Lowyat.NET: Latest topics by Everion

Allegations regarding OpenBSD IPSEC

Everion — Fri, 17 Dec 2010 23:39:17 +0800

Anyone heard of this?

QUOTE

I have received a mail regarding the early development of the OpenBSD
IPSEC stack. It is alleged that some ex-developers (and the company
they worked for) accepted US government money to put backdoors into
our network stack, in particular the IPSEC stack. Around 2000-2001.

Since we had the first IPSEC stack available for free, large parts of
the code are now found in many other projects/products. Over 10
years, the IPSEC code has gone through many changes and fixes, so it
is unclear what the true impact of these allegations are.

The mail came in privately from a person I have not talked to for
nearly 10 years. I refuse to become part of such a conspiracy, and
will not be talking to Gregory Perry about this. Therefore I am
making it public so that
(a) those who use the code can audit it for these problems,
(b) those that are angry at the story can take other actions,
© if it is not true, those who are being accused can defend themselves.

Of course I don't like it when my private mail is forwarded. However
the "little ethic" of a private mail being forwarded is much smaller
than the "big ethic" of government paying companies to pay open source
developers (a member of a community-of-friends) to insert
privacy-invading holes in software.

----

» Click to show Spoiler - click again to hide... «

Source: http://marc.info/?l=openbsd-tech&m=129236621626462&w=2

Need advice on upgrading.

Everion — Fri, 10 Dec 2010 04:11:04 +0800

So, I just got my own laptop for programming propose, I want give my current Desktop to my lil bro, for playing game.
Im not sure what type of game his playing but shooting 1(CSO if I recall correctly)

Here my current desktop spec

Processor: Pentium® Dual-Core CPU E5500 @ 2.80GHz
Motherboard: ASUSTeK Computer INC. P5KPL-AM EPU (Socket 775)
Ram: 1.0GB Single-Channel DDR2 @ 399MHz (5-5-5-15)

My friend said I need gpu.
can anyone advice me wht gpu suitable?
budget RM500<

p/s:sorry my english sux

/k/

Everion — Sat, 20 Nov 2010 03:54:34 +0800

good resignation letter?

» Click to show Spoiler - click again to hide... «

WTF worm makes Twitterers declare goat lust

Everion — Mon, 27 Sep 2010 20:02:11 +0800

Another malicious worm hit Twitter over the weekend, days after the micro-blogging site reached near-meltdown from a technically similar attack.

This time around the danger came from clicking links contained in micro-blogging messages beginning "WTF [URL]". Last week's more serious onMouseOver problem struck when users moved their mouse cursor over an infected tweet. These messages contained hidden JavaScript code that exploited a cross-site scripting problem - in the case of the WTF worm a CSRF (cross-site request forgery) technique is in play.

The miscreants behind the latest assault set up an attack page that exploited a CSRF vulnerability in Twitter so that victims who clicked on a link posted a crude message about their supposed fondness for sex with goats, as explained in a blog post by Sophos here.

Victims included celebrity blogger Robert Scoble, but far fewer people were affected than by the much bigger onMouseOver hack.

Twitter responded to the latest attack by disabling the link and, by late on Sunday, fixing the exploit that spawned the worm. The micro-blogging service is in the process of mopping up the remaining mess by purging the dodgy tweets from infected accounts, as explained in an update on Twitter's status page here.

wtf sos

Second piracy threat lawyers withstand DDoS attack

Everion — Fri, 24 Sep 2010 22:27:58 +0800

QUOTE

The attack on a second law firm with a history of involvement in copyright litigation has turned out to be something of a damp squib. Anonymous extended its fight against organisations supporting anti-piracy efforts to solicitors Davenport Lyons on Thursday night, with plans to flood its website with spurious traffic and carry out a defacement.

The move is the latest phase in a campaign dubbed "Operation: Payback Is A b****", which began over the weekend with successful DDoS attacks against the websites of the Motion Picture Association of America and the Recording Industry Association of America (RIAA), before proceeding to less successful assault against the British Phonographic Industry (BPI). The campaign is a retaliation against the use by Bollywood studios of a firm called Aiplex Software, which launches DDoS attacks on Torrent sites that fail to respond to takedown notices. Aiplex was among the early targets of the attacks.

These assaults moved onto the website of solicitors ACS:Law on Tuesday, briefly taking it offline. The law firm sends threatening letters to alleged copyright infringers urging them to pay £500 or risk being taken to court.

The controversial tactic was originally carried out in 2007 by London-based law firm Davenport Lyons, which has since discontinued the practice, but its practice of sending nastygrams to alleged copyright offenders has earned the ire of Anonymous.

According to Panda Security, which has been tracking the progress of the attacks, Anonymous briefly succeeded in taking the Davenport Lyons website down late on Thursday night before a failed attempt to deface the site.

However, a spokeswoman for the solicitors told El Reg that "everything is normal here and it's all working fine". ®

sos

4chan invades Tea Party website

Everion — Wed, 22 Sep 2010 21:15:53 +0800

A website run by the conservative Tea Party movement was overrun by the denizens of 4chan on Tuesday.

Website vulnerabilities on the official teaparty.org website allowed pranksters to divert surfers landing on the photo section of the site to smut and shock sites. It's unclear what website security shortcomings were exploited in that attack and whether these are now closed. Boing Boing has screenshots from the attack in a short article here (NSFW).

The assault coincides with ongoing DDoS attacks by members of 4chan against entertainment industry websites in protest against legal actions against torrent tracker website The Pirate Bay.

"Operation: Payback Is A b****" began over the weekend as an attack against Aiplex, an Indian firm that acts as a hired gun for Bollywood film studios, resorting to DDoS attacks on websites hosting BitTorrent trackers that fail to respond to takedown notices. The attacks moved on to assaults that flooded websites maintained by the MPAA and RIAA and, most recently, ACS:Law.

It's hard to imagine two groups of people more contrasting than fans of 4chan, the anarchic message board, and supporters of the Tea Party movement of "God-fearing" conservatives. So it's no surprise that the two groups have clashed in the past.

The Oregon Tea Party made the mistake of using the "We Are Legion" slogan of Anonymous, the anti-Scientology movement that spawned in 4chan, in its official materials this summer. In response, Anonymous hacked the Tea Party's Facebook page, posting flames and image macros, before the local branch of the dissident conservative movement promised to stop using the slogan. More on this culture clash in a story by The Escapist here.

4chan /i/ sos

/k/, ini....

Everion — Sun, 19 Sep 2010 16:16:09 +0800

» Click to show Spoiler - click again to hide... «

Upgrade or Buy "new" 1?

Everion — Wed, 08 Sep 2010 22:45:52 +0800

I would to ask lyn user reference and suggestion, Is it worth to upgrade this kind of desktop or should I get new/used(better spec from current)? I'm not gamer but I think get minimum requirement for gaming is enough and I don't need alot disk space.

This is my current desktop spec;
RAM DDR 200mb+(not sure exact value)
No Graphic Card
80gb HDD

this desktop is very old 1, about 5 years++ I guess..

any suggestion, should I upgrade or buy new/used deskop?

p/s:my budget is very limited, less than RM500

» Click to show Spoiler - click again to hide... «

fetch file in C?

Everion — Sat, 28 Aug 2010 09:13:15 +0800

anyone know how to fetch remote file and save it locally in C-programming ?

p/s: give hint better than direct answer.

hai /k/, I got

Everion — Fri, 30 Jul 2010 18:21:09 +0800

http://www.wcrayon.com/YTB/youtube.php?c=UgpufeVA-nM

» Click to show Spoiler - click again to hide... «

source