You tell us… at this point, we don’t know what could have possibly been going through Matasano Chargen’s collective mind when they commented on Halvar Flake’s hypothesis (reference: Halvar Flake) and posting that content directly to the web - this unfortunately doesn’t mix well with the already ’scene’ headache over Dan’s less-than-forthcoming disclosure method (source: Dan Kaminsky / DOXPARA | here, here & here) which has earned him stars in vendor / whitehat handbooks and a big black X with a lot of his INFOSEC counterparts or fellow researchers as briefly depicted here (reference: C|Net News). Whether or not this really hit the nail on the head, it seemed to have raised enough eyebrows this week.
Search
Months
Recent Entries
- POLL: US Presidential Candidates + Advance of Technology
- Installing JMagick on Mac OS X
- POLL: 2008’s Largest Security Upset, So Far
- RIAA Lobbies at DNC
- MBTA Put Profit Before Security
- anniversary: two years old
- Chinese Pervasive Censorship Culture
- Unintentional Betrayal or Faux Ignorance
- POLL: Dan Kaminsky’s DNS Poisoning Bug
- Proactive Action Needed in Ballistic Forensics
Worth Reading
- HTTPOnly Fix In MSXML - I’m happy to announce that Microsoft has released MS08-069 today. It’s got a lot of changes in it, but one in particular that I’ve been tracking for about a year now. MSXML has
- News Report on Non Vulnerability in Windows Vista - Are editors so excited to use the headline “Vulnerability in Windows Vista” in their SEO URLs that they will have their reporters write a story on a non-issue? IDG News has published a
- HNN Archive Posted - I don’t really know who actually owns the Hacker News Network anymore. I own the domain now but the original content was part of the sale of L0pht to @Stake which was then sold to Symantec. At
- No School Like The Old School - I really need to learn to leave DNS alone DNS TXT Record Parsing Bug in LibSPF2 A relatively common bug parsing TXT records delivered over DNS, dating at least back to 2002 in Sendmail 8.2.0 and
- Dead Bugs Society: Apple File Server - For today’s installment of Dead Bugs Society, I’m going to dig up another one of my favorite exploits. This exploit is actually the second exploit that I wrote for the Apple File Server
- Injustice Served: The Julie Amero Case is Finally Over - The tragedy of Julie Amero (here) has finally come to an end. The substitute teacher accused of showing pornography to her middle school class, in which a series of incompetent computer experts and
- Matasano Revs Up Firewall Rule Management With Playbook v1.1 - We are happy to announce a new release of our firewall management product Playbook, available today. Playbook v1.1 introduces Rule Macros and support for managing rules for Cisco PIX firewalls among
