-
Grokking OpenID and Blogger
I just created my first OpenID account! If you don’t know what OpenID, it is a single sign-on solution (sometimes also called login federation), which ensures that you can have a single login name / password using which you can authenticate in may (web-)places. It is similar to the Microsoft Passport initiative, the difference being…
-
Using rsync on Windows
First of all, what is rsync? It is a protocol and an implementation of it for bandwidth efficient file synchronization. In a nutshell it can synchronize two directories (one local and one remote) while making sure that only the minimal amount of data is transferred. It accomplishes this by breaking the files up in blocks…
-
Manifesto of the ethical Anti-Rootkit writer
Rootkits are a controversial subject. When the book (Rootkits, Subverting the Windows Kernel) came out and the associated site (rootkit.com) was started, the subject exploded. Of course the Sony DRM fiasco did also plenty to generate media buzz. Because of this, many detection tools were born. Some were created by traditional security companies and some…
-
Mismoderated RkUnhooker comment
And here is an other event in the RkUnhooker saga. Because of the controversy I’m involved in regarding my No love for RkUnhooker post, I wanted to come out and state publicly that I erroneously mismoderated (rejected) MP_ART’s comment on my blog. Before I get accused of censorship, I just want to say that it…
-
And so the RkUnhooker saga begins
The RkUnhooker story gets worse and worse (from the point of view of its authors). They (EP_X0FF and MP_ART) are making threats Russian mob style (not that I would know how a Russian mob threat sounds :-D), stating that You have come against wrong people and that want, that you are not able to reach…
-
Limited users – myth or reality
Fellow security blogger, Kurt Wismer, says that there are limited advantages to limited users. He is right in all his arguments: A program running in your account, even if it is a limited user account, still has access to all of your files. It can search in them for e-mail addresses, wipe them or do…
-
No love for RkUnhooker
It seems that the author of RkUnhooker (you know, that guy named EP_X0FF) got very upset about my comments and first he wrote a comment to my blog – which I published a little late and I apologize for it. Then he got into personal mode and made a threatening post on his forum. My…
-
New Hacker Challenge available
Just to give you a heads up: a new hackers challenge is available over at ethicalhacker.net. Good luck!
-
Whos timeserver are you using?
There was a controversy some time ago involving D-Link and Poul-Henning Kamp where the former were using the timeserver set up by the later as default in their routers, effectively generating a DDoS on the server without giving any recompensation for it. The matter was amically resolved in the end, but it seems that corporations…
-
Favicon for blogger
Being inspired by a post over at snook.ca I added a favicon to my blog. The original image came from MouseRunner. Given the fact that I use FireFox since a long, long time I’m entitled to use this given image :). A word of advice: always check out the license for the image! There are…