#infoAnarchy Chump Archives for 2002, 2003, 2004, 2005, 2006RSS

last updated at 2006-06-01 21:39

This 'job' thing is really starting to get in the way

http://www.osvdb.org/22537
posted by coderman at 2006-06-01 21:33

coderman: "With a specially crafted request beacon or probe response frame, a malicious attacker may be able to execute arbitrary code within the context of the FreeBSD kernel" - sorry they aren't sharing sploits, a panic packet would be easy, but i've got no sploits
Mutiny: Upgrade to version 6-STABLE or to the RELENG_6_0 security branch dated after the correction date, as it has been reported to fix this vulnerability. In addition, FreeBSD has released a patch for some older versions.
Mutiny: Quick fixes is why FreeBSD is the more secure operating system of choice. ;)
coderman: touche! to be fair, it didn't live long either, few months or so iirc.
seti: didn't that code come from OpenBSD in the first place? (not pointing fingers, just concern over possible shared vulnerabilities)
coderman: i think seti just called .*BSD a bunch of sluts
seti: and I mean that in the nicest possible way, of course. share and enjoy
Mutiny: INCESTUOUS
seti: VULLLLLLLLLNERABLE.

ring0 beacon , your wifi is a slutty whore!
posted by coderman at 2006-06-01 21:22

coderman: yes, i will continue to bring this up whenever someone tells me how much more secure freebsd is than linux. because it's never that simple. fuckers. :P~
Mutiny: Translating to english for coderman he means 'handling wifi beacon packets in kernel mode'
coderman: also read as: "a card merely processing beacons (scan mode, etc) can give up an executable kernel land stack with a little opsled penetration"
coderman: bad bsd, never trust arbitrary payloads on unstrusted networks
Mutiny: Then again, completely condemning the security of an entire operating system because of one thing that's not even exploitable is kinda silly.
coderman: not exploitable? lolz
Mutiny: Where's the exploit? And don't say "you could" I want to see "you can."
coderman: GOBBLE GOBBLE, enjoy your security theater. please remain seated until intermission...

http://www.youtube.com/watch?v=w1BNcO4syC8
posted by cryptomail at 2006-06-01 20:22

Zerodhero: That's an expensive scratching post
rik: See also here
rik: See also http://mfrost.typepad.com/cute_overload/2006/04/attention_miss_.html but Toasty's a hedgehog.

http://en.rian.ru/onlinenews/20060530/48833304.html
posted by lemonodor at 2006-06-01 20:10

lemonodor: Iranian drone plane buzzes U.S. aircraft carrier in Persian Gulf
lemonodor: "Our pilotless reconnaissance plane flew over the USS Ronald Reagan in the Persian Gulf unnoticed to the Americans for 25 minutes"

knitting for psychopaths.
posted by rik at 2006-06-01 19:35

http://www.wired.com/news/technology/0,71022-0.html?tw=wn_story_page_prev2
posted by Zerodhero at 2006-06-01 19:26

Zerodhero: "You're not listening," he said. "The NSA is using this stuff. The DEA, the Secret Service, the CIA. Are you kidding me? They don't answer to you. They do whatever the hell they want with it. Are you really that naïve? Now leave these guys alone; they make a product, that's all. It's nothing to them what happens afterward. You really need to educate yourself."

http://www.thesmokinggun.com/archive/0531061oofah1.html?link=rssfeed
posted by Zerodhero at 2006-06-01 19:17

Zerodhero: Would this be worth A Mercedes?? Prolly not.

http://images.ucomics.com/comics/nq/2006/nq060601.gif
posted by Zerodhero at 2006-06-01 18:45

Wired sneaks reporter into snooping equipment vendors' conference. deeply frightening hilarity ensues
posted by seti at 2006-06-01 15:00

seti: uses the word "gobbledygook."
Mutiny: Take the first paragraph of that sentence, replace 'suits' with 'nerds', and you've got a good description of defcon.

Editorial: Nobody home / Santorum tries to cover his tracks on residency
posted by seti at 2006-06-01 14:36

seti: Obligatory Santorum indahouse

Reporters and Parrots
posted by seti at 2006-06-01 12:48

seti: (possible rechump from a week ago or so)

which values of the !DOCTYPE declaration switch on standards-compliant mode
posted by grebblet at 2006-06-01 11:05

grebblet: Microsoft admission: pre-IE6 "versions of Internet Explorer calculate the width and height properties in a way that does not comply with the CSS1 box model."
grebblet: sadly, 6 doesn't either.
grebblet: but it's nice of them to own up about the previous 5 versions
grebblet:
grebblet: goatse.css
fridge: I'm sure it'll all be fixed in Web 3.0
grebblet: Gentle viewer, if things suck, it's because you suck.
grebblet: get a w3c compliant browser.
grebblet: people made standards so that you could have a choice of browser, so damn well support the standards, and choose one that doesn't trash the standard, or the whole internet will look like porridge in all browsers pretty soon.
grebblet: Hmm .. they provide kludge switches. I'm tempted to use one of them, once, to escape CSS altogether for all the non-standards-compliant browser.
grebblet: Oh, you don't like my markup? Well then, here, have some cardboard.
grebblet: TASTY, HUH?!
grebblet: noone ever got fired for writing a standards-compliant browser :p

NJOI
posted by cryptomail at 2006-06-01 06:46

grebblet: "with non-replaceable filter"
    
Run by the Daily Chump bot.