The Freedos has suspended development. It’s been a 12 year project and really, Freedos has become THE free DOS implementation around. It’s been shipped with “blank” pc’s, integrated into several other projects that use a dos’ish boot environment and the 1.0 release has not officially come. (I think the most recent is a Beta9 Service Release 2…) The site has been moved to freedos.sourceforge.net although, freedos.org will redirect to this eventually (DNS settling right now.) On many sites I’ve seen it reported as “freedos is dead”… and the comments are post-mortem style – however this is open source…. –UPDATE– OSNEWS had the original story and it seems like it was a joke of sorts as the dns had been moved to point to the new VHOST at sourceforge. In other words – no one was meant to see the Freedos is dead message at freedos.org… But still the following thoughts on the “death” of an open source project in general still apply….
Tag: DOS
-
Nugache the latest in bot-net technology… and why you should care about botnets…
To show you where the threat with bot networks is going there’s a story today on Nugache (Symantec summary) which is a bot that takes advantage of a number of clever tricks to avoid having the whole bot net shut down, allow command and control on an encrypted channel and essentially have no “human readable strings” in any of it’s communications. The encryption of it’s connections makes it harder for IDS to catch it (as they rely on signatures of traffic.
-
More discussion on the Firefox 1.5.0.3 “image bug”
There’s quite a bit more discussion on a DOS bug in Firefox 1.5.0.3, the link goes to a site where they’ve confirmed the issue and there is a link there to a POC, so be cautious. It turns out that using javascript, image tags can be made to have a mailto: link which can automatically launch tons of instances of whatever default mailhandler a system has (essentially one for each image tag.) Right now, this sounds more like a Denial of Service risk, as I don’t see at this point any evidence that anything WORSE could be done than really freezing up the system with too many copies of the mail program open.
-
Make an autorun cd show a web document on autoplay…
There’s a utility called Thumbs that looks like a good quick way to make a cd launch a web documented on autoplay in Windows 95/98/ME/NT/2000/XP/ …Of course, autoplay under windows is fairly easy to setup. If you have a program on the disk you can just have autorun.inf in the root directory of the cd and in that you can specify WHAT program to autorun. The problem with html documents on a disk is telling the computer how to run it. (Yes you can adjust the icon as well.)
-
More on the Windows WMF zero-day exploit
There seems to be quite a bit developing on the Windows Meta File (WMF) zero-day (0-day) exploit which was first reported yesterday. Sans has raised their alert level to yellow in an effort to get attention to this problem. It looks like the original site serving the exploit is down, but now it’s being served MANY places. Here are more details from f-secure…
-
Microsoft working to ensure Windows Validation works with Firefox
I’ve got to say, I’m impressed that this is happening. From the IEblog…
The core of my team’s job is to make IE7 and Windows Vista so compelling so that people choose our products. The people who work on Windows want you to have a good experience, whether you use IE or not – for example, Windows Media Player has a Firefox plugin. I also recently got a chance to play with a new Firefox plugin that simplifies and improves the Windows validation process on that browser – since, as I said to Scoble a long time ago, it would be arrogant for the people working on a product not to use other products in that category.
-
Boot discs
I’ve been using a site the last two days that I thought others might find useful. If you don’t know about it already, it’s bootdisk.com. They have available for download all sorts of Dos, Windows and Linux boot discs.
-
More details on php exploit from last week
Ok. I have a bit of time that I can sit down and get a little more detailed on what specifically happened late last week that shut the site down for a couple days.
(more…)