Passa ai contenuti principali

Post

Visualizzazione dei post da Agosto, 2008

Holy Ghost . . . !

xkcd - A webcomic of romance, sarcasm, math, and language - By Randall Munroe
Vi ripropongo una vignetta estrapolata da xkcd ripresa a sua volta da lastknight ...

Semplicemente superba! :D

Dopo la decisione del blocco, TPB registra un incremento del traffico dall'Italia

Following the decision in Italy to block access to The Pirate Bay comes the inevitable announcement. Has the world’s largest BitTorrent tracker faded away in the face of media industry pressure? Hardly. Traffic from Italy to the ‘bay has actually increased this week and the site has jumped 10 places on Alexa in Italy.

It’s been all over the news this week. Following attempts in other countries to block access to The Pirate Bay, this week saw the Italians take their turn. Could they succeed where they had previously failed and actually force a decrease in traffic to a site they block?
The Pirate Bay Sees Boost in Italian Traffic Following ‘Block’ | TorrentFreak


Come ci si poteva aspettare, il tam tam mediatico dietro alla questione The Pirate Bay non ha fatto altro che incrementare la curiosità di chi non conosceva questo sistema di sharing, avvicinandolo in maniera definitiva al mondo torrent e facendo luce sul "Cosa sono i Torrent Tracker".

PS: Negli articoli si legge chiaramen…

Apache Tomcat 6.0.18 UTF8 Directory Traversal Vulnerability

Description As Apache Security Team, this problem occurs because of JAVA side. If your context.xml or server.xml allows 'allowLinking'and 'URIencoding' as 'UTF-8', an attacker can obtain your important system files.(e.g. /etc/passwd)

Exploit If your webroot directory has three depth(e.g /usr/local/wwwroot), An attacker can access arbitrary files as below. (Proof-of-concept) http://www.target.com/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/foo/bar
Apache Tomcat <= 6.0.18 UTF8 Directory Traversal Vulnerability.

Anche se questo mi sembra un tantinello più pericoloso IMHO!

Joomla Remote Admin Change Password Vulnerability

Gli sviluppatori del noto CMS Joomla hanno fatto sapere che è già in circolazione un pericoloso exploit che sfrutta una vulnerabilità presente nelle versioni del software dalla 1.5.x alla 1.5.5.

Il bug riguarda la funzionalità di password reset e potenzialmente può consentire ad un utente di ottenere l’accesso amministrativo al CMS.
Massimo Rabbi » Pericolosa falla per Joomla già in circolazione.

Ci stavo giusto giocherellando l'altro giorno :)

Joomla 1.5.x (Token) Remote Admin Change Password Vulnerability

milw0rm - exploits : vulnerabilities : videos : papers : shellcode.

The Pirate Bay vive, usate Open DNS - Berlusconi Fascista?!

This time it's Italy. They suffer from a really bad background as one of the IFPIs was formed in Italy during the fascist years and now they have a fascist leader in the country, Silvio Berlusconi. Berlusconi is also the most powerful person in Italian media owning a lot of companies that compete with The Pirate Bay and he would like to stay that way - so one of his lackeys, Giancarlo Mancusi, ordered a shutdown of our domain name and IP in Italy to make it hard to not support Berlusconis empire.

We have had fights previously in Italy, recently with our successful art installation where we had to storm Fortezza in order to get our art done. And as usual, we won. We will also win this time.

We have already changed IP for the website - that makes it work for half the ISPs again. And we want you all to inform your italian friends to switch their DNS to OpenDNS so they can bypass their ISPs filters. This will also let them bypass the other filters installed by the Italian government, as…

Ipsec Advanced Troubleshooting - Openswan questo sconosciuto ...

Conversazione su MSN:
A: Che fai?

B: tento di fari comunicare una VPN openswan con un terminatore XY ma sembra che nella phase2 il quick mode non funzioni a causa della configurazione del PFS

A: O_O non ho capito nulla

B: Eh...!
L'unica cosa che c'è tra me e l'esaurimento nervoso è questa guida spero che possa essere utile a qualcuno di voi ... stacco tcpdump e me ne vado che sono alla frutta!!

Buona serata