Domain: slashdot.org
Stories and comments across the archive that link to slashdot.org.
Stories · 37,380
-
Supreme Court Declines Jack Thompson Appeal
eldavojohn writes "Jack Thompson was disbarred last year in Florida, putting a halt to annoying lawsuits targeting game makers and the constitutional rights of gamers. Well, he had appealed to the United States Supreme Court (scheduled to be heard last Friday) to get this overturned, but instead they declined to even hear his appeal. They wouldn't even give him the time to review his appeal, so it appears his disbarment for life stands. Florida had declined to file a response to Thompson's appeal, and it turns out they didn't need to. Sad day for Jack Thompson, but a great day for gamers everywhere." This comes shortly after Thompson was frustrated by the vetoing of some legislation he promoted in Utah. -
Google Brings 3D To Web With Open Source Plugin
maxheadroom writes "Google has released an open source browser plugin that provides a JavaScript API for displaying 3D graphics in web content. Google hopes that the project will promote experimentation and help advance a collaborative effort with the Khronos Group and Mozilla to create open standards for 3D on the web. Google's plugin offers its own retained-mode graphics API, called O3D, which takes a different approach from a similar browser plugin created by Mozilla. Google's plugin is cross-platform compatible and works with several browsers. In an interview with Ars Technica, Google product manager Henry Bridge and engineering director Matt Papakipos say that Google's API will eventually converge with Mozilla's as the technology matures. The search giant hopes to bring programs like SketchUp and Google Earth to the browser space." -
RIAA Brief Attacks Free Software Foundation
NewYorkCountryLawyer writes "The RIAA has requested permission to file a response to the amicus curiae brief filed by the Free Software Foundation in SONY BMG Music Entertainment v. Tenenbaum, the Boston case against a Boston University grad student accused of having downloaded some song files when in his teens. In their proposed response, the RIAA lawyers personally attacked The Free Software Foundation, Ray Beckerman (NewYorkCountryLawyer), and NYCL's blog, 'Recording Industry vs. The People.' The 9-page response (PDF) — 4 pages longer than the document to which it was responding — termed the FSF an organization 'dedicated to eliminating restrictions on copying, redistribution, and modifying computer programs,' and accused the FSF of having an 'open and virulent bias against copyrights' and 'blatant bias' against the record companies. They called 'Recording Industry vs. The People' an 'anti-recording industry web site' and stated that NYCL 'is currently subject to a pending sanctions motion for his conduct in representing a defendant' (without disclosing that plaintiffs' lawyers were 'subject to a pending motion for Rule 11 sanctions for their conduct in representing plaintiffs' in that very case)." -
RIAA Brief Attacks Free Software Foundation
NewYorkCountryLawyer writes "The RIAA has requested permission to file a response to the amicus curiae brief filed by the Free Software Foundation in SONY BMG Music Entertainment v. Tenenbaum, the Boston case against a Boston University grad student accused of having downloaded some song files when in his teens. In their proposed response, the RIAA lawyers personally attacked The Free Software Foundation, Ray Beckerman (NewYorkCountryLawyer), and NYCL's blog, 'Recording Industry vs. The People.' The 9-page response (PDF) — 4 pages longer than the document to which it was responding — termed the FSF an organization 'dedicated to eliminating restrictions on copying, redistribution, and modifying computer programs,' and accused the FSF of having an 'open and virulent bias against copyrights' and 'blatant bias' against the record companies. They called 'Recording Industry vs. The People' an 'anti-recording industry web site' and stated that NYCL 'is currently subject to a pending sanctions motion for his conduct in representing a defendant' (without disclosing that plaintiffs' lawyers were 'subject to a pending motion for Rule 11 sanctions for their conduct in representing plaintiffs' in that very case)." -
Hawking Expecting To Make Full Recovery
explosivejared writes "Yesterday we discussed the medical scare that physicist Stephen Hawking was going through. Happily, his website has posted a succinct statement that he is being kept for observation, but he is comfortable and expecting a full recovery." -
Game Retailers Hurting Themselves With Digital Distribution
GameBiz recently had the chance to speak with Brad Wardell, CEO of Stardock, about pricing and distribution within the games industry. Wardell follows up a bit on the Demigod piracy fiasco from a few days ago, and mentions that retail outlets may be on their way out. "Retailers need to be careful about this stuff. They're kind of signing their own death warrants once they push digital distribution at the store. Once you have the thing set up — once you've experienced how to purchase the game or deal with it online — why would I go back to the store for the next purchase? Especially if the store isn't providing added value. If you're a retailer, you're killing yourself. If I can't get a game off Impulse, I'm going to Steam. I like stores, but I'm really lazy." -
Microsoft Asks Open Source Not to Focus On Price
Microsoft's supposed open-source guru Sam Ramji has asked open-source vendors to focus on "value" instead of "cost" with respect to competition with Microsoft products. This is especially funny given the Redmond giant's recent "Apple Tax" message. "While I'm sure Ramji meant well, I'm equally certain that Microsoft would like nothing more than to not be reminded of how expensive its products can be compared with open-source solutions. After all, Microsoft was the company that turned the software industry on its head by introducing lower-cost solutions years ago to undermine the Unix businesses of IBM and Hewlett-Packard, and the database businesses of Oracle and IBM." -
Energy-Beaming Space Collector To Also Alter Weather?
Recently we covered California utility company PG&E's ambitious deal with upstart Solaren to beam energy to earth from a space-based solar collector. What we didn't know is Solaren's patent also covers the alteration of weather elements with that very same system. "By heating up the upper and middle levels of an infant hurricane, they say they could disrupt the flows of air that power the enormous storms. Air warmed by tropical waters flows up through a hurricane and is vented through the eye into the upper atmosphere. Theoretically, you could heat up the top of the storm and lower the pressure differential between layers, resulting in a weaker storm. " -
eReader.com Limits E-book Sales To US Citizens
An anonymous reader writes "eReader.com seems to have begun applying distribution restrictions to its library. I first noticed that there was a FAQ page about distribution restrictions this morning. When I tried to order a few books this afternoon I simply couldn't — a large banner on the order confirmation told me the books had distribution restrictions. I checked a number of titles but it seems a large number of books are no longer available to non-US citizens like me. It is interesting to note that this policy change got implemented shortly after Barnes&Noble purchased Fictionwise. I have no idea if the new owners are behind this new policy but it seems crazy to restrict sales of ebooks. I've bought dozens of ebooks from eReader the past 4 years. I still have 15 dollar store credit but cannot buy any of the books I am interested in." (Right now, the link that should display these new geographic restrictions returns an error message that says the page is being updated.) Sounds like Barnes & Noble is taking its cues from Apple. -
$74k Judgment Against Craigslist Prankster
jamie points out an update in the case of Jason Fortuny, the Craigslist prankster who was sued last year for publicly posting responses to a fake personal ad. The Citizen Media Law Project's summary of his case now includes a recently entered default judgment (PDF), fining Fortuny "... in the amount of $35,001.00 in statutory damages for Count I, violation of the Copyright Act; $5,000 in compensatory damages for Count II, Public Disclosure of Private Facts, and Count III, Intrusion Upon Seclusion." He has also been ordered to pay more than $34,000 in attorney and court fees. -
$74k Judgment Against Craigslist Prankster
jamie points out an update in the case of Jason Fortuny, the Craigslist prankster who was sued last year for publicly posting responses to a fake personal ad. The Citizen Media Law Project's summary of his case now includes a recently entered default judgment (PDF), fining Fortuny "... in the amount of $35,001.00 in statutory damages for Count I, violation of the Copyright Act; $5,000 in compensatory damages for Count II, Public Disclosure of Private Facts, and Count III, Intrusion Upon Seclusion." He has also been ordered to pay more than $34,000 in attorney and court fees. -
Ubisoft To Shut Down Shadowbane
tyen writes "Ubisoft has announced the shutdown of Shadowbane, the first major, fantasy role-playing MMO with true PVP (full asset destruction possible). The shutdown will take place in about two weeks, at the start of May. No official reason has been given by Ubisoft, but running an MMO for free for the past three years, with no significant improvement in market growth during that period, could play a part in the decision. There's been no response from Ubisoft yet on calls to open source the code. " -
How Piracy Affected the Launch of Demigod
Demigod is an RTS/RPG hybrid developed by Gas Powered Games and published by Stardock, a company notable for their progressive and lenient stance on DRM. The game was set to be released on April 14th, and shipped without any form of copy protection. Unfortunately, retailer Gamestop broke the street date and released it earlier in the week. A day after pointing this out, Gas Powered Games posted some numbers about the players hitting their servers. Roughly 18,000 connections were made from legitimately purchased copies; over 100,000 were made from pirated copies. Meanwhile, the servers, which were not yet ready for that level of traffic, buckled under the strain, resulting in poor experiences for people trying to participate in multiplayer. While some reviews were positive, others criticized the game for the connectivity issues. After another day, they were able to stabilize the servers to the point they'd planned on for the original launch. -
Lobby Groups Launch Full Assault For Canadian DMCA
An anonymous reader writes "Bill C-61, the previous attempt at a Canadian DMCA, may have failed, but it is clear that the music, movie, and business software industries are engaged in putting massive pressure on the Canadian government to bring it back. Lobbying records show several meetings each week with Government Ministers for CRIA, CMPDA, and Microsoft over the past month. Meanwhile, the CRIA is preparing a grassroots campaign in support of new copyright laws, even claiming that the current rules are costing jobs to truck drivers delivering CDs and DVDs." -
Antitrust Regulators To Monitor Windows 7, But Not Later Releases
CWmike writes "Gregg Keizer reports that federal and state regulators have struck a deal with Microsoft under which any version of Windows released after May 2011 will not be subject to the scrutiny mandated by a 2002 antitrust settlement. As previously promised, however, Windows 7 will be put under the microscope. Yesterday, the DOJ filed documents (PDF) with US District Court Judge Colleen Kollar-Kotelly asking that she extend her oversight by at least 18 months, until May 12, 2011. Although Microsoft has consented to the extension — and acknowledged that the regulators can later ask for another 18 months — Kollar-Kotelly must approve the request." -
Predator C Avenger Makes First Flights
stoolpigeon writes "General Atomics' new unmanned combat aerial vehicle, the Predator C Avenger, has been making test flights. This new Predator has a stealthy design, 20-hour endurance, is jet powered and has an internal weapons bay. A number of photos have just become available. 'The aircraft was designed so the wings can be folded for storage in hangars or aircraft carrier operations if a naval customer is found. Cassidy, a retired admiral, has talked about a possible Navy role for Predator C since 2002. The Navy was interested in the Predator B's capabilities, but didn't want to introduce any new propeller-driven aircraft onto carrier decks. The UAV also comes with a tailhook, suggesting that carrier-related trials are planned. The inner section of the cranked wing is deep, providing structural strength for carrier landings and generous fuel volume while maintaining a dry, folding outer wing. Right now, the US Air Force and Royal Air Force are considered the most likely users.'" -
Swedish Pirate Party Gains 3000 Members In 7 Hours
An anonymous reader writes "Due to outrage over the verdict in The Pirate Bay trial, the Swedish Pirate Party has gained 3000 members in less than 7 hours. It is now bigger than 3 of the 7 parties represented in the Swedish parliament. 'Ruling means that our political work must now be stepped up. We want to ensure that the Pirate Bay activities — to link people and information — is clearly lawful. And we want to do it for all people in Sweden, Europe and the world, continues Rick Falk Vinge. We want it to be open for ordinary people to disseminate and receive information without fear of imprisonment or astronomical damages.'" -
New Nokia Smartphones Leak E-mail Passwords
Noksu writes "Despite of the recent plunge in Nokia's profits, the company is doing well in the surveillance business. The infamous 'Lex Nokia' got ratified in Finland and the company has launched a massive Nokoscope research project for data gathering. In the meantime Nokia's new smartphones forward e-mail account credentials to a remote server. Surprisingly enough, this is done in HTTP request headers. The company has been informed, but there has not been an official statement yet. Time for class action suit in the US?" -
F5 Fires Back On Open Source SSL Accelerator
Random Feature writes "In response to Build an Open Source SSL Accelerator, in which o3 magazine detailed how to build a solution comparable to an F5 BIG-IP 6900 on the cheap, F5 Fires Back claiming it's not as cheap as it appears and pointing out the potential performance implications of a 'cobbled together set of components designed to mimic similar functionality.' The discussion on the performance of the Open Source solution based on Opteron RSA operation processing capabilities brings into question the validity of the 'more SSL TPS for cheaper' argument presented by o3." -
Appeals Court Says RIAA Hearing Can't Be Streamed
NewYorkCountryLawyer writes "The US Court of Appeals for the First Circuit has overturned a lower court order permitting webcast of an oral argument in an RIAA case, SONY BMG Music Entertainment v. Tenenbaum, in Boston. As one commentator put it, the decision gives the RIAA permission to 'cower behind the same legal system they're using to pillory innocent people.' Ironically, the appeals court's own hearing had been webcast, via an mp3 file. The court admitted that this was not an appropriate case for a 'prerogative writ' of 'mandamus,' but claimed to have authority to issue a writ of 'advisory mandamus.' The opinion came as a bit of a surprise to me because the judges appeared, during the oral argument, to have a handle on the issues. The decision gave me no such impression. From where I sit, the decision was wrong in a number of respects, among them: (a) it contradicted the plain wording of the district court rule, (b) it ignored the First Amendment implications, and (c) there is no such thing as 'advisory' mandamus or 'advisory' anything — our federal courts are specifically precluded from giving advisory opinions." -
Appeals Court Says RIAA Hearing Can't Be Streamed
NewYorkCountryLawyer writes "The US Court of Appeals for the First Circuit has overturned a lower court order permitting webcast of an oral argument in an RIAA case, SONY BMG Music Entertainment v. Tenenbaum, in Boston. As one commentator put it, the decision gives the RIAA permission to 'cower behind the same legal system they're using to pillory innocent people.' Ironically, the appeals court's own hearing had been webcast, via an mp3 file. The court admitted that this was not an appropriate case for a 'prerogative writ' of 'mandamus,' but claimed to have authority to issue a writ of 'advisory mandamus.' The opinion came as a bit of a surprise to me because the judges appeared, during the oral argument, to have a handle on the issues. The decision gave me no such impression. From where I sit, the decision was wrong in a number of respects, among them: (a) it contradicted the plain wording of the district court rule, (b) it ignored the First Amendment implications, and (c) there is no such thing as 'advisory' mandamus or 'advisory' anything — our federal courts are specifically precluded from giving advisory opinions." -
The Long-Term Impact of Jacobsen v. Katzer
snydeq writes "Lawyer Jonathan Moskin has called into question the long-term impact last year's Java Model Railroad Interface court ruling will have on open source adoption among corporate entities. For many, the case in question, Jacobsen v. Katzer, has represented a boon for open source, laying down a legal foundation for the protection of open source developers. But as Moskin sees it, the ruling 'enables a set of potentially onerous monetary remedies for failures to comply with even modest license terms, and it subjects a potentially larger community of intellectual property users to liability.' In other words, in Moskin's eyes, Jacobsen v. Katzer could make firms wary of using open source software because they fear that someone in the food chain has violated a copyright, thus exposing them to lawsuit. It should be noted that Moskin's firm has represented Microsoft in anti-trust litigation before the European Union." -
Why IT Won't Power Down PCs
snydeq writes "Internal politics and poor leadership on sustainable IT strategies are among the top reasons preventing organizations from practicing proper PC power management — to the tune of $2.8 billion wasted per year powering unused PCs. According to a recent survey, 42 percent of IT shops do not manage PC energy consumption simply because no one in the organization has been made responsible for doing so — this despite greater awareness of IT power-saving myths, and PC power myths in particular. Worse, 22 percent of IT admins surveyed said that savings from PC power management 'flow to another department's budget.' In other words, resources spent by IT vs. the permanent energy crisis appear to result in little payback for IT." -
Why IT Won't Power Down PCs
snydeq writes "Internal politics and poor leadership on sustainable IT strategies are among the top reasons preventing organizations from practicing proper PC power management — to the tune of $2.8 billion wasted per year powering unused PCs. According to a recent survey, 42 percent of IT shops do not manage PC energy consumption simply because no one in the organization has been made responsible for doing so — this despite greater awareness of IT power-saving myths, and PC power myths in particular. Worse, 22 percent of IT admins surveyed said that savings from PC power management 'flow to another department's budget.' In other words, resources spent by IT vs. the permanent energy crisis appear to result in little payback for IT." -
Why IT Won't Power Down PCs
snydeq writes "Internal politics and poor leadership on sustainable IT strategies are among the top reasons preventing organizations from practicing proper PC power management — to the tune of $2.8 billion wasted per year powering unused PCs. According to a recent survey, 42 percent of IT shops do not manage PC energy consumption simply because no one in the organization has been made responsible for doing so — this despite greater awareness of IT power-saving myths, and PC power myths in particular. Worse, 22 percent of IT admins surveyed said that savings from PC power management 'flow to another department's budget.' In other words, resources spent by IT vs. the permanent energy crisis appear to result in little payback for IT." -
Why IT Won't Power Down PCs
snydeq writes "Internal politics and poor leadership on sustainable IT strategies are among the top reasons preventing organizations from practicing proper PC power management — to the tune of $2.8 billion wasted per year powering unused PCs. According to a recent survey, 42 percent of IT shops do not manage PC energy consumption simply because no one in the organization has been made responsible for doing so — this despite greater awareness of IT power-saving myths, and PC power myths in particular. Worse, 22 percent of IT admins surveyed said that savings from PC power management 'flow to another department's budget.' In other words, resources spent by IT vs. the permanent energy crisis appear to result in little payback for IT." -
"Apple Tax" Report Backfires On Microsoft
Ian Lamont writes "A Microsoft-sponsored report that describes a hidden "Apple tax" has fallen flat among the technology press. Roger Kay's report (PDF) compares various PC and Mac configurations, and claims an all-Apple household's costs would add up to an extra $3,367 over five years. Tech columnists and bloggers have slammed the comparisons and claims made in the report — even Mac-baiter John C. Dvorak calls it propaganda. However, some Mac fans still see a pro-Microsoft press conspiracy. Even if the comparisons are questionable, Kay's report and the accompanying television ads have clearly struck a nerve among the Mac faithful." Meanwhile, Linux users everywhere are scratching their heads. -
Human Ear Could Be Next Biometric System
narramissic writes "A team of researchers at the University of Southampton, UK, has received funding from the UK's Engineering and Physical Sciences Research Council to learn whether otoacoustic emissions (OAE), the ear-generated sounds that emanate from within the spiral-shaped cochlea in the inner ear, can be used as a viable biometric technology like fingerprints and IRIS recognition. According to a report in New Scientist, someday instead of asking for passwords or pin numbers, a call center or bank would simply use a device on their telephone to produce a brief series of clicks in the recipient's ear to confirm the person is who they say they are." Try faking that with gummy bears. -
The Rootkit Arsenal
Nicola Hahn writes "One of the first things I noticed while flipping through this hefty book is the sheer number of topics covered. Perhaps this is a necessity. As the author puts it, rootkits lie "at the intersection of several related disciplines: computer security, forensics, reverse-engineering, system internals, and device drivers." Upon closer inspection, it becomes clear that great pains have been taken to cover each subject in sufficient depth and to present ideas in a manner that's both articulate and well organized. This accounts for the book's girth; it weighs in at roughly 900 pages." Keep reading for the rest of Nicola's review. The Rootkit Arsenal author Reverend Bill Blunden pages 916 publisher Wordware Publishing rating 5 Shuriken reviewer Nicola Hahn ISBN 1598220616 summary A solid treatment of rootkits and anti-forensics This book is comprehensive enough to appeal to both novices and journeymen. To set the stage, the Rootkit Arsenal begins with a review of foundation material: the IA-32 execution environment, memory management, kernel-mode subtleties, call hooking, detour patching, and so forth. Yet, while the author devotes a significant amount of effort to explaining prerequisites and customary rootkit techniques, there's an abundance of more sophisticated content to engage more experienced members of the audience. For example, his explanation of how to use the WSK API and the most recent incarnation of the NDIS library (version 6.0) to construct covert channels over DNS is worth a read. I also appreciated his meticulous discussion of how to properly install Call Gates and handle the foibles of multi-processor systems.
One of the book's strong points is that there's coverage of issues which traditionally haven't appeared in books on this subject. For instance, there are several sections devoted to the Windows startup process and how it relates to the operation of bootkits. Part 3 of the book, which consists of four chapters, focuses on anti-forensics, with an emphasis on defeating file system analysis and the examination of an unknown executable. To this end, Reverend Bill ventures off into the tactics used to implement binary armoring, FISTing, obfuscation, code morphing, file scrubbing, and data contraception.
Not content to merely explain the basic mechanics of a particular scheme, Reverend Bill often illustrates how he derived his results and encourages the reader to verify what they've seen with a kernel debugger. This is a recurring theme throughout the book. Rather than just teach the reader a collection of tricks, the author demonstrates how the reader can identify new ones independently. After all, specific holes come and go, but the art of finding new ones will always have utility. This more than justifies the lengthy discussion of kernel debugging earlier on in the book.
All told, the book is reasonably self-contained. The source code examples are clean, instructive, and have been included in the book's appendix. As Reverend Blunden notes, the "Rootkit Arsenal" isn't about a specific rootkit that someone wrote (though such books exist). It's really about the rootkit that the reader will construct, such that the focus is on the nature of the tactics rather than a proof-of-concept rootkit. In this spirit, examples are long enough to illuminate potential sticking points but not so long that the reader feels like they're wading through mud in search of diamonds.
The author also exhibits good form in terms of giving credit where it's due. In the book's preface he specifically acknowledges a number of researchers who have made lasting contributions to the collective repository of knowledge (Mark Ludwig, Greg Hoglund, the grugq, Sven Schreiber, Joanna Rutkowska, Richard Bejtlich, etc.). While the author admits that many of the book's ideas can be unearthed by skulking about obscure regions of the internet, the real service that this book provides is to consolidate all of this disparate information together into one place, offering working implementations of each concept, and doing so in a remarkably lucid manner.
Yet, is this a responsible thing to do? Is it wise to show aspiring Black Hats how to manipulate forensic evidence so that they can implicate innocent people? Will publicizing the finer points of system modification make life easier for aspiring bad guys? Is he basically handing the reader a loaded gun and teaching them the nuances of a kill shot?
To a degree, Reverend Blunden sidesteps this issue as irrelevant. In the end he claims that he's just a broker of information, and that he doesn't care who uses the information or how they use it. If you asked me, this is a bit of a cop out (he sounds a little like an arms dealer). Furthermore, he accuses other authors (the ones who fall back on the traditional argument that they're bolstering security by encouraging vendors to improve their products) of churching up their books in "ethical window dressing." In the eyes of Reverend Bill, this book is what it is ...without apology: another source of useful data.
If I had one complaint about the Rootkit Arsenal, it's that the author sticks primarily to software-based rootkit technology. For instance, he eschews BIOS-based tools. At one point the author states:
"In my opinion, a firmware-based rootkit is essentially a one-shot deal that should only be used in the event of a high-value target where the potential return would justify the R&D required to build it. Also, because of the instance-specific nature of this technique, I'd be hard pressed to offer a single recipe that would a useful to the majority of the reading audience. Though a firmware-related discussion may add a bit of novelty and mystique, in the greater scheme of things it makes much more sense to focus on methods which are transferable from one motherboard to the next."
Last but not least, the author's tendency towards the political arena, which defined a couple of his previous books, rears its head again in The Rootkit Arsenal's final chapter. Here, the good Reverend suggests that if it's possible to control a sprawling operating system like Windows with a relatively small rootkit binary, then perhaps the metaphor carries over into the body politic of the United States. Could a small segment of the population be quietly influencing the trajectory that society takes? Dave Emory and Noam Chomsky look out!
Readers interested in getting a closer look at the book's organization and table to contents can visit the author's web site.
You can purchase The Rootkit Arsenal from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
The Rootkit Arsenal
Nicola Hahn writes "One of the first things I noticed while flipping through this hefty book is the sheer number of topics covered. Perhaps this is a necessity. As the author puts it, rootkits lie "at the intersection of several related disciplines: computer security, forensics, reverse-engineering, system internals, and device drivers." Upon closer inspection, it becomes clear that great pains have been taken to cover each subject in sufficient depth and to present ideas in a manner that's both articulate and well organized. This accounts for the book's girth; it weighs in at roughly 900 pages." Keep reading for the rest of Nicola's review. The Rootkit Arsenal author Reverend Bill Blunden pages 916 publisher Wordware Publishing rating 5 Shuriken reviewer Nicola Hahn ISBN 1598220616 summary A solid treatment of rootkits and anti-forensics This book is comprehensive enough to appeal to both novices and journeymen. To set the stage, the Rootkit Arsenal begins with a review of foundation material: the IA-32 execution environment, memory management, kernel-mode subtleties, call hooking, detour patching, and so forth. Yet, while the author devotes a significant amount of effort to explaining prerequisites and customary rootkit techniques, there's an abundance of more sophisticated content to engage more experienced members of the audience. For example, his explanation of how to use the WSK API and the most recent incarnation of the NDIS library (version 6.0) to construct covert channels over DNS is worth a read. I also appreciated his meticulous discussion of how to properly install Call Gates and handle the foibles of multi-processor systems.
One of the book's strong points is that there's coverage of issues which traditionally haven't appeared in books on this subject. For instance, there are several sections devoted to the Windows startup process and how it relates to the operation of bootkits. Part 3 of the book, which consists of four chapters, focuses on anti-forensics, with an emphasis on defeating file system analysis and the examination of an unknown executable. To this end, Reverend Bill ventures off into the tactics used to implement binary armoring, FISTing, obfuscation, code morphing, file scrubbing, and data contraception.
Not content to merely explain the basic mechanics of a particular scheme, Reverend Bill often illustrates how he derived his results and encourages the reader to verify what they've seen with a kernel debugger. This is a recurring theme throughout the book. Rather than just teach the reader a collection of tricks, the author demonstrates how the reader can identify new ones independently. After all, specific holes come and go, but the art of finding new ones will always have utility. This more than justifies the lengthy discussion of kernel debugging earlier on in the book.
All told, the book is reasonably self-contained. The source code examples are clean, instructive, and have been included in the book's appendix. As Reverend Blunden notes, the "Rootkit Arsenal" isn't about a specific rootkit that someone wrote (though such books exist). It's really about the rootkit that the reader will construct, such that the focus is on the nature of the tactics rather than a proof-of-concept rootkit. In this spirit, examples are long enough to illuminate potential sticking points but not so long that the reader feels like they're wading through mud in search of diamonds.
The author also exhibits good form in terms of giving credit where it's due. In the book's preface he specifically acknowledges a number of researchers who have made lasting contributions to the collective repository of knowledge (Mark Ludwig, Greg Hoglund, the grugq, Sven Schreiber, Joanna Rutkowska, Richard Bejtlich, etc.). While the author admits that many of the book's ideas can be unearthed by skulking about obscure regions of the internet, the real service that this book provides is to consolidate all of this disparate information together into one place, offering working implementations of each concept, and doing so in a remarkably lucid manner.
Yet, is this a responsible thing to do? Is it wise to show aspiring Black Hats how to manipulate forensic evidence so that they can implicate innocent people? Will publicizing the finer points of system modification make life easier for aspiring bad guys? Is he basically handing the reader a loaded gun and teaching them the nuances of a kill shot?
To a degree, Reverend Blunden sidesteps this issue as irrelevant. In the end he claims that he's just a broker of information, and that he doesn't care who uses the information or how they use it. If you asked me, this is a bit of a cop out (he sounds a little like an arms dealer). Furthermore, he accuses other authors (the ones who fall back on the traditional argument that they're bolstering security by encouraging vendors to improve their products) of churching up their books in "ethical window dressing." In the eyes of Reverend Bill, this book is what it is ...without apology: another source of useful data.
If I had one complaint about the Rootkit Arsenal, it's that the author sticks primarily to software-based rootkit technology. For instance, he eschews BIOS-based tools. At one point the author states:
"In my opinion, a firmware-based rootkit is essentially a one-shot deal that should only be used in the event of a high-value target where the potential return would justify the R&D required to build it. Also, because of the instance-specific nature of this technique, I'd be hard pressed to offer a single recipe that would a useful to the majority of the reading audience. Though a firmware-related discussion may add a bit of novelty and mystique, in the greater scheme of things it makes much more sense to focus on methods which are transferable from one motherboard to the next."
Last but not least, the author's tendency towards the political arena, which defined a couple of his previous books, rears its head again in The Rootkit Arsenal's final chapter. Here, the good Reverend suggests that if it's possible to control a sprawling operating system like Windows with a relatively small rootkit binary, then perhaps the metaphor carries over into the body politic of the United States. Could a small segment of the population be quietly influencing the trajectory that society takes? Dave Emory and Noam Chomsky look out!
Readers interested in getting a closer look at the book's organization and table to contents can visit the author's web site.
You can purchase The Rootkit Arsenal from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
First Look at Microsoft Exchange Server 2010 Beta
snydeq writes "InfoWorld's Martin Heller takes a first look at Microsoft's Exchange Server 2010 Beta, noting several usability, reliability, and compliance improvements over Exchange 2007. Top among Exchange 2010's new features are OWA support for Firefox 3 and Safari 3; improved storage reliability; conversation views; mail federation between trusted companies; and MailTips, a sort of Google Mail Goggles for the corporate environment. 'Database availability groups give you redundant mail stores with continuous replication; database-level failover gives you automatic recovery. I/O optimizations make Exchange less "bursty" and better suited to desktop-class SATA drives; JBOD support lets you concatenate disks rather than stripe them into a redundant array.' Exchange 2010 will, however, require shops to upgrade to Windows Server 2008, as support for Windows Server 2003 has been dropped. Microsoft will release technical previews of other products in the suite, including Office 2010, SharePoint Server 2010, Visio 2010, and Project 2010, in the third calendar quarter." -
Jack Thompson Spams Utah Senate, May Face Legal Action
eldavojohn writes "Yesterday, GamePolitics ran an interesting story about the Utah Senate President threatening Jack Thompson with the CAN-SPAM Act. You might recall Utah being Jack's last hope and hold-out after being disbarred in Florida and more or less made a mockery everywhere else. Well, from Utah's Senate Site, we get the picture of what Jack is up to now: spamming his last friends on the planet. The Salt Lake Tribune is reporting on Senate President Michael Waddoups' statements: 'I asked you before to remove me from your mailing list. I supported your bill but because of the harassment will not again. If I am not removed, I will turn you over to the AG for legal action.' The Salt Lake Tribune reports that Waddoups confirmed on Tuesday that he would attempt to pursue legal action under the federal CAN-SPAM Act of 2003 against Jack Thompson." -
Amazon To Block Phorm Scans
clickclickdrone writes "The BBC are reporting that Amazon has said it will not allow online advertising system Phorm to scan its web pages to produce targeted ads. For most people this is a welcome step, especially after the European Commission said it was starting legal action against the UK earlier this week over its data protection laws in relation to Phorm's technology. Anyone who values their privacy should applaud this move by Amazon." -
NASA Names Space Station Treadmill After Colbert
willith writes "The SF Chronicle reports on the results of the International Space Station Node 3 naming contest (which we previously discussed). Comedian and fake-pundit Stephen Colbert conducted a bombastic write-in campaign and repeatedly urged his show's fan base (the 'Colbert Nation') to stuff the ballot box with his name, which resulted in 'Colbert' coming in first in the write-in contest with almost a quarter-million votes. Although the Node 3 component will not be named 'Colbert' — NASA has instead chosen to call it 'Tranquility' — one of the Node 3 components will bear the honor: the second ISS treadmill, which will be installed in Node 3, will be named the Combined Operational Load Bearing External Resistance Treadmill. The formal announcement was made on the air yesterday at 22:30 EDT on the Colbert Report by astronaut Sunita Williams." -
Microsoft Extends Xbox 360 Warranty To E74 Errors
Last month we discussed reports that Xbox 360 consoles were experiencing an increased number of "E74" errors. Now, Microsoft has announced that they're extending the three-year warranty originally designated for "general hardware failures" (read: Red Ring of Death) to include E74 repairs as well. From the support page post: "... we are aware that a very small percentage of our customers have reported receiving an error that displays 'E74' on their screen. After investigating the issue, we have determined that the E74 error message can indicate the general hardware failure that is associated with three flashing red lights error on the console. ... Microsoft will refund to customers the amount paid for an out of warranty repair due to a general hardware failure associated with the E74 error message." -
Work Progresses On 10,000 Year Clock
KindMind writes "CNet has pictures of a planned 10,000 year clock to be built in eastern Nevada by the Long Now Foundation. From the article: 'Running under its own power, the clock is an experiment in art, science, and engineering. The six dials on the face of this machine will represent the year, century, horizons, sun position, lunar phase, and the stars of the night sky over a 10,000-year period. Likely to span multiple generations and evolutions in culture, the thinking and design put into the monument makes it a moving sculpture as beautiful as it is complex.' This was reviewed on Slashdot in 2005. Really cool pictures, including one of a mechanical 'binary computer' that converts the pendulum into positions on the dial." -
Work Progresses On 10,000 Year Clock
KindMind writes "CNet has pictures of a planned 10,000 year clock to be built in eastern Nevada by the Long Now Foundation. From the article: 'Running under its own power, the clock is an experiment in art, science, and engineering. The six dials on the face of this machine will represent the year, century, horizons, sun position, lunar phase, and the stars of the night sky over a 10,000-year period. Likely to span multiple generations and evolutions in culture, the thinking and design put into the monument makes it a moving sculpture as beautiful as it is complex.' This was reviewed on Slashdot in 2005. Really cool pictures, including one of a mechanical 'binary computer' that converts the pendulum into positions on the dial." -
German Wikileaks Suspension Not Related To Police Raid
An anonymous reader writes "Contrary to what we discussed four days ago, Germany's registration authority, DeNIC, did not suspend access to wikileaks.de. After some investigation, Heise found out that the ISP ended the contract (in German, Babelfish translation) with Theodor Reppe back in December 2008, with the mandatory three-month notice giving him enough time to move wikileaks.de elsewhere — which he did not do. At the end of March, the domain wikileaks.de was released back to DeNIC." -
Intel Responds To X25-M Fragmentation Issue
Vigile writes "In mid-February, news broke about a potential issue with Intel's X25-M mainstream solid state drives involving fragmentation and performance slow-downs. At that time, after having the news picked up by everyone from CNet to the Wall Street Journal, Intel stated that it had not seen any of these issues but was working with the source to replicate the problem and find a fix if at all possible. Today Intel has essentially admitted to the problem by releasing a new firmware for the X25-M line that not only fixes the flaws found in the drive initially, but also increases write performance across the board." -
iTunes Prohibits Terrorism
Afforess writes "A recent closer look at the oft-skimmed EULA agreement for iTunes has an interesting paragraph in it, Gizmodo reports. 'You also agree that you will not use these products for any purposes prohibited by United States law, including, without limitation, the development, design, manufacture or production of missiles, or nuclear, chemical or biological weapons.' Although humorous, some readers suggested that this may be a defense measure to previously discussed price changes in the iTunes music store." -
Wikipedia Community Vote On License Migration
mlinksva writes "A Wikipedia community vote is now underway on migrating to Creative Commons Attribution-ShareAlike as the main content license for Wikimedia Foundation projects. This would remove a legal barrier to reusing Wikipedia content (now under the Free Documentation License, intended for narrow use with software documentation, because Wikipedia started before CC existed) in other free culture projects and vice versa." -
iPhone Jailbreaking Still Going Strong
snydeq writes "Despite the productivity promises of Apple's forthcoming 3.0 firmware update, jailbreaking should continue to push the iPhone's productivity envelope, as users increasingly demand the Holy Grail of smartphone power use: applications that run in the background, InfoWorld reports. Copy and paste, video recording and streaming, Internet tethering, and content search are just a few of the features over which iPhone users have sought to jailbreak their devices — a practice Apple itself has done little to crack down on. Jailbreak apps circumvent hardware and software restrictions that Apple says ensure a consistent, responsive user interface and optimal battery endurance. In particular, jailbroken phones can run apps in the background, a capability Apple reserves for its own apps but prohibits in third-party programs. Jay Freeman, creator of the Cydia iPhone installer and Cydia Store, however, believes a free-market approach is the best way to satisfy power users' demands for features without compromising the performance of their iPhones. And given Apple's App Store overcrowding, it seems likely that jailbroken phones and app venues like Cydia Store will continue to be popular with iPhone customers and developers, even after the 3.0 firmware ships." -
iPhone Jailbreaking Still Going Strong
snydeq writes "Despite the productivity promises of Apple's forthcoming 3.0 firmware update, jailbreaking should continue to push the iPhone's productivity envelope, as users increasingly demand the Holy Grail of smartphone power use: applications that run in the background, InfoWorld reports. Copy and paste, video recording and streaming, Internet tethering, and content search are just a few of the features over which iPhone users have sought to jailbreak their devices — a practice Apple itself has done little to crack down on. Jailbreak apps circumvent hardware and software restrictions that Apple says ensure a consistent, responsive user interface and optimal battery endurance. In particular, jailbroken phones can run apps in the background, a capability Apple reserves for its own apps but prohibits in third-party programs. Jay Freeman, creator of the Cydia iPhone installer and Cydia Store, however, believes a free-market approach is the best way to satisfy power users' demands for features without compromising the performance of their iPhones. And given Apple's App Store overcrowding, it seems likely that jailbroken phones and app venues like Cydia Store will continue to be popular with iPhone customers and developers, even after the 3.0 firmware ships." -
The Low-Intensity, Brute-Force Zombies Are Back
Peter N. M. Hansteen writes "In real life, zombies feed off both weak minds and the weak passwords they choose. When the distributed brute-force attempts stopped abruptly after a couple of months of futile pounding on ssh servers, most of us thought they had seen sense and given up. Now, it seems that they have not; they are back. 'This can only mean that there were enough successful attempts at guessing people's weak passwords in the last round that our unknown perpetrators found it worthwhile to start another round. For all I know they may have been at it all along, probing other parts of the Internet ...' The article has some analysis and links to fresh log data." -
The Low-Intensity, Brute-Force Zombies Are Back
Peter N. M. Hansteen writes "In real life, zombies feed off both weak minds and the weak passwords they choose. When the distributed brute-force attempts stopped abruptly after a couple of months of futile pounding on ssh servers, most of us thought they had seen sense and given up. Now, it seems that they have not; they are back. 'This can only mean that there were enough successful attempts at guessing people's weak passwords in the last round that our unknown perpetrators found it worthwhile to start another round. For all I know they may have been at it all along, probing other parts of the Internet ...' The article has some analysis and links to fresh log data." -
Time Warner Transfer Caps May Inspire Fair-Price Legislation
Time Warner's recently announced plan to expand their broadband transfer caps to new markets drew heavy criticism, which prompted their attempt to smooth things over with a ridiculously expensive "unlimited" plan. That wasn't enough for New York Representative Eric Massa, who now says he will draft legislation to "curb tiers, particularly in areas where a broadband provider owns a monopoly on service." Massa said, "Time Warner believes they can do this in Rochester, NY; Greensboro, NC; and Austin and San Antonio, Texas, and it's almost certainly just a matter of time before they attempt to overcharge all of their customers," adding, "I believe safeguards must be put in place when a business has a monopoly on a specific region." -
Time Warner Transfer Caps May Inspire Fair-Price Legislation
Time Warner's recently announced plan to expand their broadband transfer caps to new markets drew heavy criticism, which prompted their attempt to smooth things over with a ridiculously expensive "unlimited" plan. That wasn't enough for New York Representative Eric Massa, who now says he will draft legislation to "curb tiers, particularly in areas where a broadband provider owns a monopoly on service." Massa said, "Time Warner believes they can do this in Rochester, NY; Greensboro, NC; and Austin and San Antonio, Texas, and it's almost certainly just a matter of time before they attempt to overcharge all of their customers," adding, "I believe safeguards must be put in place when a business has a monopoly on a specific region." -
Iraq Game Sparks Outrage, Soldiers Have Mixed Reactions
We recently discussed news that Konami will be releasing a video game based on a 2004 battle in Fallujah. Many people have now had a chance to react to the game, and there has been a great deal of criticism voiced over the game's choice of setting. A group of families of soldiers who lost their lives in the war questioned "how anyone can trivialize a war that continues to kill and maim members of the military and Iraqi civilians to this day." Others criticized the game's glorification of the "massacre." Conversely, some soldiers and veterans have responded with optimism, hoping the game can raise awareness of the realities of war. Dan Rosenthal, Iraq veteran and long-time gamer, worries whether Konami will be able to do justice to the experience. Eurogamer posted a related story about the controversy over increasingly realistic war games. -
Sweden Sees Boom In Legal Downloading
Quantos writes with word that in Sweden, in addition to a drop in traffic following the introduction of the IPRED anti-file sharing law, the country also saw a doubling of legal downloads. "The sale of music via the Internet and mobile phones has increased by 100 percent since the Swedish anti-file sharing IPRED law entered into force last week, according to digital content provider InProdicon. '...I don't know if this is only because of IPRED, but it is definitely a sign of a major change,' said managing director Klas Brännström. InProdicon provides half of the downloaded tunes in Sweden via several online and mobile music services." Meanwhile The Pirate Bay's anticipated VPN service has seen over 113,000 requests for beta invitations since late last month; 80% are from Sweden. Traffic numbers may begin to rise again once the service goes live. -
Sweden Sees Boom In Legal Downloading
Quantos writes with word that in Sweden, in addition to a drop in traffic following the introduction of the IPRED anti-file sharing law, the country also saw a doubling of legal downloads. "The sale of music via the Internet and mobile phones has increased by 100 percent since the Swedish anti-file sharing IPRED law entered into force last week, according to digital content provider InProdicon. '...I don't know if this is only because of IPRED, but it is definitely a sign of a major change,' said managing director Klas Brännström. InProdicon provides half of the downloaded tunes in Sweden via several online and mobile music services." Meanwhile The Pirate Bay's anticipated VPN service has seen over 113,000 requests for beta invitations since late last month; 80% are from Sweden. Traffic numbers may begin to rise again once the service goes live.