Slashdot Mirror
Widespread Attacks Exploit Newly-Patched IE Bug
itwbennett writes "The first widespread attack to leverage the Internet Explorer flaw that Microsoft patched in an emergency update Thursday morning has surfaced. By midday Thursday Symantec had spotted hundreds of Web sites that hosted the attack code. The attack installs a Trojan horse program that is able to bypass some security products and then give hackers access to the system, said Joshua Talbot, a security intelligence manager with Symantec. Once it has infected a PC, the Trojan sends a notification e-mail to the attackers, using a US-based, free e-mail service that Symantec declined to name."
Relatedly, reader N!NJA was among several to point out that Microsoft has apparently been aware of this flaw since September.
in TFA: The flaw was in the Microsoft Security Response Center's (MSRC) queue to be fixed in the the next batch of patches due in February but the targeted zero-day attacks against U.S.
Kinda makes you wonder just how many of these critical security bugs IE currently has in their queue to be fixed "sometime in the near future"?
And at the same time you have to wonder just how nasty some of the others are that haven't made the cut yet, just waiting to become the next "zero day we own your computer, again"? We see how big of an issue this is, and MS was clearly in no hurry to fix it, so you'd have to assume that there are at least a few more of these that they know about and aren't fixing yet.
I work for the Department of Redundancy Department.
Microsoft has apparently been aware of this flaw since September.
Further evidence that the only "threat" as far as MS is concerned is the threat of a damaged public perception. Although I suppose that's an improvement in itself.
I am literally 3000 tokens away from the chaotic crossbow --Stephen
This has been covered ad nauseum here. Do we really need an update every 10 hours? A bug was exploited, it is now patched. Anyone who falls victim to it now deserves to do.
No doubt there'll be more stories about this. Was the patch larger than it needed to be? Does the patch break applications (it already breaks ones that exploited! It must break more!). Is Microsoft's failure to patch speedily yet another indication that Obama's administration is failing to meet its promises?
Stay tuned as Slashdot milks this story for another week!
What protocol is used to search the system? sure the attacker can get in but once inside just how much access do they have.
Do they get returned an FTP / HTTP view of the computer folder by folder. Do you get kicked into a telnet terminal / ssh terminal maybe even a NFS terminal.
Correct me if I'm wrong (but I do have a CCNA cert) Why not block the access ports that get opened, unless it's port 80 and then filter the traffic.
Yes it's microsofts problem to roll out a patch and fix the bug but it seems like theres a lot that the user could do before the patch is ready.
It's still the OS that runs my apps and with a little common sense I've never gotten a virus or a malware.
If I had to deal with another OS on my system I wouldn't have a reason to turn it on since it doesn't run my apps. Ignore that fact.
So someone or a project team writes some code. The code is later found to be used as part of an exploit that further harms the reputation of the company. Does anyone ever go back and say "hey, you wrote this crappy code! You're fired!"?
It almost seems there are more vulnerabilities (both patched and unpatched) than there are lines in the Windows source code. I know there will be no end to the finger pointing where developers decry the problem of deadlines while management points to the lack of skilled coders. But seriously, how much of all this can be attributed to poor programming practices? I remember from the earliest days of coding C that there were a few functions that existed that wise programmers should avoid as the use of those functions would immediately make your programs vulnerable. Further, it seems that bounds checking and other data validation needs to go on more often as well. How is it that the top dog in the software game can't keep up with these very simple principles?
And what of public disclosure? Some people try to say that public disclosure is what is responsible for most of the hacking that goes on out there. Meanwhile, this was essentially a -1 day vulnerability that didn't get disclosed until after the damage was done... or was it? Was this yet another of the reported bugs that Microsoft sits on rather than acts on? While following the bugtraq and other mailing lists, I observe that Microsoft tends to ignore or disregard a great many of the bugs reported to it, so I have to wonder.
[...] the Trojan sends a notification e-mail to the attackers, using a US-based, free e-mail service that Symantec declined to name.
Hotmail, perhaps? No?
It is rather telling that the same type of buffer trouble is showing up in other peoples software. I am just wondering if the flood "Gates" are about to open and we will wind up seeing multiple trouble with things like WMP, Silverlight ...there was already the same update happening for RealPlayer
Just maybe there is a system xml call that is easily exploited in all versions of Windows....I can just see it now some lazy MS exec using old legacy system xml that is written using the gets and puts function. I would not put it past Microsoft to use old garbage code without even checking the old source then including the pre-compiled executable
What's unfortunate here is there's still a lot of people out there that don't understand why some security researchers publish security bugs they find. It's issues like this where "We reported this to you FOUR MONTHS AGO and you haven't fixed it yet. We're going public with it tomorrow." Oh noes! Everyone's computer getting owned, it's all your fault, you should keep security bugs QUIET so we have time to fix them!.
I think three months (a quarter) should be sufficient to fix just about any bug. If I ever found a bug, I'd given them at least that long, and then set up a cron/at job to send out the announcement after the ~90 days expired. Of course if they agree to a shorter period all the better. If they act all huffy and refuse to acknowledge it or give a deadline, fuck'em release right away. I think most coders want to do the right thing (unless they're ass hats).
Remember, even in the open-source world, a little time would be helpful to co-ordinate with (say) the security teams of the distributions as well.
But in general at least try to be civilized yourself.
Cough, no, because I am running a Linux system with a variety of browsers (epiphany, galeon, Firefox, Chromium) and I simply do not run MS software (and to read the ongoing saga, lucky me), why does /. even bother to track these items? We know the MS users are brain-dead (they hover under a belief that the software doesn't have bugs or is secure and that will protect them -- how wrong they are.).
I have no misconceptions that Linux based software is any more secure -- but I rest in confidence that epiphany, galeon, Firefox and Chromium are *all* open source -- and if there is a security problem within them I can update and take advantage of it within hours -- not months as Microsoft seems inclined to do.
Using closed source software is akin to laying oneself out on the Washington Mall and saying, hey "rape me". Its not so bad "I'll recover".
For God's sake and all of our digital information, it is time for a revolution.
IE has failed so many times with so many bad consequences it is time to simply outlaw the use of IE.
How many car crashes due to any number of causes before they yank ALL those car models and force the manufacturer to replace the brakes.
Get rid of MS Internet Explorer, once & for ALL. If Microsoft were an honest company they would have stopped IE and started including FireFox a long time ago. At least then, everyone can examine code and offer patches.
What useful firewall are you referring to that isn't implemented in software? Or by "(i.e. not software)" were you referring to anything implemented on an appliance?
http://www.mozilla.org/security/known-vulnerabilities/firefox35.html
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html
Firefox works with user's permissions on current systems - at least Google Chrome and IE are sandboxed.
No, No! Haven't you heard? Even though Linux owns the server market and is used by many big corporations including Google, Windows has almost all of the malware because it is more popular!
Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
But the intertubes will cease to function properly. Are you trying to starve children in Massachussets? Don't you know that lots of out of work website designers need to use a website that works optimally with IE version 6??!!!
Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
http://linux.slashdot.org/comments.pl?sid=1519330&cid=30870690
3 billion dollars in profit a quarter. Just think about that. That is 120k software developers paid 100k a year. That's how many more people they could have fixing any bug you have. It may be unreasonable to ask a public company to not make a profit, but it is quite reasonable, that, even with the mythical man month, they could hire 5k more developers and testers and fix this BS. This was the size of the Windows 2000 team, when I was there that year.
I knew IE 6 was going to be bad though - people from the QA team came to me and asked if managers in other teams tell you to stop entering bugs because it makes the dev team look bad. Seriously. Trident was even worse.
Why is bundling multiple changes/patches better? Seems like if you did it one at a time, if something broke, you would be pretty confident the new code was doing it. With multiple simultaneous changes, if something broke, you would have to sort out *which* of the new changes was responsible first, or also contemplate if the random combination of any of the changes was responsible, which greatly ups the number of potential problems to look at.
... I am currently in a Sauna, who refuse to put anything but Internet Exploder on their PCs....
You forgot to list one: designed from the ground up with insecurity in mind
Oh wait. That's right. Only one of the OSes mentioned meets that criterea.
You have offered no evidence that a Linux machine was compromised. It is impossible to tell based on the fact that SPAM is coming from that direction. A poorly configured mail server allowing SMTP relaying does not constitute a compromised system.
Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
8 days ago I started getting a flood of alerts from my IPS on what a few hours later (when patched with a vendor emergency signature) was positively identified as this exploit on several big name public web sites. It was attempting to infect my users who were browsing them. McAfee seemed to make a big deal about their involvement in uncovering 'Aurora' so were they in fact flagging false positives if this has only hit general sites in the last few days?
Don't worry :)
Jibe!
"Don't worry :) - by Foredecker (161844) * on Saturday January 23, @08:05PM (#30874292) Homepage
Per my subject-line above, & quoting you? Well...
"What, me worry?" - Alfred Neumann
(LOL!)
Sure, ok: I can concede that @ times? Yes, I might have come on a WEE bit strong, but I have been getting trolled here by some real (imo @ least) "ne'er-do-wells", & especially this week...
Like most folks I think, I also don't like seeing it directed others' way either, unless the brought it on themselves, & FIRST.
(Usually, I just read it & decide who I think is correct or not, but sometimes? When the person's pretty cool on top of it & is being attacked?? I cut loose on the attacker (it's doing them a favor in a way IF you think about it)... that's all).
PRACTICAL EXAMPLES THEREOF RECENTLY DIRECTED MY WAY? SURE... see links below
(AND, it goes on ALL the time here w/ these "Pro-*NIX" zealots directed my way, OR anyone's way that speaks their mind about why they think WINDOWS or other products are better than the REAL 'fanboys' here favs are!)
----
Mostly on things where I point out that Windows has some great points vs. *NIX variants for instance -> http://linux.slashdot.org/comments.pl?sid=1519330&threshold=-1&commentsort=0&mode=thread&cid=30853490 OR http://linux.slashdot.org/comments.pl?sid=1519330&threshold=-1&commentsort=0&mode=thread&pid=30859018
OR
Where I felt that Opera was FF's superior -> http://tech.slashdot.org/comments.pl?sid=1519698&threshold=-1&commentsort=0&mode=thread&pid=30851208#30852888
OR
How HOSTS files are actually SUPERIOR to AdBlock -> http://tech.slashdot.org/comments.pl?sid=1512306&threshold=-1&commentsort=0&mode=thread&cid=30782898 (& how they work TOGETHER, for better "layered security" overall actually)...
----
Those points here, as-per-usual, just got me 'attacked by the trolls', as-per-usual... even though I posted VALID points.
Not complaining, because VALID CRITICAL DEBATE IS FUN, and you get stronger via VALID CRITICISMS (1lb. of valid critique > 1,000 lbs. of unjustified praise & all that), but not when it comes down to calling others names & what-not or otherwise attempting to destroy them via lies & b.s.!
(Yes, @ times, it does "get to you" somewhat (like fleas on a dog, an annoyance)).
Now - I don't MIND it when they have valid points OR critiques they put my way, I either get STRONGER for it, or stand corrected, because I can "err" like any human (rarely, lol) & "to err IS human"!
HOWEVER - I don't like name-tossing (& I only really do it, when attacked first, as "OFFENSE IS THE BEST DEFENSE") & I usually put out valid rebuttals vs. their b.s. too, everytime, w/ concrete & verifiable facts USUALLY... what do I see in response then? Well, I call it "geek angst", & usually in the form of "adhominem attacks".
ANYHOW/ANYWAYS:
So, "that all said & aside"?
----
THIS ONE HERE'S FOR ALL YOU TROLLS OUT THERE ON /. & OTHERWISE - It's dedicated to Jay Little & Jeremy Reimer of arstechnica especially (in my best "radio DJ voice", lol):
This man said it better than I EVER COULD on how I feel about those types:
http://publish.uwo.ca/~asuksi/Achi
OK, So how many at Microsoft have access to the IE defect database? Surely there is the risk of an insider selling knowledge of known defects to the hackers. Logged in September, Sold in October, Exploited developed in a few months - sounds reasonable to me.
First off, to open this up from myself in response out of respect:
I read your post, end to end, & lol... Boy - I learned a lesson here too (on a few levels in fact)!
First, I found out what others may feel when they read mine when I write long posts.
Secondly, I learned that you know a hell of a lot about how this "art & science" really works, more than I figured you did actually (my bad), & how it can be... empathy psych 101 manipulation? No. This is REAL & GENUINE coming from me this a.m. in fact, because I read your post end to end. I have a few things to say in response, but not without opening up this way here too, first.
I also NOW know that you also have to deal in dealing with people too, hardest job there is (so many shades of grey & points of view... say it wrong, unintentionally? You can create enemies TOO easily, not even trying etc.) & in a large corporate body (ontop of replies here too on your part)
Which that? Hey - You do NOT have to do @ all... & sometimes? It is work isn't it??
Especially when faced with unjustified attacks from those who may not realize that this field is one of INCREDIBLE DETAIL + COMPLEXITY (& especially on larger systems)
Larger systems... hmmm, to me? That's 1 million lines & up, & last I KNEW? Windows 2000 alone TOPPED 40 million++ lines of code! Talk about "room for errors" & complexity compounding it.
Personally? Heh, I am AMAZED ALL THIS STUFF WE HAVE TO USE, ACTUALLY WORKS & AS WELL AS IT DOES - it's a real "testament" to the ingenuity of mankind... So is Linux (or MacOS X) or anything that takes years to decades to build & stands the test of time. Many people work hard on it, in many capacities, & when it comes out great? One feels proud of it, & one SHOULD DEFEND IT too). That goes for Linux & MacOS X folks too, & why I respect what they have also... but, I don't respect folks that think "Turn the sky green & the grass blue AND I WANT IT DONE YESTERDAY DAMMIT!" lol... this is why I am patient w/ your response on the issues we speak of. I understand it, & better now, after your reply.
In this reply, when people here called folks "shitty" @ Microsoft, well... You've done a great job & you had every right to do so! I don't think many understand a SIMPLE concept: It's EASY TO BE BOGUS, & HARD TO DO GOOD/GREAT THINGS, because ROME? It wasn't built in a day, so-to-speak & MAINTAINING it? Harder still, especially in the face of a very fast paced & dynamically CHANGING environs as today's tech world, really is.
Your competitors, and lord knows MS has them? They can AFFORD to be simple & short w/ you, trying to shoot you & yours down with snide remarks & such. You in having to supply a valid logical response as a rebuttal though, by way of comparison?? Isn't, is it??? I know it's not on your end.
You don't have to answer that (or any of this really) - I already KNOW the answer.
I commend you for that post in fact because of it. IF I had mod points? You'd be getting a load of them for your reply here in response to an attack directed @ your company which doubtless you are proud of (and you SHOULD be), but I don't have mod points as AC here!
(At this point in yours & my conversations, well, you KNOW why I post that way here, as AC only. You say I "stick it out there", well... NO I DON'T, not like you do, & again I commend you for it, because the knives are FLYING around here for anyone or anything "Pro Microsoft". Me? Heh - I actually "hide" as AC... you know why here, though, some fairly good reasons, & in the interests of peace to avoid such "knives" in fact)
So - here? You actually do and are taking ONE HELL OF A RISK in the doing of it, but you didn't let anyone see you sweat & put out one HELL OF A REPLY in defense of your great company! Again, kudos!
HOWEVER (& I am sure you are aware of this too, you're no fool) be aware of the risks too (just being a friend in wa
APK ALERT - DO NOT ANSWER THIS FUCKTARD
Unless you enjoy repeated copy/pasted answers and being insulted. His ego will not allow for discussion and any time you spend constructing a reasoned point for this moron will be time wasted. The only thing more terrible than him as a person is his terrible programming ability and shitty shareware utilities, for which he is inexplicably proud.
See here for an example of the kind of crap you'd be letting yourself in for.
Please warn others if you see him post (anonymously, he has a history of stalking). Just pretend he isn't there and you can't see his drivel. Whatever you do, DO NOT FEED THE TROLL.
"APK ALERT - DO NOT ANSWER THIS FUCKTARD" - by Anonymous Coward on Sunday January 24, @10:53AM (#30878690)
Hey, don't worry... want to know why? Well - I won't be around here anymore! This is simply is about my "moving on" really.
E.G.-> I've got things I've got to do/bigger fish to fry really. So, you can waste your time trolling others now instead of me.
(This has been a LONG time coming anyhow, & it's no "snap decision". I wrote Foredecker via email in regards to this anyhow (& he's the only person here @ this point that I had to make a point to anyhow & at least he I can respect, unlike yourself man - not a cutdown, just statement of fact from my own viewpoint is all!)
LOL, in a way? I have to THANK you, as You've actually helped me, per "I sent my soul through the invisible" (Look that up sometime, it's a hell of a piece of prose). You, plus those like you, have made me realize you're dragging me down to YOUR level. I can't have that is all.
There's some great folks here too though, & this site's the best "tech news aggregator", bar-none. I will definitely give it that, and, I am leaving on meeting one of the nicest folks I've had the pleasure to meet here, in Foredecker no less imo - I can respect the guy, unlike your type troll. I mean, lol, hey - 6++ yrs. of banging my head vs. trolls like you much of the time, has taught me a lot in a way, it's a shame the decent folks have to deal with you now is all).
Oh, before I take off? Per what you said, on "my ego"? Well - See, when it comes to dispatching you trolls? You startup with me, & thus, it's not ego, it's only statements of facts, vs. your b.s. is all (+ it tended to "put you in your place" - especially when I see that those like you have done NOTHING with yourselves. So, until your wares & ideas have done what mine have done (what things I have done such as MS Tech Ed 2x & a row & my code in commercial wares for example)? Well... there's doing, & then there is trolling)...
Pretty simple.
Honestly, it's making people like you that bring out the worst in myself, & others, in your doing so! My reacting to the trolls like you brought out the very worst parts of me @ times, but only in retaliation to posts like yours above is all. I realize one thing though in regards to those like you: You TALK a big game, but you haven't accomplished a thing.
(Think about that, for your OWN sake)
That's it... I guess we'll ALL be happier for it then, ok?? So, that "all said & aside", well... be happy troll, as you "got your wish": I'm done here, it has been a nice ride, all in all. Now, time to go get things done of real import to myself.
Sincerely,
APK
P.S.=> I like using film as an analogy, because it IS the 'dramatization of real life' imo + the finest artform mankind has... & one of my fav. films is "LAYER CAKE" & XXXX's closing statements in that flick:
----
"The King is dead: Long live the king..." - Clarky, the chemist
"Well, I'm honored - but, for me, this is all over, I'm getting out. What was true then, is, true now: Have a plan, & stick to it. So, I am sure you gentlemen must have lots to discuss - but, I have no business being here. I have someone to meet... Adios Amigos. (Paul the boatmen, Kinky, The Duke, Slasher, Kilburn Jerry, Crazy Larry, Mr. Lucky, Troop... Jimmy. I don't want to add my name to that list... )" - XXXX - Layer Cake
----
apk
The moves by governments to boycott Microsoft's Internet Explorer sound like a kneejerk reaction. Peter Judge says security settings are more important than which browser you are using.
Read here: http://www.eweekeurope.co.uk/comment/stay-calm-over-internet-explorer-security--3077
The day you can prove you're the first to come up with a widely used technique to improve performance that is widely used now as this exemplifies:
http://web.archive.org/web/20010405012842/www.ntcompatible.com/article1.shtml
Search this there SWAPFILE PLACEMENTS & IDEAS FOR IT from as far back as 2001 or earlier and is the oldest one of its kind I have found on that note no less?
and when you've done what he has per one of his posts here
"My Name is Ozymandias: King of Kings - Look upon my works, ye mighty, & DESPAIR..."
----
Windows NT Magazine (now Windows IT Pro) April 1997 "BACK OFFICE PERFORMANCE" issue, page 61
(&, for work done for EEC Systems/SuperSpeed.com on PAID CONTRACT (writing portions of their SuperCache program increasing its performance by up to 40% via my work) albeit, for their SuperDisk & HOW TO APPLY IT, took them to a finalist position @ MS Tech Ed, two years in a row 2000-2002, in its HARDEST CATEGORY: SQLServer Performance Enhancement).
WINDOWS MAGAZINE, 1997, "Top Freeware & Shareware of the Year" issue page 210, #1/first entry in fact (my work is there)
PC-WELT FEB 1998 - page 84, again, my work is featured there
WINDOWS MAGAZINE, WINTER 1998 - page 92, insert section, MUST HAVE WARES, my work is again, there
PC-WELT FEB 1999 - page 83, again, my work is featured there
CHIP Magazine 7/99 - page 100, my work is there
GERMAN PC BOOK, Data Becker publisher "PC Aufrusten und Repairen" 2000, where my work is contained in it
HOT SHAREWARE Numero 46 issue, pg. 54 (PC ware mag from Spain), 2001 my work is there, first one featured, yet again!
Also, a British PC Mag in 2002 for many utilities I wrote, saw it @ BORDERS BOOKS but didn't buy it... by that point, I had moved onto other areas in this field besides coding only...
Lastly, being paid for an article that made me money over @ PCPitstop in 2008 for writing up a guide that has people showing NO VIRUSES/SPYWARES & other screwups, via following its point, such as THRONKA sees here -> http://www.xtremepccentral.com/forums/showthread.php?s=ee926d913b81bf6d63c3c7372fd2a24c&t=28430&page=3
(That last one's also featured here as one of your "ESSENTIAL GUIDES" -> http://www.neowin.net/forum/index.php?s=ded3dfdba4dba2091d4d73d674bbfdf6&showtopic=602537 )
----
What do I have to say about that much above? I can't say it any better, than this was stated already (from the greatest book of all time, the "tech manual for life" imo):
"But by the grace of God I am what I am: and his grace which was bestowed upon me was not in vain; but I labored more abundantly than they all: yet not I, but the grace of God which was with me." - Corinthians Chapter 10, Verse 10
(And, because I got LUCKY to have been exposed to some really GREAT classmates, professsors, & colleagues on the job over time as well)
----
then you can talk, talker. You are nothing but a jealous troll it seems and especially now since he has gotten the attention of a very important person at microsoft on his points on hosts files and pagefile too.
http://slashdot.org/comments.pl?sid=1521956&cid=30881936
Primarily it sounds like you are stalking him online from your -wherever you go- statement above in the reply of yours I reply to now. It now seems others are asking if you have ever done anything of worth that was noted as his listings of noted deesd in respectable publications and books in computing over time here in this thread http://slashdot.org/comments.pl?sid=1521956&cid=30900928. That's been put out here now here by others also probably afraid to have a real egomaniac psycho like you troll them as well now no less. With your url you put up though, I did a bit of reading. It's my opinion that You have also given yourself away as this Acecandy or ~Candy~ seeing as how his post shamed you to the point of changing your name there upon my cursory inspection of it. His reply wasn't mean about Internet Explorer and Opera. It was based on facts, and being factual in the end it even actually complimented you in fact. You took it the wrong way. In the end, you're just a nobody on that forums link you posted. Your frothing reaction has only shown me that his reply there certainly got to you didn't it? I have to say yes, it did judging by your lunatic raving. Do you really think someone who has a list like his from the time you were still in diapers couldn't do that also were he to join up at Microsoft's forums? Clue - he's been interviewed by Microsoft for work and years ago as a post of his I have bookmarked here http://developers.slashdot.org/comments.pl?sid=155172&cid=13007974. I read his posts and this is how I know this much as I belong to other forums he belongs to myself. He could do what you have in mvps status and probably with ease. He also summarily destroyed you on other things now that I read that posting, but only after you attacked he because somehow and I do not see how in the url you put up as some sort of evidence as to his alleged egotism, he tore your ego to shreds by making you and yours look rather foolish. Most of all via a post on registry cleaners http://forums.techguy.org/windows-xp/662877-solved-registry-cleaners-2.html which I found interesting in how you all had to ban him when he challenged you to find his registry cleaner freeware damaging windows. He's also done posts shown how they can be used as forensics tools here http://www.tcmagazine.com/forums/index.php?s=8b73f8ac359f5d4395f12b5169367a38&showtopic=2662 where his guide is all over the world with replies from people who have applied it having no problems anymore with viruses after they apply his tips and follow what he says to do. Now, let's see you do what he had when you were still a child probably on your part to your credit. You cannot and you never will and that is that. It seems that the other repliers to you in this trolling attack of your are correct that your incorrect statement about he is wrong. He commended slashdot. You are not slashdot. You are an unaccomplished troll that cannot handle facts that make you look what you are, which is stupid. Amusing us also, in your trying to use others here in your trolling defense and it's not working. We can read you know. You are not slashdot and you are not the types of people you spoke of. Show us otherise and prove you are, because otherwise you're another windbag troll full of hot air. Comparing the list others put up shows he's done a lot of good note from some reputable sources in this science from as far back as 1997 it seems and continues to do so, whereas you have not. He is also correct that you in all likelyhood never will because you are a forums troll and clearly no
Wow, I'm so surprised, you replied with the same cut and paste garbage and piffling collection of achievements you trot out all the time. You're proud of this, right? Worse still, you then pretend you aren't APK - right.
I'm not who you think I am - you're a paranoid fucking fruit. I'm just another one of the many people irritated by your antics and hope you die in a fire. So much for leaving Slashdot then? Had to get the last word in didn't you?
Protip: Talking about yourself in the third person makes you a dick.