Archive for the 'Security' Category


Approaches to beating form spam submission

Thursday, November 9th, 2006

I’ve replaced bare email addresses on web page with either an encoded variation of the email or with a contact form to discourage spam scrapers and other automated tools from using it for a spam magnet. Well, it seems there are some tools that automatically submit forms – after all that’s what’s brought us the […]

Good idea to help limit phishing attacks

Thursday, November 9th, 2006

I saw this a few weeks back and think it’s a good idea. Essentially why don’t we have a .bank domain registration and limit it to just financial institutions the way .gov is limited to government registrations. (and .mil for military, .edu for educational institutions…..) Let’s face it, anyone can register a .com .net or […]

Major botnet building and the massive jump in spam

Thursday, November 9th, 2006

For a few months now (since the demise of bluefrog actually) I’ve noticed that the level of junk mail has gone up on my own mail server. Yes, I use spamassassin to filter and tag, but the volume of stuff that’s tagged has gone up (as well as the volume that slips through.) I’ve had […]

Wireless exploits coming to Metasploit 3…

Friday, October 27th, 2006

and the script kiddies rejoiced… It reads as though Metasploit 3 will make it easier than ever for script kiddies everywhere to take full advantage of the local wireless hotspots. Of course, metasploit has it’s good uses by people legitimately testing systems that they are responsible for, for vulnerabilities. But, it does make it very […]

Watching out for MORE fake video codecs

Wednesday, October 18th, 2006

sunbelt blog has yet MORE fake codec sites to watch out for. All are bad and should be AVOIDED… details after the jump….    Send article as PDF   

Internet Explorer 7 final release – AND first vulnerability…

Wednesday, October 18th, 2006

Looks as though IE 7 release is imminent and will be in automatic updates on November 1st. Here’s one persons take on the user interface “improvements”. Now, there are many improvements in core functionality, but I’m annoyed by the user interface changes. I have spent quite a while with people getting use to the way […]

Massive Oracle quarterly patches

Wednesday, October 18th, 2006

If Microsoft patched 101 flaws in one release it would make big headlines – so this deserves some headlines too…. more coverage at incidents.org    Send article as PDF   

Would you like spyware with that? Apple too….

Tuesday, October 17th, 2006

These stories come up from time to time. A free giveaway of some sort and it turns out that there’s spyware or a virus embedded, company gives a big “whoops” and fixes things by replacing them…. McDonalds had a promotion going where up to 10,000 people could win a flash based mp3 player they also […]

*Nix Nvidia binary root exploit

Tuesday, October 17th, 2006

There appears to be a working root exploit against the binary NVidia driver for *nix based systems. It’s reported at kerneltrap.org It was resolved a few weeks back by the release of version 1.0-9625 of the Nvidia binary graphic driver. Linux has been primarily mentioned in these stories, but likely other Unixes (Unices)? are affected […]

Exploit Thursday – this months winner – Powerpoint

Thursday, October 12th, 2006

The SecurityFix reminds us of what usually comes close behind Patch Tuesday…. exploit Wednesday or Thursday and this month, the exploits seemed to start coming out Thursday. There’s a new Powerpoint exploit starting to make the rounds right on the heels of Patch day. The main goal is likely to get the most mileage out […]

Google
 
Web www.averyjparker.com