Services.exe running at 100% CPU and using 100s of MB of memory – Windows XP SP3

Friday, July 24th, 2009

I came across an interesting one in the last few days. This system was a Windows XP system with current updates – SP3, IE 8…. and among other things there was a complaint of very sluggish behavior. I updated the antimalware software installed and ran scans. Malware Bytes antimalware actually found and removed two suspect [...]

Virtual Server on Apache to listen on an alternate port

Saturday, February 24th, 2007

In the last few days, I had to set up something a bit unusual with apache. Basically the goal was to have apache listen for connections on two different ports (the standard port 80 and an alternate port 85). The problem was that I wanted different content at each port. Port 85 was to be [...]

Zeroshell Livecd – providing main network services

Wednesday, February 21st, 2007 is an interesting bundle of linux designed to be an out of the box network service swiss army knife of sorts. Here are the network services that it provides…. Kerberos 5 authentication, LDAP, NIS, Radius authentication, x509 certificate authority, unix and windows compatible active directory services, router, implements bridging and vlan protocols, full radius [...]

UDP problem…

Wednesday, January 24th, 2007

I found a peculiar problem while I was setting up an openvpn link the other day. The goal was a simple shared key setup and I started with the sample configuration and modified it a bit to fit the circumstances, I allowed the correct UDP port through the firewall (I think 1194 if I recall [...]

Recovering lost files

Monday, August 28th, 2006

There’s an article at that gives a good overview of using testdisk and PhotoRec. Testdisk should be able to recover at the partition level and PhotoRec should be able to just pull the files out of a damaged partition. Truth is Hard drives fail in a number of different ways and some of those [...]

Nasty Javascript attack possibilities

Friday, August 4th, 2006

There were demonstrations of some nasty javascript attacks at Black Hat as well (as if the wireless driver issues wasn’t a big enough problem…) Javascript is a powerful language and can be used for many things, but in these demonstrations, it was used to track recently visited sites (by the browser victim) and identify the [...]

IPtables magic, or… Blocking Aggressive Outbound Traffic with IPtables

Sunday, July 16th, 2006

Blocking Aggressive Outbound Traffic with IPtables. For starters, I’ve tested this on a test system that started out with NO iptables rules, and then moved on to an IPCop install (the vmware download from…) I’ve detailed previously one dilemma that I had with regard to my own cable connection which made me question how [...]

Firewall musings…

Friday, July 14th, 2006

Yesterday I had a bit of a realization. I had just been looking at a wireless router/firewall setup and was thinking about the firewalling rules (which seemed to be geared at the WIRELESS lan… i.e. blocking that activity on the Wireless segment.) You know, traditionally firewalls have had the attitude of defending the internal network [...]

The great firewall of China

Thursday, June 29th, 2006

The great firewall of China may be just an illusion in technical terms. This article describes the details of how things work…. Basically when “banned content” is detected, both ends of the connection are sent a flood of tcp reset packets. Which (if both sides are designed to pay attention to) means that the two [...]

x11vnc slow internet initial-connection performance – identd timeout

Tuesday, June 6th, 2006

So, I had the script all ready, I’ve got my x11vnc custom compiled to be as widely compatible as possible, I’ve tested thoroughly on the internal network. The next step was to test my x11vnc “one cut and paste” script over the internet. So, I visited my parents pc which dual-boots Windows XP and Mandrake [...]


Switch to our mobile site