Lowyat.NET: Latest topics by sanjayws

PiHole DNS

sanjayws — Sun, 14 Mar 2021 22:28:50 +0800

Hello.

We setup a pi-hole DNS with complete privacy (no logging whatsoever) and trying to spread the word.

Try it out if you want. Would love some feedback and suggestions, if any.

https://www.orencloud.com/orencloud-dns/

QUOTE

"A free, privacy-oriented DNS facility that blocks tracking, ads, malware and adult content (optional). Use it with IPv4 or IPv6. It can be used to protect, accelerate your internet and reduce unwanted tracking for your family, your infrastructure and your mobile devices. It is free of any form of audit or logging (see example screenshot below) and hides your identity by masking to our DNS server IPs. Our mission with DNSku is to provide an option for you to freely use the internet without being tracked by big techs, authorities or “bad guys” or being served ads."

Stay safe.

Thanks.

Avira - New Version 10

sanjayws — Fri, 26 Mar 2010 00:40:51 +0800

Download free edition: http://www.free-av.de/en/trialpay_download..._antivirus.html

Avira, too, joins the cloud based security concept. Wonder where my friend Lak is? His fav AV is also now cloud based. He used to swear upon his left lung against it. Haha.

http://www.avira.com/en/company_news/avira..._the_cloud.html

While cloud computeing may be cliche to some, IMHO, cloud based security, being more specific is the future of granular, distributed and widely outreach security honeypotting like strategy that can help proggies like Avira give fast and better protection like never before.

Anyway, enjoy the proggie, thanks Avira for keeping it free!.

http://www.avira.com/en/company_news/maxim...vira_av_10.html

Excerpt
Version 10 of Avira AntiVir adds behaviour-based detection "ProActiv" to the proven IT security solution; introduces single-click malware removal

Tettnang, 23 March 2010 – IT security expert Avira is enabling its 100 million-plus users to become active virus fighters by introducing behaviour-based virus detection and prevention with the latest generation of its anti-virus software, Avira AntiVir Version 10.

Version 10 also introduces generic system repair for damage that may be caused by new variants of viruses and malware.

Key innovations in Avira AntiVir Version 10:

Behavior-based protection with AntiVir ProActiv
Enhanced security, thanks to shared intelligence on emerging viruses from the 100 million-plus strong Avira Community
Generic repair of registry data and infected files
Express installation, transparent user interface, slide-up virus information with one-click removal feature
Parental Control feature in the Avira AntiVir Suite, including control over Internet surfing hours

Battle of the anti-virus: What is the best softwar

sanjayws — Sun, 08 Nov 2009 13:15:52 +0800

Though i'd share this since everyone's so kiasu about "best" AV and what not..here's another report.
http://www.net-security.org/malware_news.php?id=1137

Snippet
----

"None of the products performed “very good” in malware removal or removal of leftovers, based on those 10 samples. eScan, Symantec and Microsoft (MSE) were the only products to be good in removal of malware AND removal of leftovers", says the report. "Some products do not remove all registry entries on purpose (as long as they do not have any visible side effect for the user), e.g. if that helps to prevent reinfection by the same malware. Furthermore, in some cases it is not possible to know if the registry values (or the hosts file) were modified by the malware or by the user itself (or third-party utilities used by the user)."

----

Do note however that reports and their data will change in time...

Possible New Wave of Conficker Attacks

sanjayws — Sat, 26 Sep 2009 23:46:50 +0800

Malware researches have been seeing new hits of the Conficker worm.

Anyone can get infected but may not know if they are.

I bumped into this "cute" check, it's called The Conficker Eye Chart.

If you do not see images, or they are displayed oddly (as explained in their explanations below) then it's time you get yourself cleaned up.

Please note, Conficker can easily disable and cripple your security software such as antivirus, autoupdates etc...

Anyway, try this cool test.
Visit: http://www.confickerworkinggroup.org/infec...cfeyechart.html

If you are, please read several threats in this forum on how to disinfect. I found Malwarebytes to be extremely useful alongside your Antivirus software if you have problems cleaning/getting rid of Conficker.

Also, please make absolutely sure you get the patch for MS08-067 at http://www.microsoft.com/technet/security/...n/MS08-067.mspx. Those using the *cough* *cough* "lifetime trial editions" of Windows, don't worry about being blocked from getting those updates. Microsoft shall continue providing security updates even for those "trial" copies. No WGA crap for security bugfixes, patches.

Lastly, hope you're not infected. If you are, chances are you can't get into those websites like security related sites, antivirus, microsoft. So you need someone to help. If you need alternate locations to download antimalware products, try tucows, download.com etc...otherwise, i can host it on my website and you can download them there (this is on a per-request basis )...

Cheers!
Sanjay

Other neat stuff: http://www.confickerworkinggroup.org/wiki/...fectionTracking

Windows 7/2008 Remote DOS/BSOD

sanjayws — Wed, 09 Sep 2009 00:28:13 +0800

There’s a simple exploit code on SMB2 protocol (implemented in the newer OSes of Microsoft) that can easily remote BSDO a Windows server or client. The process ID field is changed to cause this BSOD which in normal circumstance will expect something “normal”.

http://highsecurity.blogspot.com/2009/09/a...-denial-of.html

Immunet-Antivirus revolution?

sanjayws — Sat, 22 Aug 2009 02:50:16 +0800

Immunet, a startup by Symantec senior execs take Antivirus to the cloud. Immunet attempts to aggregate the results and "opinions" of threats from people using this service. This means, if Bob gets an infection from Saudi Arabia, Immunet alongside your antivirus will then update everyone in this Immunet community about the threat in realtime and get protected from this threat.

They also plan to protect social networking and other communities (probably Twitter, etc..)

Interesting concept. Could Antivirus Computing.

In summary, this is like every single immunet user would then be a possible contributor to protect all other immunet users in realtime.

Checkout their narrative:
Immunet Protect is free, light weight, cloud based Anti-Virus software which uses new approaches to provide malware protection. It is designed to work alongside Symantec, AVG and Mcafee to provide significantly improved detection rates in those products. You can also install it alone. Immunet works by providing its own fast and light layer of cloud based virus detection on top of your existing Anti-Virus product. Once you have Immunet installed it ties you into the Immunet Cloud and allows you to build communities of friends and family. When Immunet Protect detects a threat on your system it automatically makes available protections for it to everyone in your community and to the global community protecting them instantly.

UPDATE: When i installed, it claimed to protect 3,423,750 threats, after i finished blogging about this, it went to 3,423,752 in 20 minutes. No pattern downloads, no updates!. Funky!

Checkout and download from their website. I am testing it already on my Virtual (doesn't work on my X64 Windows 7 RTM)

Currently, this product works better those three AV products mentioned above. I am using Kaspersky + Microsoft Security Essentials Beta, so probably i wont benefit as much but probably some security information when a bug/security threat is detected on Windows. (not sure..shall try).

http://www.immunet.com

Some screenshots in my blog: http://highsecurity.blogspot.com/2009/08/i...-computing.html

Malaysia Internet Censorship?

Thu, 01 Jan 1970 07:30:00 +0800

Windows 7 RTM is on MSDN/Technet

sanjayws — Fri, 07 Aug 2009 01:17:51 +0800

If you're a subscriber to MSDN or Technet, Windows 7 RTM (the cake) is out for downloading. Enjoy

Malaysia Internet Censorship?

sanjayws — Fri, 07 Aug 2009 00:49:28 +0800

Malaysia Considers China-Style Internet Censorship.

Source article

KUALA LUMPUR (AFP)--Malaysia is considering imposing an Internet filter to block "undesirable" Web sites, on the grounds of maintaining racial harmony in the multicultural nation, a senior official said Thursday.

The move was quickly condemned by the opposition, which described it as a " horror of horrors" that would destroy the relative freedom of the Internet in Malaysia, where mainstream media are tightly controlled.

A senior official with the National Security Council, or NSC, confirmed reports the coalition government was considering imposing controls - effectively scrapping a 1996 guarantee that it wouldn't censor the Internet.

"It is to keep out pornographic materials and bloggers who inflame racial sentiments. We need to maintain racial harmony. We cannot have full-blown democracy like in the United States," he said.

"This country must survive," said the official, who spoke on condition of anonymity.

The memory of 1969 racial riots is still strong in Malaysia, and the need to preserve peace between majority Muslim Malays and minority ethnic Chinese and Indians is commonly invoked by the government.

The NSC official dismissed suggestions the proposal echoed China's aborted " Green Dam" project, a plan to introduce Internet filtering software on all new computers sold in the country.

"It is not like China's Green Dam, nor is it a plan sparked by last weekend's antigovernment street protests," he said, referring to an opposition-led rally against laws that allow for detention without trial.

Malaysia's lively blogosphere has been a thorn in the side of the Barisan Nasional government, which was been in power for more than half a century but was dealt its worst ever results in elections a year ago. "Barisan Nasional" means "National Front" in the Malay language.

Internet news portals and blogs - that escape tight controls on the mainstream media - were credited as a key element in the swing toward the opposition, which has been adept at using new media to communicate its ideas.

Veteran opposition legislator Lim Kit Siang, himself an avid blogger, condemned the proposed controls and urged government legislators to uphold the pledge of Internet freedom.

"(The plan) will be seen as a turn away from an open society and retreat to a closed society with all the grave long-term political, economic and nation- building implications," he said.

The NSC official said a tender was out for companies to help the Malaysian Communications and Multimedia Commission evaluate an Internet filter.

The "Green Dam" regulation was to be implemented in China on July 1, but widespread opposition both in and outside of China resulted in Beijing backing down.

Beijing had said the Chinese-made Green Dam software would filter out pornography, protecting young people within the world's largest online population.

However, trade and rights groups expressed fears it was another attempt by China to control access to the Internet.

[addedon]August 7, 2009, 12:50 am[/addedon]

QUOTE(sanjayws @ Aug 7 2009, 12:49 AM)

Malaysia Considers China-Style Internet Censorship.

My views: http://highsecurity.blogspot.com/2009/08/m...rship-vain.html

Adobe products zero day attack (Flash, Acrobat/R)

sanjayws — Fri, 24 Jul 2009 08:48:49 +0800

Reference: http://www.us-cert.gov/cas/techalerts/TA09-204A.html

Systems Affected

Adobe Flash Player 10.0.22.87 and earlier 10.x versions
Adobe Flash Player 9.0.159.0 and earlier 9.x versions
Adobe Reader and Acrobat 9.1.2 and earlier 9.x versions

IMPACT:
This vulnerability allows a remote attacker to execute arbitrary code as the result of a user viewing a web page or opening a PDF document.

FIX:
NONE (MAKING IT ZERO DAY)

WORKAROUND:
Disable flash, scripts on browsers, Adobe PDF readers (or use a firewall that can do just that). If you need help, just ask.

Shall update latest development.

This is quite a serious matter as almost 99% of world users use Flash...

[addedon]July 24, 2009, 8:51 am[/addedon]If you're in paranoia mode, remove flash:

http://kb2.adobe.com/cps/141/tn_14157.html

No flash=no youtube, fav porn flicks etc...

Blackberry updates + Spyware + BES Security Tip

sanjayws — Fri, 17 Jul 2009 14:19:53 +0800

If you are using Blackbery and there's a WAP Push Message for an update, think twice. Read on...

This malicious Java package contains spyware that can reroute messages + deplete battery life according to researchers. So, if there's any need to update a Blackberry, do it via the Blackberry website directly. Do not accept any other update sources. Incidentally, this spyware is called Interceptor (i mean, unless you're really stp**d, you would install an application of such name coming from such as dubious source.

This is especially important as many large organizations deploy their BB's for senior executives and this can pose a serious information leak.

Notify users.

Source article: http://www.securityfocus.com/news/11555?fl...ettimonster=rss

[addedon]July 17, 2009, 3:21 pm[/addedon]A little more BB i would like to share with the people here.

Blackberry Enterprise Server is a service hosted internally or externally to allow people to receive emails through their Blackberry enabled handhelds. This is a similar function to MS Push Mail service.

In Windows Mobile, Exchange users are requested to key in a password before they can connect to their mailboxes and read stuff. In Blackberry for Exchange and Notes they don't have to.

This is why (for Exchange, im not sure of Notes tho, this applies to BES, not BIS bcs BIS needs passwords to logon to POP/IMAP accounts)

1. Blackberry already uses a service which has read only mailbox access across the entire mailbox which this service has permission to
2. This gives BB configuration person unauthenticated full access to a person's mailbox by simply associating the BB unit to a mailbox.
3. Configuration people can also re-associate mailboxes to other BB devices therefore giving them access to the mailboxes they wish to view.

This leads us to two primary things to consider:

1. The security on the BES (Blackberry Enterprise Server)
2. The Blackberry device itself (both during configuration and after)

Organizations should be aware of this powerful access and should control the way BB devices are distributed and BB servers are configured.

Here's my view on a possible way to mitigate and control this "issue"

For item 1 - Security on the BES

* The access level on BES servers should be well defined, i.e. read only access vs. full access
* The username and password used to access the BES server should be controlled at least by two people (i.e. two or more people should have parts of the password for example)
* Any logon attempt to the BES server should immediately be logged (enable full logging in any which way possible

For item 2 - Security on the handheld

* When provisioning the device, have someone else (a neutral party) physically seeing the operations of the person configuring
* If anyone gets "disconnected" or "unconfigured" on their BB devices to their Exchange/Notes, let them notify someone immediately, perform investigation afterwards and do a remote wipe if someone else is configured to use the mailbox on their handhelds apart from the original owner of that mailbox

Stay secure!

Online Security Tips

sanjayws — Mon, 13 Jul 2009 17:18:02 +0800

A couple of days back a good friend of mine was lured into an online scam. The perpetrator assumed a Hotmail support staff and email her to send information (such as her password) as a respond back to a "security measure" taken by Hotmail for it's users. Anyway, i've helped her done some initial "first aid" but more importantly, here are some top 10 online tips

Top 10 Online Tips

1. No credible online company will ask for your password! Period. If they do, just trash it.
2. No credible application developer will email you an executable (They may put a link up but look at tip no 3)
3. If there's a link to download and apply a certain fix/patch, do a search and see if its legitimate first before applying. Most credible sources such as the principle's website would be on the first few hits in your search. Go to that link, read what's it all about. Consult someone credible (yes you can ask me )
4. You have the right to ask and question anything you receive from a source seemingly legitimate if they are asking for personal information (and it's your right not to disclose)
5. If you're in doubt, ask!, search!, be sure!. There's no stupid question, just stupid assumptions
6. When transacting anything with money online, DO NOT DO IT OVER A PUBLIC WiFi. There's too many reasons why but i wont.state them here. Search that if you are interested.
7. Passwords are the weakest form of security. Use long passwords (complex short ones are easier to guess than long non-complex ones). I am not a big fan of changing passwords too frequently cause the flipside of that is that you will start to forget those new passwords you created and start using post-it-notes as reminders and start pasting up on your walls/monitors
8. HTTPS (secure HTTP) does not necessary mean its secure. You should still verify the certificate (which are used to make that HTTP > HTTPs) and URL. Most browsers will complain if the basic criteria is not met like related URL (friendly name), validity etc... Again, if in doubt, see item 5
9. Read stuff. There's a lot of credible website that give users basic and clear information on what's the latest in the world of security. I recommend reading stuff from CNET, Microsoft's Security Website, and the one i like most is http://www.us-cert.gov/current/
10. Use basic PC level protection like Antivirus (I use kaspersky and love it), enable a firewall (Windows Firewall is a good start) and keep your machine up to date (using Microsoft OS, just go to http://update.microsoft.com).

Ok, lets say you do get scammed into something and there's risk of potential sensitive information leak. Do the following;

1. Ask for help from an IT expert in house or write to me if i can help, i will (real world experts, not the ones from Lowyat forum etc)
2. Lodge a police report (state the seriousness of the case)
3. Write an email to the corresponding company stating your case. Give them as much information as possible
4. Inform any friends that may be affected, of possible fraud attempts (e.g. if your email is hijacked/stolen password, someone may impersonate you and ask for money because you're apparently stranded in the Bahamas, "they" stole your baggage and you need money to travel home and will pay back once you reached back home)
5. Learn from the lesson! Read the tips above!

Sanjay
Microsoft MVP - Enterprise Security

Live Skydrive

Thu, 01 Jan 1970 07:30:00 +0800

Live Skydrive

sanjayws — Sun, 22 Feb 2009 01:26:15 +0800

We’re live! You can sign up here: http://skydrive.live.com

Here are a few things you’ll find on your shiny new SkyDrive:

25 GB of free online storage
Available in 6 more regions and 13 more languages
Download entire folders as Zip files (limited release)
Gorgeous online slide show for your photos
And much, much more

Cool. 25gs..that's what im talking about. Now if only Stream-suxbigtime-Myx would be faster that would make skydrive just like any other network drive .

Cheers
Sanjay

Live Skydrive

sanjayws — Sun, 22 Feb 2009 01:24:17 +0800

Open Source IP PBX Rules - Asterisk Rules

sanjayws — Sat, 14 Feb 2009 17:39:24 +0800

Malaysian Asterisk User Group - MAUG (Malaysia Boleh!)

“OUR MISSION IS TO PROMOTE THE USE AND SUCCESS OF OPEN SOURCE TELEPHONY, ESPECIALLY ASTERISK IN ASIA-PACIFIC.”

MAUG is centred in Kuala Lumpur (Malaysia), we welcome members, guests and participants from all over the world. (subscribe here to MAUG)

MAUGERS (MAUG MEMBERS) ARE:

--> respecting all races and religions
--> are tolerant and respectful with newbies (especially in blogs)
--> ethical and professional
--> enthusiastic about open source technology
--> sharing their knowledge with the community
--> Moving in to the future MAUG is building a growing user group that is more than just social gatherings (drinking beers): we will support and organize various talks, seminars and events that help to push Asterisk forward, and assist people in understanding it.

We welcome entry level participants to mix with technology veterans in a casual environment to foster goodwill, education and experimentation, fun and makan (food) !

MAUG will be 100% ad Free

Website: MAUG Official Website - www.maug.com.my
Contact us at: info@maug.com.my

World's Fastest MD5 crack

sanjayws — Thu, 22 Jan 2009 00:13:43 +0800

Ever wondered what does this "463c8a7593a8a79078cb5c119424e62a" MD5 string mean? Well, i don't and will never (i am no God) probably.

Lets say you get your hands into a database which so calls hashed passwords using MD5 (without salts) and would like to reverse this hash (yes, i said reverse an MD5 hash-how kewl) then try this tool from Svarychevski Michail Aleksandrovich called BarsWF. Its by far the world's fastest Md5 cracker:

There are multiple versions, some use the power of your video card and some just the CPU to run the process.

AMD BROOK Beta 0.9: - ATi/AMD card 2xxx, 3xxx, 4xxx
BarsWF Brook x64
BarsWF Brook x32

CUDA 0.8: - nVidia GeForce 8xxx and up, at least 256mb of video memory.
BarsWF CUDA x64
BarsWF CUDA x32

SSE2: (P4, Core2Duo, Athlon64, Sempron64, Phenom)
BarsWF SSE x64
BarsWF SSE x32

It took me a couple of seconds to unhash "pass" and as i am writing this, i am trying to unhash another "complex" password of mine from an application that stores the passwords in MD5 (web based).

Check out my CPU and the application in action

Just download the appropriate version, or just use the SSE2 one if you are unsure and try to crack the hash "463c8a7593a8a79078cb5c119424e62a" as seen above. Location: http://3.14.by/en/md5

To give you a hint and make life easy, this MD5 just have alphabets in lowercase only .

So, to run the tool with knowing the "hint" above (well in real life you won't really know but to just guess, of course, having more complex phrases and lenght will definately increase the time it will take to reverse)

BarsWF_SSE2_x32.exe -h 463c8a7593a8a79078cb5c119424e62a -c a
[the .exe] + -h [the hashed Md5 string] + -c [a]

Usage:
-? Prints this help
-r Continue previous work from barswf.save BarsWF updates it every 5 minutes or on exit
-h [hash] Set hash to attack
-c 0aA~ Set charset. 0 - digits, a - small chars , A - capitals, ~ - special symbols
-C "abc23#" Add custom characters to charset.
-X "0D0A00" Add custom characters in hex to charset.
-min_len 3 Minimal password length. Default 0. MAX 15!!! :-]

Once you've runned the command above, let me know the value of the Md5 string . Have fun.

One tip, notice only 15 characters MAX, meaning, if you are planning to use MD5, encourage the use of >15 chars, it is computationally very very very hard to crack that in humanly possible time.

MD5 according to wiki: n cryptography, MD5 (Message-Digest algorithm 5) is a widely used cryptographic hash function with a 128-bit hash value. As an Internet standard (RFC 1321), MD5 has been employed in a wide variety of security applications, and is also commonly used to check the integrity of files. However, it is now known to be partially insecure[1] thus reducing its suitability for these purposes. An MD5 hash is typically expressed as a 32 digit hexadecimal number.

How To Suck At Information Security

sanjayws — Tue, 20 Jan 2009 01:45:18 +0800

Security Policy and Compliance

* Ignore regulatory compliance requirements.
* Assume the users will read the security policy because you've asked them to.
* Use security templates without customizing them.
* Jump into a full-blown adoption of frameworks such as ISO 27001/27002 before you're ready.
* Create security policies you cannot enforce.
* Enforce policies that are not properly approved.
* Blindly follow compliance requirements without creating overall security architecture.
* Create a security policy just to mark a checkbox.
* Pay someone to write your security policy without any knowledge of your business or processes.
* Translate policies in a multi-language environment without consistent meaning across the languages.
* Make sure none of the employees finds the policies.
* Assume that if the policies worked for you last year, they'll be valid for the next year.
* Assume that being compliant means you're secure.
* Assume that policies don't apply to executives.
* Hide from the auditors.

Security Tools

* Deploy a security product out of the box without tuning it.
* Tune the IDS to be too noisy, or too quiet.
* Buy security products without considering the maintenance and implementation costs.
* Rely on anti-virus and firewall products without having additional controls.
* Run regular vulnerability scans, but don’t follow through on the results.
* Let your anti-virus, IDS, and other security tools run on "auto-pilot."
* Employ multiple security technologies without understanding how each of them contributes.
* Focus on widgets, while omitting to consider the importance of maintaining accountability.
* Buy expensive product when a simple and cheap fix may address 80% of the problem.

Risk Management

* Attempt to apply the same security rigor to all IT assets, regardless of their risk profiles.
* Make someone responsible for managing risk, but don't give the person any power to make decisions.
* Ignore the big picture while focusing on quantitative risk analysis.
* Assume you don't have to worry about security, because your company is too small or insignificant.
* Assume you're secure because you haven’t been compromised recently.
* Be paranoid without considering the value of the asset or its exposure factor.
* Classify all data assets as "top secret."

Security Practices

* Don't review system, application, and security logs.
* Expect end-users to forgo convenience in place of security.
* Lock down the infrastructure so tightly, that getting work done becomes very difficult.
* Say "no" whenever asked to approve a request.
* Impose security requirements without providing the necessary tools and training.
* Focus on preventative mechanisms while ignoring detective controls.
* Have no DMZ for Internet-accessible servers.
* Assume your patch management process is working, without checking on it.
* Delete logs because they get too big to read.
* Expect SSL to address all security problems with your web application.
* Ban the use of external USB drives while not restricting outbound access to the Internet.
* Act superior to your counterparts on the network, system admin, and development teams.
* Stop learning about technologies and attacks.
* Adopt hot new IT or security technologies before they have had a chance to mature.
* Hire somebody just because he or she has a lot of certifications.
* Don't apprise your manager of the security problems your efforts have avoided.
* Don't cross-train the IT and security staff.

Password Management

* Require your users to change passwords too frequently.
* Expect your users to remember passwords without writing them down.
* Impose overly-onerous password selection requirements.
* Use the same password on systems that differ in risk exposure or data criticality.
* Impose password requirements without considering the ease with which a password could be reset.

Courtesy of SANS

Job Posting - Associate Consultant

sanjayws — Thu, 15 Jan 2009 20:16:37 +0800

Dear forumers, warmest wishes for '09

We are looking for fresh graduates or someone with about a year experience generally in supporting and managing small to medium Windows based environment.

Some basic requirements:
1. Windows 2000 and up experience
2. Supporting users desktop environment mostly
3. Simple Networking & IP telephony concepts
4. English spoken and written is a must, if you speak in 128bit AES Encrypted English, you're immediately hired.
5. Desire to grow more than just support within a year upon fulfilling this role (i.e. IP telephony, network presence management, monitoring and more...mainly in the Open source and Windows environments)

Salary is negotiable and based on experience, exposure and most importantly, a shinny positive attitude. We don't really care if you've got a PHD or a SPM diploma, just have the right know how and attitude...

Some nifty perks...
- Work in a fancy and friendly Oil and Gas company in the middle of Kuala Lumpur in normal work hours, (and we pay your Overtime if its required)
- Benefits such as 100% medical coverage and insurance for you and spouses/kids
- Monthly company fun activities and more fun (sometimes we over do the fun bit...haha)
- Opportunity to move in and about in various internal job posting within the company (after a year fulfilling this role)

About us
Company website: www.intuitinnovations.com
Contact: sanjay@intuitinnovations.com

Contact
Call me @ 0123771020 to setup an immediate interview. We will hire the right candidate within 1 month and you are required to start within March or earlier if possible. Thank you and good luck to all job seekers.

With best

Sanjay W
Vice-President of Global Consulting Group

Decent article on XP, Vista and Windows 7 (Beta)

sanjayws — Wed, 07 Jan 2009 00:45:05 +0800

Hi guys, just bumped into this on ZDNet, seem informative.

IMHO, Vista was just like Windows ME (the Mistaken Edition..haha)...

7's the charm? ..well you decide!

http://blogs.zdnet.com/hardware/?p=3236