Create A Desktop Background Wallpaper Changer For Xfce

I have switched to Xubuntu a few months ago coming from Kubuntu. In Kubuntu I liked the (already available) option of setting up a list of image files and have them randomly displayed as background image on the desktop. This was one of the things I have missed so far in Xfce. This small howto shows you how you can randomly display background wallpapers in XFCE.

Read more…

continue reading.....

One of our readers made an interesting observation, one which I have confirmed with the headers …(more)…

continue reading.....

For those of you using Windows Defender just wanted to remind you that the old version expires today …(more)…

continue reading.....

(Posted 31 Dec 2006 by janewalker6847)

continue reading.....

(Posted 31 Dec 2006 by Boris Derzhavets)

continue reading.....

Massive amounts of fake New Year greetings card are being sent by Tibs.jy (aka Luder).

According both our public and private virus statistic systems, the numbers are big enough. So we’ve just raised Luder.A to Radar alert Level 2.

In any case, this is hopefully the last post of 2006. Have a Goodyear.

On 31/12/06 At 10:41 AM

continue reading.....

The stress test of hardware (hard drive benchmarks) is a simplistic test. There are a number of benchmarking applications software that can be used as hard disk (storage) stress testing. My favorite is Bonnie++ software.
From the project home page:
Bonnie++ is a benchmark suite that is aimed at performing a number of simple tests of hard [...]

continue reading.....

Rediff Bol Downloader ActiveX control allows any webpage to download and spawn file. These file can be of any type. No filtering is done. Internet Explorer displays an alert, if the code points to a executable file on the Internet, however, execution of local files displays no alert.

continue reading.....

A vulnerability has been found in iso_wincmd Total Commander Plugin. When exploited, the vulnerability allows execution of arbitrary code when the user opens a malicious ISO file.

continue reading.....

OSP is “an ETSI defined standard for Inter-Domain VoIP pricing,authorization and usage exchange”. A critical security vulnerability has been found in OpenSER Open Settlement Protocol (OSP) module.

continue reading.....

DURIAN is “a Free Delphi Web Application Server for make interactive dynamic web documents in the Pascal server-side html-embedded scripting language for Windows (Delphi) and Linux (Kylix)”.

continue reading.....

On late Friday 29th of December Collin Mulliner published proof-of-concept exploits of MMS vulnerabilities that he had discoverd six months ago. When Collin first discovered the vulnerabilities he informed the software vendors, but as he has not received report in half a year he decided now to publish the exploit in the 23rd Chaos Communication Congress in Berlin.

The proof-of-concept exploits target vulnerbilities in SMIL presentation control language in MMS messages. Region tags in MMS SMIL are vulnerable to buffer overflow causing arbitrary code execution. In other words if those tags get too large content it makes to possible for malicous MMS message to execute code on target device.

It is still unknown which phones are vulnerable to this exploit. Collin’s research has confirmed vulnerability in IPAQ 6315 and i-mate PDA2k, but it is quite likely that all Pocket PC 2003 and Windows Smartphone 2003 devices are also vulnerable.

The good news is that the only devices to which proof-of-concept code is available are the IPAQ 6315 and i-mate PDA2k. And even in those devices attacker needs to guess correct memory slot where the MMS processing code is executing and send correctly crafted exploit code. This means that a malicious MMS message will most likely be only able to crash the device, not to to exploit it.

So while Collins discovery is very significant, it does not pose immediate danger to large groups of users. And although it is possible to create MMS worm or other malware that uses the vulnerability, this particular exploit cannot directly be used in creating malware.

But to be safe, we have included detection of the exploits on Saturday 30th in F-Secure Mobile Anti-Virus for the platforms that can be affected by this vulnerability.

As the device vendors have not given confirmation that the exploit has been fixed, we cannot confirm that patches are available. But as always it is very good idea to have latest updates installed in your devices.

On 31/12/06 At 08:41 AM

continue reading.....

WWWhack is a brute force utility that will try to crack web sites guarded by an web access password. This utility can use a word file or try all possible combinations, and by trial-and-error, will attempt to find a combination of username/password that…

continue reading.....

You can send email with attachment via shell script or at shell prompt/command line using mutt or mail command. This will not hide your IP address.
To send anonymous email from shell prompt use Mixmaster, which is the type II remailer protocol and the most popular implementation of it.
Remailers provide protection against traffic analysis and allow [...]

continue reading.....

This tutorial is intended to give a very basic introduction to using the Zend Framework to write a very basic database driven application.
Zend Framework is a new open source effort aimed at producing a high-quality framework for developing modern, robust, secure web applications and web services in PHP 5.
This tutorial is constantly updated by author. [...]

continue reading.....

I like free software and movement was started by FSF.
Bruce Byfield writes about the Free Software Foundation (FSF) how they transformed themselves into an activist organization in the past year.
From the Linux.com article:
At the start of 2006, the Free Software Foundation (FSF) was largely inward-looking, focused on the GNU Project and high-level strategic concerns such [...]

continue reading.....

New year’s eve is here and this is my lists of gadgets that rocked my world in 2006
Notebook
I brought two Notebooks.
1. Dell Inspiron 6400 for office use.
2. Sony VAIO VGN-AR28 – It provides me great entertainment with a sleek design.
Mobile/PDA
I brought total 2 devices.
1. The blackberry Pearl for office use – One [...]

continue reading.....

Black Hat Briefings: Las Vegas 2006 Video RSS Feed | Audio RSS Feed

continue reading.....

continue reading.....

continue reading.....

continue reading.....

continue reading.....

continue reading.....

continue reading.....

continue reading.....

continue reading.....

Enigma WordPress Bridge (boarddir) Remote File Include

continue reading.....

Enigma Coppermine Bridge (boarddir) Remote File Include


>> Advertisement <<

ALERT: “How A Hacker Launches A Blind SQL Injection Attack Step-by-Step”!” – White Paper
Blind SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Download this *FREE* white paper from SPI Dynamics for a complete guide to protection!

https://download.spidynamics.com/1/ad/bsq.asp?Campaign_ID=701600000004c29

continue reading.....

For the past month I’ve been bulding and playing with Leonard ‘paniq’ Ritter’s Aldrin, a music production system that combines a tracker-style composition interface with audio synthesis and processing modules called machines. Users of the famous Buzz music software will probably recognize Aldrin’s design at once. In fact, it may be fair to describe Aldrin as Leonard Ritter’s interpretation of the original Buzz.

For my last blog entry in 2006 I’ll take a brief look at the latest public version of Aldrin, then we’ll discover just what makes its creator tick in a rather lengthy interview with Leonard Ritter himself. Leonard is a thoughtful and articulate fellow, I hope you enjoy his responses as much as I did.

continue reading.....

continue reading.....