I didn’t see this reported anywhere, but since yesterday when there was an update to the metasploit module for the WMF vulnerability I think there’s been yet another update. I read yesterday that it had been updated and could evade all known IDS signatures. I downloaded the update to continue my Win98 testing. Then today found that there was another update. I haven’t compared the old/new versions but can’t help but wonder if this means more scrambling of antivirus writers for new signatures to keep up.
Month: January 2006
-
What is a Ping?
The word “ping” is used in computer networking. It’s usually used to test and see if a machine is able to be “reached” or “talked to” over a network. The terminology reminds me of the concept of radar systems. I have a tendency to think of it as “bouncing a test” off the other machine. Most every operating system that has networking support can ping, or should be able to answer a ping request. Many times it’s used as a basic test of the ability to access the internet.
-
New “Basics” category
I’ve added a new Computers-Basics category that will be a catchall for all sorts of “what is a” articles and hopefully very simple how-to’s (the kind of things that will have some viewers rushing for the exits, or the search boxes…) One of the things I like trying to do is explaining tech stuff in less than tech terms, or at least in an approachable way. On this site, so far, I’ve dealt with pretty technical issues and the kind of stuff that has a new user searching for an exit (probably the x in the upper right hand corner, or the back button), or maybe a translator. I hope that this series will not need extra referencing to understand. I’ll probably post to this category in spurts….
-
The press covering the WMF bug
It’s always a strange mix between comedy and frustration to see the main media outlets cover a tech news item. I usually wince and brace myself when I see any tv news outlet take on a computer issue and likewise when I read newspapers and non-tech publications take on anything of the sort. It’s kind of like movies that use extremely fake computers. Sometimes I think it’s because they’re trying to simplify things for the average viewer, but I usually find that approach somewhat condescending because I don’t think grown adults should be treated like little kids. Anyway, I digress… the coverage of this WMF exploit has been, well, interesting. There was…
-
Windows Desktop Search
I got a first look at Windows Desktop Search today (bundled with MSN Search Toolbar?) I was told that it was new on the system and had not been used. The systems owner didn’t know when it was installed and thought it must have been installed when he did a windows update. It looks like the MSN search toolbar adds tabbed browsing to internet explorer. I’m a bit suspicious of ANY software that the system owner is unsure of how it got to be installed on the system.
-
Big block of blank space in Add/Remove Programs
This isn’t an earth shattering issue, but as I was looking into some other problems on a Windows XP Pro system, I noticed a HUGE blank space in the Add/Remove programs area of the control panel. It was something like this, there were several entries (10 maybe) and then a huge block of blank space perhaps hundreds of “pages” long. I scrolled a bit with the mouse wheel and was not making quick progress, so just grabbed the scroll bar and pulled down to see the next 30-40 entries.
-
Too little time…
I’ve just been back at appointments what – 2 days? And already I’ve got a ton of issues to detail. I usually don’t get into details of everything I run into because many times it’s rather tedious issues, memory install, fill in the blank virus removal for the nth time, etc. However I’ve already run across a few unique things that have taken some searching. One is still unresolved (time constraint.) That will get a revisit in the near future.
-
Manual Trackbacks
Sometime over the last 2 or 3 days trackback pings stopped working for me. I didn’t notice until today. I think the hexblog may have been the first one to choke the queue, but I’ve spent the evening going back and sending trackbacks manually. There’s a manual pinger at http://www.aylwardfamily.com/content/tbping.asp which is tedious for a couple dozen entries, but it does work.
-
Windows 98 and WMF exploit posts
Since there’s some interest…. here is a listing of all posts related to the WMF exploit and Windows 98 that have come out in the last week.
http://www.averyjparker.com/2006/01/04/lack-of-working-exploit-does-not-mean-windows-98-is-safe/
http://www.averyjparker.com/2006/01/03/wmf-exploit-vs-windows-98-again/
http://www.averyjparker.com/2006/01/03/wmf-exploit-testing-on-windows-98/
http://www.averyjparker.com/2006/01/02/windows-98-and-the-wmf-exploit/
http://www.averyjparker.com/2006/01/01/version-2-of-the-wmv-exploit-vs-windows-98-se/
http://www.averyjparker.com/2006/01/01/more-wmf-exploit-testing-on-windows-98/
http://www.averyjparker.com/2006/01/01/wmf-exploit-and-windows-98/
-
Another Sober.y reminder
f-secure.com has another warning for us about the pending awakening of the sober worm. From reports it’s expected to start looking for sites to download from January 5th into January 6th. There is an extensive list of URL’s to block. This from f-secure.com – if you’re in charge of block lists at a network, this could be a good start to make sure you don’t have any clients pulling a new version from the following sites…