to be
detailed in the coming days, as well as kernel flaws in Linux, BSD, and
Solaris 10 systems.
Tim Newsham
http://www.thenewsh.com/~newsham/
My my, will Maynor, Ellch and Krebs ever let it drop?
My understanding is that HDM found a vulnerability independantly
and implemented an exploit for it. Not sure what this has to do
with Maynor not letting it drop...
jim
Tim Newsham
http://www.thenewsh.com/~newsham/
) over the whole Maynor/Ellch affair.
So it's not Maynor not letting it drop?
Tim Newsham
http://www.thenewsh.com/~newsham/
fast enough for a basic user?
Yes.
--Peter
Tim Newsham
http://www.thenewsh.com/~newsham/
the argument that a faster
patching cycle for Mozilla would be less advantageous for attackers.
It still wouldn't prevent malware, but it would reduce the effective
window of attacks that rely on a vulnerability.
Tim Newsham
http://www.thenewsh.com/~newsham/
situation arises again for another operating system?
This is the entirety of my point -- removing all windows machines does
nothing to solve the problem. It just changes the preferred platform of
attacks...
Tim Newsham
http://www.thenewsh.com/~newsham/
, keystroke logging).
Even if all of that were not true, malware is still a potential issue on
all platforms.
Tim Newsham
http://www.thenewsh.com/~newsham/
compared to the net benefit.
Tim Newsham
http://www.thenewsh.com/~newsham/
Ok, this is just silly. If you ban windows machines from the internet
you'd just get a bunch of linux and osx botnets... Botnets run on windows
because they are the majority population, not because they are inherently
easier to write botnets for.
Tim Newsham
http://www.thenewsh.com/~newsham/
is the return on investment. Writing attacks for
windows makes more economical sense for attackers.
Tim Newsham
http://www.thenewsh.com/~newsham/
Primarily to flesh out the better XML parsers for those trying to
be language agnostic. I also have a morbid curiosity at seeing an
awk solution as suggested earlier in the thread. :)
XML is a problem in search of a problem
-Vince
Tim Newsham
http://www.thenewsh.com/~newsham/
Since XML was brought up, does anyone want to try some
programming golf with their favorite language and XML library?
Eww.. why?
-Vince
Tim Newsham
http://www.thenewsh.com/~newsham/
(or even cut) can get the job done and is
a lot easier to pick up than a new (general) language...
--scott
Hope that helps..
Tim Newsham
http://www.thenewsh.com/~newsham/
, though.
Tim Newsham
http://www.thenewsh.com/~newsham/
that helps at least a little..
Scott Foulk
Tech Coordinator
Kailua Intermediate School
Tim Newsham
http://www.thenewsh.com/~newsham/
-in
policy and not an opt-out/firewall policy.
I don't disagree, but this alone does not ensure security.
-Eric Hattemer
Tim Newsham
http://www.lava.net/~newsham/
.
Any ideas on what might be causing the poor performance? Is this normal
performance for this amount of congestion? Is this due to a cheap AP?
Is there anything I can do to track down the interference or make
adjustments that will increase my reliability?
Tim Newsham
http://www.lava.net
that fixed an issue i had with my Linksys router and it added so many cool
new features. Google for third party firmware for your model. There are
quite a few hacks sprouting up out there for D-link too.
MD
- Original Message - From: Tim Newsham [EMAIL PROTECTED]
To: luau@lists.hosef.org
in a tech-heavy area. The majority of
the people I see in the lobby are here on business with a large technology
firm. Wirless is $10/day as is ethernet in the room. (There are the
occasional 3 stars down the road that have free wifi.)
Jim
Tim Newsham
http://www.lava.net/~newsham/
hotspots. There are
probably more efforts that I'm unaware of.
--Peter
Tim Newsham
http://www.lava.net/~newsham/
when you do it yourself.
Tim Newsham
http://www.lava.net/~newsham/
.
But why run emacs if you already have an operating system?
Tim Newsham
http://www.lava.net/~newsham/
...
So.. should work out of the box for most systems by just plugging in.
Tim Newsham
http://www.lava.net/~newsham/
PROTECTED] [EMAIL PROTECTED]
Tim Newsham
http://www.lava.net/~newsham/
got xp running on a
mac]
Karen Lofstrom
Tim Newsham
http://www.lava.net/~newsham/
Why label intelligent knowledgeable OS capable individuals Hackers,
As a tribute to their skill? As in he's so skillful at making chairs
that he can hack one out of a block of wood using just an axe?
Tim Newsham
http://www.lava.net/~newsham/
a particular implementation is flawed,
you can contribute your own.
Tim Newsham
http://www.lava.net/~newsham/
hand follows a largely iterative process to software
development.
Hah! yah, linux security just keeps on getting better and better! ;-)
- Julian
Tim Newsham
http://www.lava.net/~newsham/
(showing the same image).
On my box its Fn-F8 (in blue letters it says CRT/LCD).
I'm not entirely sure how this is usually done in Linux (or other
unices) since I dont have a dual display on one.
Scott Foulk
Tech Coordinator
Kailua Intermediate School
Tim Newsham
http://www.lava.net/~newsham/
with
mythtv, so you can even tie this back in with the original project.
(Stuff like putting caller id on screen instead of ringing the phone
when watching a movie).
Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED]
Tim Newsham
http://www.lava.net/~newsham/
in Hawaii
like MySpace. Obviously people want to sign up to the social network
that all their friends are already on.
Personally, they all look like big information gathering utilities to
me. Not sure what's so great about BBS's. I already have teh email and
teh interweb.
Tim Newsham
http
to include
hints for converting the code to windows (they use a socket API for
networking access which is similar but not identical to the one used
in unix).
Matt
Tim Newsham
http://www.lava.net/~newsham/
/* in windows you would include windows.h and winsock.h */
#include errno.h
#include stdio.h
http://www.c-jump.com/
Tim Newsham
http://www.lava.net/~newsham/
So is this going to be a Python, etc.. meet up?
Yes, If people show up. If not hopefully Scott can keep me busy
with something.
Tim Newsham
http://www.lava.net/~newsham/
or system32/drivers/etc/hosts.txt.
Tim Newsham
http://www.lava.net/~newsham/
= randoms $ mkStdGen seed
mapM_ putLine $ [average $ waitTimes variates n | n - [1,10,100,1000]]
Tim Newsham
http://www.lava.net/~newsham/
for empty lists.
return float(sum(l)) / len(l)
# show some waitTime results
print Some waitTimes, repeat(10, waitTime)
# show averages for increasing lengths of repeat(waitTime)
print average waitTimes, [average(repeat(n, waitTime)) for n in 1, 10, 100,
1000, 1, 10]
Tim
for anyone interested in unix or computing history:
http://cm.bell-labs.com/who/dmr/
Tim Newsham
http://www.lava.net/~newsham/
with the lab:
http://www.hosef.org/pn/index.php?module=Static_Docstype=userfunc=viewf=mckinleylocation.html
Tim Newsham
http://www.lava.net/~newsham/
=MSR-TR-2000-03
... and I'm no defender of perl.
jim
Tim Newsham
http://www.lava.net/~newsham/
it won't terminate on a null pointer like
the above.
But strcpy() will :)
Jim
Tim Newsham
http://www.lava.net/~newsham/
and post them to
my scrap directory. There are lots of small python files here which
might be fun for people to look at:
http://lava.net/~newsham/x/machine/
Mostly small digestable implementations of popular algorithms (like
min-edit distance used in diff(1)).
Tim Newsham
http://www.lava.net
.
Wayne
Tim Newsham
http://www.lava.net/~newsham/
it pretty quickly. Its
still fairly new though and I wonder how many teachers who teach this
class of student knows about it.
I think it would be great if HOSEF could play some role in pushing this
kind of knowledge to teachers who could then have an impact on young
minds.
Julian
Tim Newsham
that functionality).
Tim Newsham
http://www.lava.net/~newsham/
system that fixes these warbles..
Oh yah, plan9. ;-)
Clifton Royston -- [EMAIL PROTECTED] / [EMAIL PROTECTED]
Tim Newsham
http://www.lava.net/~newsham/
[...]
All true, but hardly a good excuse. They could allow arbitrary sized
argument vectors and environment and argument storage. E2BIG on
rm * on a machine with 2G of ram is pure silliness. There are systems
(as I pointed out) that don't have this limitation.
jim
Tim Newsham
http://www.lava.net
http://www.bethephonecompany.com/documents/itexpo_la/DSC00495.JPG
He was a phone hacker.You need to have been around in telephony for a
little while.
Lemme guess - likes to offer back massages to young boys at cons?
Matt
Tim Newsham
http://www.lava.net/~newsham/
They're targetting developing nations, but this could be a real boon
[...]
laptop, in my opinion. Heck, with the dynamo crank, its even enviro-friendly!
That is really cool! I just hope that in 5-10 years we dont have a few
billion laptops going into landfills in developing countries.
Tim
of Hawai'i at Manoa
School of Ocean Earth Science Technology
Where you always part of soest? I thought you were part of uhcc/its.
Tim Newsham
http://www.lava.net/~newsham/
to be pointing your machine to rogue
DNS servers on the say-so of some email you received from a third party.
Therein lies phishing.
-Jeff Mings
Tim Newsham
http://www.lava.net/~newsham/
are
against us [EMAIL PROTECTED] Yah, its a shocker.
Tim Newsham
http://www.lava.net/~newsham/
(and usb keys are finally priced right for it).
Andrew Maddox, madsox squiggle radix point net
I will not do anything bad ever again
Tim Newsham
http://www.lava.net/~newsham/
the best part about programming!
It's nice to be able to ask the question online in hopes of making
your life easier, but if you haven't figured out the answer before
someone else answers it for you, you're not working in an exciting
field :)
Tim Newsham
http://www.lava.net/~newsham/
been turning away contracts recently).
-Charles
Tim Newsham
http://www.lava.net/~newsham/
of ink but I believe it still works.
If anyone wants either of these, please email me. Both items are
free for the taking (A $50 Value!). I'm located in Waipio Gentry.
Tim Newsham
http://www.lava.net/~newsham/
for PAE
support.
jim
Tim Newsham
http://www.lava.net/~newsham/
http://spinster.org/photos/als/20.html
more so than most.
Tim Newsham
http://www.lava.net/~newsham/
HOSEF take printers? If not, whoever wants it and will pick it up
can have it.
Tim Newsham
http://www.lava.net/~newsham/
and focus on computer security. This wasn't the
case as recently as four years ago, but they've put some serious resources
into it.
jim
Tim Newsham
http://www.lava.net/~newsham/
[ps: we didnt even discuss the usability of MAC-based systems.]
)), reading email, and surfing the web.
Jim, please don't stifle Bill's ability to innovate. ;-)
jim
Tim Newsham
http://www.lava.net/~newsham/
community but
might make it harder for other operating system communities to
convince vendors to provide the information needed to write drivers
for their platform. Lets hope the pressure encourages the release
of technical information that enables open source driver development.
Tim Newsham
http
and what kinda stuff
usually goes on? I'm considering coming down. I dont have
any specific technical topics, but I guess I'll bring my laptop.
There's lots of good toys on it, like VMS, 6th and 7th edition
unix, plan9, etc.. :)
--scott
Tim Newsham
http://www.lava.net/~newsham/
' commentary, also freely
available these days:
http://www.lemis.com/grog/Documentation/Lions/
Tim Newsham
http://www.lava.net/~newsham/
Today solaris is open-source. http://www.opensolaris.org/os/
Tim Newsham
http://www.lava.net/~newsham/
Open, but not Free.
Free for my eyes, which is cheaper than it was yesterday.
Tim Newsham
http://www.lava.net/~newsham/
and licenses I care less about. I'm glad to see
sun grant access to their sources, no matter how you want to
categorize their license. Would I want to use it in a product?
Probably not, but it will be useful the next time I need to know
EXACTLY how something works.
Jim
Tim Newsham
http://www.lava.net
with HOSEF would be
appropriate, I think.
I'm heading out to the meeting today. I've been meaning to meet
the hosef people but kept putting it off. As far as forming a
technical group, I'm the wrong person, trust me :)
See you all there.
Ron Fox
Tim Newsham
http://www.lava.net/~newsham/
details of the latest technologies.
Some media think PowerPC is proprietary as well. Its less proprietary
than Intel's processors.
Feel free to counter with the but you can't run MacOS on open hardware
argument.
S'ok, they're all intel IA32 by this time next year.
Jim
Tim Newsham
http
version of kphone. Its very simple to use and it just works.
The only problem is that I haven't figured out how get an incoming call
to ring on my speakers and not the USB headset.
I liked the iax phone for win32 a bit. Aren't their ports to other
platforms like linux?
Tim Newsham
http
p.s. you are probably aware that the connection between sitting on the
toilet and WiFi use is quite strong. Nearly everyone has done both at the
same time at some point.
uhh
Nearly everyone? I think this falls under there are better
things to do.
Tim Newsham
http://www.lava.net
as short but less readable in perl).
jim
Tim Newsham
http://www.lava.net/~newsham/
/fstab, mount it, and check out that everything
is in order.
Jacques L. Yerby [EMAIL PROTECTED]
Tim Newsham
http://www.lava.net/~newsham/
There seem to be a lot more than that one page:
http://www.drunkenblog.com/drunkenblog-archives/000501.html
If you follow the links in any of these pages, you can find more and more.
Some of this may not be proven in a legal sense, but I think its unlikely
that there's no code shared between
The latest in this sad saga:
http://www.ht-technology.com/cherryos-pearpc/cherryos-pearpc.html
libhfs -- Is this cpt?
http://libhfs.sourceforge.net/license.php
Not a gnu license.
cygwin -- you can link against cygwin's .a/.dll in commercial products
folder. On a subsequent reboot of the system, the system is not coming
up. During the boot-up process, after the default system font is set,
the prompt for Interactive bootup comes up and then the screen blanks
out as if going into X windows. The X changes into an hourglass and
keeps turning and
doesn't work(not that I suspected it would). My concern is that I might
have gotten hacked somehow. I know absolutely zero about how to go about
seeing if my system has been compromised. I know this is a totally
newbie question, but would appreciate a couple pointers. Thanks in
advance!
You
Other than the 1/2 the available memory thing (which may be the
culprit), neither am I.
Check out objdump on the binary to see the sizes and loading locations of
your various segments. You should be able to tell if your program is over
the 2G limit. Some systems will allow you to use more
I have a program that uses quite a bit of buffer space. There are four
major chunks of buffer space, three declared something like short
mybuffer[32][4M], and the fourth int myotherbuffer[4][4M]. Total
buffer usage comes in at somewhere under 800MB.
by 4M do you mean 4*1024*1024?
Now,
This Saturday at CompUSA, HOSEF will be assisting our schools by testing
and loading the equipment being donated by the public as part of the
Computers for Kids recycling day. With a generator, two tables, and 14
power cables, we will make sure that the equipment powers on. For those
of you
I need to debug into glibc for some stuff, and I'm having trouble
getting things set up. I was wondering if anyone's done this or
has suggestions..
Ignore this, I got some help and have it all worked out.
Tim N.
last i knew, it didn't work in sp2. did they ever fix that?
I don't know, I have been avoiding sp2 so far.
Tim N.
The instructions on the Mandrake web site don't seem to cover burning CDs
from Nero. Anyone here know what I'm doing wrong?
btw, for those running XP who just need to burn ISO's,
IsoRecorder is free, and has the simplest interface I've
seen: you right click on an .iso file and select burn to
We need to image the machines as needed to preserve their ability to
serve the foreign students their windows goodies. If we do a Linux
install on the machines, we need to return the lab to its initial state.
How about booting linux diskless? Then you dont have to touch
the current install
of Linuxes, each and every one is bootable, on the same hard disc. The
command cp works for me b/c I never use hard linking. But I wonder
how ghost or DriveCopy/DriveImage handles hard linking?
The linux cp(1) command should preserve your hard links as well
if you use the appropriate flags.
This may be slightly off-topic (is there a better place for asking
things like this?) -- Is anyone here aware of a reasonably priced
broadband solution that has good uplink speeds? The two obvious
broadband solutions, verizon dsl and road runner, have quite low
uplink caps.
Tim N.
never say never. :-)
OK, port Linux to an 8051 with 256 BYTES of RAM and (at most) 64k of ROM. :-)
Not quite the same thing, but in a similar vein:
http://lng.sourceforge.net/
There are of course many other examples of similar systems running
on various 8-bit microprocessors.
Yeah,
Yes. But a kernel alone, a system does not make.
This is the linux kernel we're talking about... They keep moving
more and more userland stuff in there :)
Since our main goal was to reduce risk, we try to accomodate Redhat as
much as possible. And we also needed Qt support, which pulled in
Has anyone had any luck installing Gentoo Linux (http://gentoo.org)?
I don't run gentoo, but I found this great web site of gentoo resources:
http://funroll-loops.org
Enjoy,
Tim N.
regsvc.exe
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.irc.cloner.html
lsass.exe
http://securityresponse.symantec.com/avcenter/venc/data/w32.sasser.b.worm.html
csrss.exe
http://securityresponse.symantec.com/avcenter/venc/data/w32.dalbug.worm.html
smss.exe
didn't you wrote that format string attack or buffer overflow paper? I
I wrote a whitepaper on the technique (though I did not invent the
technique).
mixed up with someone else, I think you were the guy at GST or HOL a
while back, I was helping a friend starting up mahalo.net before they
why your name stick out like a sore thumb, then it hits me.. ahh.. you
are that dude! complier and security.unix. you made me dig through my
bugtraq emails also.
Yes, I do computer security work and used to usenet a lot.
Which compiler stuff? I've done a little compiler type work
but not a
92 matches
Mail list logo