Rebecca Bug writes “Several Web sites (Wired, eWEEK, The Washington Post) are reporting on Dan Kaminsky’s Toorcon discussion of a serious security risk introduced when major ISPs serve ads on error pages. Kaminsky found that the advertising servers are impersonating, via DNS, hostnames within trademarked domains. ‘We have determined that these injected servers are, in fact, vulnerable to cross-site scripting attacks. Since these servers are being injected into your trademarked domains, their vulnerability can be used to attack your users and your sites,’ Kaminsky stated, identifying EarthLink, Verizon and Quest among the ISPs.”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Smantha writes “I recently began teaching a Unix System Administration course at a community college. The previous instructor was using a very outdated textbook, and I’m trying to find one that’s a bit more advanced and useful for my students. They’re required to take a 100-level Unix class before this one and are familiar with the basics of using the command line. I’m looking for something that covers topics such as OS installation, software/package installation, user management, system administration tools, troubleshooting techniques and tools, service configuration (network services, for example) and some miscellaneous topics such as compression/archive tools, grep, make, and the like. What books have you found to be good references on your desk? What books have been good for learning these sorts of topics?”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
An anonymous reader writes “CNET News has a piece in which AT&T claims that the Internet’s bandwidth will be saturated by video-on-demand and such by 2010. States the AT&T VP: ‘In three years’ time, 20 typical households will generate more traffic than the entire Internet today.’ Similarly: ‘He claimed that the “unprecedented new wave of broadband traffic” would increase 50-fold by 2015 and that AT&T is investing $19 billion to maintain its network and upgrade its backbone network.’”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
An anonymous reader writes “Repeated requests toward the Wikileaks staff regarding their use of PGP have gone unanswered. The current public PGP key posted has been expired since November 2nd, 2007. A response on their PGP speak page notes that the ‘SSL based mail submission system’ will be the secure on the internet method of document submission. At the current time, there’s no method to safely encrypt any postal communications with Wikileaks or verify that any given communication actually originated from a Wikileaks staff member.” Doubtless there are some complicating factors here — but what’s the best way to keep a confidentiality-centric site like Wikileaks trustworthy?
Read more of this story at Slashdot.
Share This
Share This
No Comments »
antifoidulus writes “CNN is reporting that they were the target of a Denial of Service attack yesterday. According to the article, there have been reports on Asian tech sites that Chinese hackers were targeting CNN for their coverage of the unrest in Tibet. One has to wonder if this hacking attempt was government sponsored or not. The Chinese government hasn’t been very happy with CNN — in fact, the Beijing Bureau Chief has been summoned about a day before this happened.”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
maemst writes “Can you code 24 hours non-stop? Hackontest is a new Google-sponsored 24-hour programming competition between different open source projects. Its goals are to enhance Free Software projects according to user needs and to make visible how enthusiastically open source software is being developed. During the current online selection process users and developers of open source software may submit feature requests and rate and comment them. On August 1st, 2008 the Hackontest jury will pick the three most promising teams. Each team will receive a free trip to Switzerland on September 24/25, 2008 to participate in the competition located in Zurich. Hacking 24 hours inside an etoy.CONTAINER, the teams and their virtually present communities will implement certain features based on the online ratings and jury selection. In the end, the Hackontest jury evaluates the code and awards the winners with a total of USD 8500. The jury is made up of 10 renowned open source contributors: Jeremy Alison (Samba), Jono Bacon (Ubuntu), Brian W. Fitzpatrick (Subversion), Martin F. Krafft (Debian), Alexander Limi (Plone), Federico Mena-Quintero (GNOME), Bram Moolenaar (vim), Bruce Perens (OSI founder), Lukas K. Smith (PHP) and Harald Welte (gpl-violations.org).”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Posted by: in Rights Online
An anonymous reader writes “Repeated requests toward the Wikileaks staff regarding their use of PGP have gone unanswered. The current public PGP key posted has been expired since November 2nd, 2007. A response on their PGP talk page notes that the ‘SSL based mail submission system’ will be the secure on the internet method of document submission. At the current time, there is no method to safely encrypt any postal communications with Wikileaks or verify that any given communication actually originated from a Wikileaks staff member.” Doubtless there are some complicating factors here — but what is the ideal way to keep a confidentiality-centric site like Wikileaks trustworthy?
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Posted by: in Rights Online
AHuxley writes “Can the FBI get funding to create a next-generation network monitoring and database system for P2P networks, web sites, and chat rooms? Could the FBI’s Regional Information Sharing Systems (RISS) network be opened to more law enforcement agents across the USA? Will the tracking of p2p users via ‘unique serial numbers’ generated from a person’s computer be expanded from its first use in late 2005? Is your p2p application or plug-in sending back your MAC address, firmware revision, manufacture date, GUID or other details?” Could this story submitter pose any more questions in his submission? Won’t someone please think of the … oh, never mind.
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Posted by: in Rights Online
Chris Blanc writes “In their ever continuing battle to ‘free the Internet’, The Pirate Bay has now launched an uncensored blogging service, called Baywords. The service is intended to be a safe haven for bloggers who want to be able to write whatever they want.”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Posted by: in Rights Online
PrinceofThieves writes “CNET technology columnist Don Reisinger has issued a call to arms for all journalists and tech junkies to join him in his crusade against the forces that attempt to ruin the sanctity of tech. ‘Now, a new group of people has emerged to confront the tech lovers all over the world and stop them from being able to do what they want with the technology they own. And while many have tried to confront them on an individual basis, it has not worked. And it’s for that reason that we have to all come together and fight the ridiculous impositions brought upon us.’”
Read more of this story at Slashdot.
Share This
Share This
No Comments »
Entries (RSS)