Check it out at http://www.vmware.com/products/server/.

Peace,
HT

Categories: IT, Tools Tags:

Hiren’s Boot CD V7.8

February 9th, 2006 1 comment

Hey Hey,

So Hiren's Boot CD is up to V7.8.... and I just found out, last version I'd see was version 6... I'm really not sure on the legality of this disk, so I'd love if anyone could clear it up... For that reason I won't provide links to sites that allow you to download it, I'm sure everyone reading this is smart enough to do that on their own if they want to.

I will however provide you with a link to Hiren's site. http://homepage.ntlworld.com/hiren.thanki/bootcd78.html. If anyone is interested in seeing this added to CDVT, after I've found the legality of mentioning it myself, I'll definately try to contact Hiren and see what I can find out.

That's all... just a quick little update.

Peace,
HT

Categories: IT, Tools Tags:

CDVT – Computer Defense Version Tracker [Updated - Feb 12th]

February 9th, 2006 3 comments

Hey Hey,

CDVT is a project that was dreamed up by me off some comments on tracking current project versions by a colleague. I'm sure we'll release information on ourselves and how we came up with the project once we launch it. However, as I'm planning a move over the next couple weeks, there might be some delay in the actual launch, however I'm hoping to get it completed this weekend while I still have some free time.

The concept of the CDVT is to have the authors/maintainers of popular tools place a single text file on the root of their website. CDVT will check this file at regular intervals, and find contained it in the most recent version of the software, which it will update in it's database. The database will be used to populate the front-end... a small applet (most likely actually a table of some sort, maybe a full page) that will allow you to notice at a glace the most recent versions of the software and keep yourself up to date.

Included during the release, will be a front-end that you can incorporate into your own site, as well as hopefully an RSS feed and possibly the expansion to a mailed out newsletter, daily or weekly... possibly only on updates.

I am looking for contact from authors/maintainers that would like to have their projects added and also suggestions from everyone as to what other projects/tools you'd like to see included.

To date I've contacted the following projects and their authors/maintainers:

  • nmap (verified participation)
  • nessus (in communication)
  • snort
  • hping
  • dsniff
  • amap
  • hydra
  • BackTrack
  • WinPcap (verified participation)
  • ettercap
  • Ethereal (in communication)
  • Cain & Abel
  • John the Ripper (verified participation)
  • Kismet (verified participation)
  • Metasploit (verified participation)
  • HiJackThis [Added Feb 10th]
  • StartupList [Added Feb 10th]
  • netfilter/iptables [Added Feb 12th] (verified participation)
  • kernel.org [Added Feb 12th] (in communication) [Asking me to use their method and stray from a standard]
  • nikto [Added Feb 12th] (verified participation)
  • portsentry [Added Feb 12th]
  • aide [Added Feb 12th]
  • logwatch [Added Feb 12th]
  • openssh [Added Feb 12th] (in communication) [Asking me to use their method and stray from a standard]
  • openssl [Added Feb 12th]
  • syslog-ng [Added Feb 12th]

Let me know of any others, or any ideas/suggestions you may have. You can post your comments here, or contact me - ht[at]computerdefense.org

Peace,
HT

Categories: CDVT - Version Tracker Tags:

iPod chipmaker goes wifi, thinest slider phone yet, Cyber Storm 2006

February 9th, 2006 No comments

Hey Hey,

Todays links provide a wide range of interesting topics.... check em out.

http://www.channelregister.co.uk/2006/02/08/intel_enables_xeon_vt/ -- Intel has shipped a bios update that will enable virtualization support in quad+ (=>4 cpu) servers.

http://www.theregister.co.uk/2006/02/08/swsoft_linux_refresh/ -- SWSoft has released Virtuozzo 3.0 for Linux, their latest edition of their virtualization software... Priced at $1000/processor, I can think of many better ways to go

Long Link -- Experts have found evidence of T-Rex's granddaddy.... a fossil dating back 160 million years.

http://www.reghardware.co.uk/2006/02/08/nvidia_ships_quadro_nvs_110m/ -- Nvidia to start shipping multi-monitor laptops... I'm not really sure I see the usefulness of this, but the coolness factor is way up there. It's just a shame they'll be shipping them in Toshiba Tecra's

http://trevoke.ath.cx/ -- A member of AntiOnline posted his personal website, which I wouldn't normally link to... but in this case I'm making an exception... on this page you'll find LOGD (Legend of the Green Dragon) a LORD clone. Web Based with all the excitement of the old BBS days.

http://www.reghardware.co.uk/2006/02/08/portalplayer_wireless_ipod_chip/ -- The makers of the iPods audio chip, have teamed up with a bluetooth and wifi chip producer... With iPodLinux already under way could we soon see a wifi hacking iPod.

And on that note http://ipodlinux.org/Main_Page -- For anyone that was unaware of the linux distrobution being produced for the iPod... it's a worthwhile endevour and quite interesting to follow

http://www.reghardware.co.uk/2006/02/08/moto_unveils_z/ -- New Motorola Slider Phone... Just called 'Z'.. a 2.2in display, 1.3MP camera and only 14.8mm thick.

http://www.pcpro.co.uk/news/83404/burnandprint-device-announced-for-bluray-media.html -- Blu-Ray Burn 'n Print. Burning 25GB BD's (with future support for 50GB discs) and featuring a direct-to-disc inkjet printer, this $6000 recorder will be out in April.

http://www.reghardware.co.uk/2006/02/08/review_panasonic_dmc-fz30/ -- What can I say, other than cool. It's an 8MP Digital SLR Camera with a 12x Optical Zoom.

http://lfpress.ca/newsstand/Business/2006/02/09/1432988-sun.html -- PS3 cell-based processors to appear in IBM blade servers.

http://www.theregister.co.uk/2006/02/08/cerf_calls_for_neutral_net/ -- Vint Cerf, the father of the internet, has told Congress that two-tiered pay for service is a bad idea.... I'm glad to see someone speaking out against these greedy ISPs.

http://www.xatrix.org/article.php?s=4288 -- A quick search turned up no other links to this topic, but the US has launched a 'Cyber Storm' all week to simulate the results of a Hurricane Katrina size cyber attack.

http://www.theregister.co.uk/2006/02/08/apple_vulnerability/ -- A possible previously unknown exploit is used to hack a researcher at ShmooCon, which has lead to the question... Is 2006 the year of the OS X exploit... only time will tell but some experts are saying yes.

http://www.cpukiller.com/index.html -- Todays cool toy is CPUKiller... I've used this in the past and it is another link that was brought back to my attention. It is quite the cool toy... it will needlessly tie up CPU cycles... so those old games that run too fast to play on your new computer... now you can play them without a problem. :)

http://www.theregister.co.uk/2006/02/08/dell_pre-loads_google_toolbar/ -- Google to pay Dell to preload the google Toolbar, could cost up to $1,000,000,000. Google is already paying HP $1 / PC + 75cents for the first search performed on that PC to preload the google toolbar.

http://downgrade.org/?p=133 -- Creating a Beowulf Cluster the Easy Way -- An interesting article with full install notes.

http://arstechnica.com/news.ars/post/20060208-6140.html -- Since we've discussed iPod's possibly going wifi and the year of the apple exploit... How about this one... the rumor that Apple is looking to buy Palm... Could we possibly see a full Palm OS based iPod with wireless support in the future?

http://www.process.com/precisemail/bayesian_filtering.htm -- An introduction to Bayesian Filtering... not much to say.. you're either interested or not.

I think that's it for now... I wanted some good security links, but those will come later.. I have work to do

Peace,
HT

Categories: Daily Link List Tags:

Current Software Versions

February 8th, 2006 No comments

Hey Hey,

So I know that a lot of software doesn't have a tracker, and ones that do are usually mailing lists that many users don't want to subscribe to. I've contacted the author of one of more popular open source software solutions, and am awaiting a response... should I recieve this reponse, I will continue to contact others and I hope to develop a system, based on a scheme that's in my head, to monitor all popular tool releases at once... In the mean time, I figured I'd post thise just to keep everyone in check..

Current Versions

If anyone has any others they'd like to see monitored (as I build the list for my intended project) let me know... either leave a comment or email ht[at]computerdefense.org.

Peace,
HT

Categories: IT, Tools Tags:

Xgl – Linux Desktops Just got a Whole Lot Cooler

February 8th, 2006 No comments

Hey Hey,

This was just posted and I figured I'd share it here... It's a rather cool feat. True 3D desktoping (another new word from HT). Basically you have true transparancy... not just the background show, but the window behind it... The ability to bed the corners as you move a 3D cube to go from virtual desktop to virtual desktop... And so much more. I think I'll have to test this out later on today... Maybe it's time for my Desktop to go Linux-Based... I've been considering it for a while now...

Check it out @ http://www.novell.com/linux/xglrelease/.

Peace,
HT

Categories: IT Tags:

Drive-by Downloads Decreasing – New Nessus Client – StumbleUpon

February 8th, 2006 1 comment

Hey Hey,

Welcome to Today's Daily Link List. Let's Get on With the Show.

http://www.theregister.co.uk/2006/02/07/spyware_survey/ -- Previously 5.9% have sites tried to install something when you visited their site, this is now down to 5.4%.

http://reason.idealogica.com/ -- Reason is an application/network security scanner client for Nessus and Nessus compatible (OpenVAS etc.) servers. In addition to an improved user interface, it provides session management, templates, charts/graphs and report generation using XSLT. It is cross-platform, with platform specific releases available for Linux, Mac, and Windows, written in Java using SWT for a native experience, and it is open-source.

http://www.theregister.co.uk/2006/02/07/ibm_power6_show/ -- IBM's new chip, Power6, has been known to fly by at speeds of up to 6Ghz.

http://www.stumbleupon.com/ -- An interesting site, a new way to surf. Here's how the site describes itself: 'StumbleUpon uses ratings to form collaborative opinions on website quality. When you stumble, you will only see pages which friends and like–minded stumblers have liked.'

http://www.theregister.co.uk/2006/02/08/windows_antivirus_protection/ -- Microsoft to charge 49.95 for One Care Live Anti-Virus.

http://home.eunet.no/~pnordahl/ntpasswd/ -- This is an oldie, but seeing how it circulated the mailing lists today, let's throw it on here to remind everyone. Don't worry about forgetting your password, just reset it :) .

http://www.theregister.co.uk/2006/02/07/bit_torrent_sues/ -- Bit Torrent to sue those who present adware/spyware under the Bit Torrent name - Opera 9 to include Bit Torrent search bar.

http://www.nth-dimension.org.uk/news/entry.php?e=156579087 -- A Short paper entitled 'Misunderstanding Javascript injection: A paper on web application abuse via Javascript injection'

Well that's about it for this morning.... I'll compile another list later if I come across anything of interest.

Peace,
HT

Categories: Daily Link List Tags:

Possible AIDS cure found

February 7th, 2006 No comments

Hey Hey,

I don't pay a lot of attention to medical science, not as much as I should anyways... but I came across this and I found it rather interesting... It's still in early testing, however if the results remain consistent we could be looking at an amazing discovery... I'm not going to say a lot on the issue, just wanted to include it here for our visitors. Find out more in this article from the Salt Lake Tribune @ http://www.sltrib.com/business/ci_3482712

Peace,
HT

Categories: Science Tags:

Paying twice for a single service

February 7th, 2006 No comments

Hey Hey,

So I'm seeing this come up more and more these days... and I'm starting to wonder where the common sense is. I can't wait to see what the Government does... the results could prove the ultimate stupidity of government officials...

Let's think about this for a minute, we have a world wide infrastructure known as the Internet, people pay their phone and cable companies for High Speed access to this network. They then have the right to use the network to access the various servers hosting pages. These servers are also paying a company for High Speed access. Now we have both ends paying a provider to use their means of connection, but suddenly these providers want to pay twice. They want both ends to pay for usage of the lines... even though one of those ends is just fulfilling a request made by the end that is already paying. This isn't right... there's something very very wrong about that.

Let's say I send you (who lives in another country) a package. My government charges me to send you the package (the postal service), your government charges you to receive the package (customs and brokerage fees) but your government doesn't turn around and ask me for money. It'd be ridiculous to do that... yet that's what the ISPs now want to do...

Yes this has been going on for a while, so why am I just bringing this up? Because of the latest words from the mouth of a Verizon senior VP. He claims that Google is getting a 'free lunch'... yet what's he turning and asking for... He's asking for a 'free lunch', he's asking to charge for the use of a line that he's already charged someone for. The belief that this is going  on truly astounds me and leads me to question where people's intelligence has gone... It's definately nonexistant these days.. Those of you interested in this can read the Washington Post article @ http://www.washingtonpost.com/wp-dyn/content/article/2006/02/06/AR2006020601624.html

Peace,
HT

Categories: IT, News Tags:

Backtrack Live CD

February 7th, 2006 1 comment

Hey Hey,

A new live cd has been released by the creators of two famous security bootables, WHAX and Auditor. The new project, called Backtrack, launched it's first beta this weekend.

After playing with the CD I must say that I'm rather impressed. The collection of tools is extensive, everything is easy to find. I will say that if you boot the GUI, remember that not everything available is in your 'start menu' explore the directories a little and you'll find plenty of other little toys to experiment with.

Backtrack is built, as WHAX was, on SLAX (slackware live cd). Since it follows the SLAX format, you can load modules in much the same way. Irongeek has created a create tutorial on how to add these modules in and how to obtain more modules. You can find his tutorial @ http://www.irongeek.com/i.php?page=videos/myslax.

The website for Backtrack, with several download mirrors, is available @ http://www.remote-exploit.org/index.php/BackTrack. I have also placed a mirror to the beta iso on one of my server and you can obtain it from http://www.aoaddicts.net/backtrack/backtrack-beta-05022006.iso if you find their mirrors bogged down.

I plan to play with the CD some more, maybe create some tutorials based on it... however it is fairly completely and a handy tool to have around.

Peace,
HT

Categories: IT Tags: