Re: How to survive a Zombie attack

December 3rd, 2007 DROP (Don't Route Or Peer) is an advisory "drop all traffic" list from Spamhaus, consisting of stolen 'zombie' netblocks and netblocks controlled entirely by professional spammers. DROP is a tiny sub-set of the SBL advisory designed for use by firewalls and routing equipment.

November 14th, 2005 After enhanced for loop was introduced with J2SE 1.5.x aka J5SE, I made it a delightful habit to use it. You know what I am talking about, right? For example previously I used to write: private gbWay() { ....

November 22nd, 2005 Today one of my computers started displaying - damaged windows xp profile. It then goes into a temporary account.

February 28th, 2007 You can access any blog / site under heavy load / attach / DNS resolution error by following one of the following four methods. For example here are four url's by which you can easily access this blog at any time: http://blog.taragana.com.nyud.net:8080/ - Coral Proxy will display the original page without any changes.

February 9th, 2009 Everybody's farting around, with iFart. No pony and trap lol, its a blast and everyone is talking about it, so do I.

March 15th, 2009 Firefox 3 onwards has a nice feature which warns you of sites which are suspected of forgery or attacks (through trojans, malware etc.). Unfortunately the feature is too intrusive and warns you repeatedly, nags you to death is a better phrase to describe it, even when you have confirmed that the site is genuine.

July 12th, 2006 Take a look at your log file (/var/log/secure for Fedora Core 4) and you will discover numerous automated ssh hacking attempts using dictionary attack. So now you have identified the offending addresses.

November 7th, 2005 Computer hackers are exploiting increasing fears over bird flu by releasing a computer virus attached to an email passing itself off as containing avian flu information, warned Spanish virus protection software firm Panda Software. The virus Naiva.A masquerades as a word document with email subject lines such as Outbreak In North America and What Is Avian Influenza (bird flu)?, said the firm on its website.

September 11th, 2007 Most guide to adding multiple IP addresses on Linux starts with the Microsoft-like solution of using ifconfig. While the solution is correct it doesn't survive a reboot or even a network restart.

November 1st, 2007 I always wondered what made people get addicted to a game. Now I know. Battle for Wesnoth is an amazing, free, cross-platform (Windows, Mac & Linux), turn-based strategy game with a fantasy theme that will surely get you hooked for days, weeks or even months, even if you are a non-gamer.

July 24th, 2006 Many online blogging software and other products require some type of cron and / or asynchronous execution functionality. Spammers and web robots are an essential part of any website today.

December 26th, 2008 Social networking has a very important part to play in our lives now. Be it Facebook or Myspace or Orkut or Twitter - these sites are proving to be beneficial for both personal and professional purposes.

July 24th, 2007 Security researchers Charlie Miller, Jake Honoroff & Joshua Mason claimed and then demonstrated a prrof-of-concept vulnerability in iPhone which can be used by any website to inject codes in iPhone which will allow full remote control of your iPhone over the internet. The hackers can do everything you can do with your iPhone remotely.

May 15th, 2007 Several years ago I noticed a big issue with NIS security at Sun, which I promptly reported hoping for a patch. Today I found out it is still there.

January 9th, 2007 Security vendor Imperva has identified an access-control vulnerability in DWR, Java Open Source AJAX development framework (stable release 1.1.3 and 2.0), which it says an attacker can use to compromise a DWR based application which may in turn enable him to say break into back-end databases or servers or launch a denial-of-service-attack. On a positive note Imperva commented that DWR, AJAX Web application development framework, is "emerging as the lingua franca for building new generation Web 2.0 applications" :) Forceful Method Invocation Attacks The key issue is how DWR restricts access to not exposed class methods.