I'm not surprised... I was in China in the summer of 2001, and one of the things I vividly remember was riding the train from Beijing to Shanghai, and looking out the window at a factory with smokestacks belching bubblegum-pink smoke into the sky. That cannot be healthy, or likely legal, but in general in China rules and regulations are one thing on paper, and another thing in practice.
Attacking Adobe Reader means that people who use Firefox are also at risk. For a long while, the popular security paradigm on Windows was that if you used IE you were at risk, but if you kept up with Windows Update and used only Firefox to browse the web you were pretty much safe from the majority of the exploits in the wild. Now that malicious PDFs are out there in force, users of Firefox are vulnerable once again.
I'm not too sure that gmail isn't a target... A couple weeks ago, my friend's Gmail account got hacked and the spammers sent the following message out to all his contacts:
I am willing to give you a surprising happiness! Yesterday i had received the digtal camera which i ordered from ---www.wwooz.com-- last week. its quilty is very good , and the price is very low.i am satisfied with it.
If the products you expect is on the site, it is a wise choice for you to buy from this site.I believe you can get many surprising happiness and concessions.
Incidentally,they import the products from korea.all of the products are brand new and original. they have good credit and many good feedback.they are worth trusting for us . Best wishes !
Closer makes no difference, effective transfer speed does (which BT already prioritizes peers based upon). I can get much better download rates from the guy in Finland with a 100mbit connection then I can from the guy across town on my same cable ISP with an already saturated 384kbps upload.
I'm betting that a good amount of the information used in this case came from posters on the WGA forum, where people can post if they're having issues with WGA. One of the tools available in that forum is a WGA diagnostic tool which will generate a sanitized text dump of a user's windows validation information. Most cases on that forum are people whose brother, cousin, or sketchy PC shop installed a common warez release of Windows on their systems, but several there are people who bought apparently legitimate software from resellers which failed validation and later turned out to be counterfeit. Microsoft got in touch with these users, identified the resellers, and I'm betting that this news story is the result.
Actually Comcast's usenet service was provided by Giganews, albeit with a 2GB/mo cap. So it wasn't just text groups, they had all the binary groups with excellent retention.
You can read about this arrest from a first person perspective at William Genovese's website here. An interesting read, and he lists some of the e-mail and snail mail addresses used in the sting against him.
You can change port forwarding without a router reboot on Linksys routers. IIRC, D-Link routers do make you reboot, which is definitely annoying. Not sure about other manufacturers.
These LGA people claim to require a browser plugin to use these Chinese domain names. However, it just seems that they're implementing the names using punycode and some new (presumably non ICANN-approved) TLDs.
For example, the domain name "." resolves via punycode to xn--eqro3ot1fkxx.xn--55qx5d. Now we can check this domain via whois:
This service may be used to query the availability of
multilingual domain names. Please visit http://www.i-DNS.net/
for more information about multilingual domain names.
For help with the i-DNS.net WHOIS service, type 'HELP'.
Domain ID: D1148313-IDNS
Domain Name (Native):.
Domain Name (ACE): xn--eqro3ot1fkxx.xn--55qx5d
Created On: 14-Nov-2004 19:58:54 GMT
Last Updated On: 02-Mar-2005 06:12:50 GMT
Expiration Date: 14-Nov-2006 19:57:30 GMT
... [snipped to get past line-length filters]...
Name Server: ns1.i-dns.biz
Name Server: ns2.i-dns.biz
and we can actually resolve this name if we use the right DNS server:
$dig xn--eqro3ot1fkxx.xn--55qx5d @ns1.i-dns.biz
; > DiG 9.2.2 > xn--eqro3ot1fkxx.xn--55qx5d @ns1.i-dns.biz ;; global options: printcmd ;; Got answer: ;; ->>HEADER;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUESTION SECTION: ;xn--eqro3ot1fkxx.xn--55qx5d. IN A
;; ANSWER SECTION:
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN A 203.81.44.27
;; AUTHORITY SECTION:
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN NS ns1.universal-names.com.
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN NS ns2.universal-names.com.
;; ADDITIONAL SECTION:
ns1.universal-names.com. 117755 IN A 203.81.44.40
ns2.universal-names.com. 117774 IN A 203.81.44.27
The question raised here then is the following: why use a browser plugin at all if all is needed is to configure the user's DNS resolver to consult alternate root servers for the new TLDs? The paranoid conspiracy theorist in me suggests spyware, or something else that's not quite kosher.
Slashdot Mirror
Yeah this one's probably not a great choice...
http://yro.slashdot.org/story/11/09/25/0415213/HideMyAsscom-Doesnt-Hide-Logs-From-the-FBI
I'm not surprised... I was in China in the summer of 2001, and one of the things I vividly remember was riding the train from Beijing to Shanghai, and looking out the window at a factory with smokestacks belching bubblegum-pink smoke into the sky. That cannot be healthy, or likely legal, but in general in China rules and regulations are one thing on paper, and another thing in practice.
You're probably thinking of Bézier curves.
Here's a side-by-side screenshot of Linux font rendering with and without the now patent-free byte code interpretation: http://avi.alkalay.net/2007/01/freetype-with-bytecode-interpreter.html
Attacking Adobe Reader means that people who use Firefox are also at risk. For a long while, the popular security paradigm on Windows was that if you used IE you were at risk, but if you kept up with Windows Update and used only Firefox to browse the web you were pretty much safe from the majority of the exploits in the wild. Now that malicious PDFs are out there in force, users of Firefox are vulnerable once again.
I'm not too sure that gmail isn't a target... A couple weeks ago, my friend's Gmail account got hacked and the spammers sent the following message out to all his contacts:
I am willing to give you a surprising happiness! Yesterday i had
received the digtal camera which i ordered from ---www.wwooz.com--
last week. its quilty is very good , and the price is very low.i am
satisfied with it.
If the products you expect is on the site, it is a wise choice for you
to buy from this site.I believe you can get many surprising happiness
and concessions.
Incidentally,they import the products from korea.all of the products
are brand new and original. they have good credit and many good
feedback.they are worth trusting for us .
Best wishes !
Mirror doesn't seem to be working either :(
Closer makes no difference, effective transfer speed does (which BT already prioritizes peers based upon). I can get much better download rates from the guy in Finland with a 100mbit connection then I can from the guy across town on my same cable ISP with an already saturated 384kbps upload.
Aren't IDNs already available via Puncode encoding? (For example the ones at http://www.w3.org/2003/Talks/0425-duerst-idniri/slide12-0.html) Or am I missing something?
Carnegie Mellon University, not Central Mich.
I was hit by this issue earlier today, more info with some malware URLs available on metafilter here.
The original use of URL shortening services was to prevent link breakage in e-mail and nntp clients that linebreak after 80 characters. They still work great for this. http://tr.im/wGhA works a lot better in e-mail than http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=1600+pennsylvania+ave,+dc&sll=37.0625,-95.677068&sspn=49.624204,58.359375&ie=UTF8&ll=38.898732,-77.038515&spn=0.012007,0.014248&z=16 . I've also heard shortened links used to good effect on internet radio, where it's easier to direct listeners to a tinyurl than a long forum URL, when there's discussion about a certain thread.
I'm betting that a good amount of the information used in this case came from posters on the WGA forum, where people can post if they're having issues with WGA. One of the tools available in that forum is a WGA diagnostic tool which will generate a sanitized text dump of a user's windows validation information. Most cases on that forum are people whose brother, cousin, or sketchy PC shop installed a common warez release of Windows on their systems, but several there are people who bought apparently legitimate software from resellers which failed validation and later turned out to be counterfeit. Microsoft got in touch with these users, identified the resellers, and I'm betting that this news story is the result.
Fujitsu Siemens as a collaboration sells only to Europe/Middle East/Africa, not the US. I don't think this laptop or offer is available in the US.
Actually Comcast's usenet service was provided by Giganews, albeit with a 2GB/mo cap. So it wasn't just text groups, they had all the binary groups with excellent retention.
This thing still cracks me up every time. I love it.
Nice decision. I thought Kaspersky was a Russian operation though, was there really standing to sue them in a US court?
Website hosted on 199.201.145.20 by the l0pht, if people still remember them.
OrgName: L0pht Heavy Industries
OrgID: LHI
Address: 46 Waltham St
City: Boston
StateProv: MA
PostalCode: 02118
Country: US
thanks to www.mirrordot.com:d 6acde1e6268b5a8/index.html
http://www.mirrordot.com/stories/751cfc7325effc88
You can read about this arrest from a first person perspective at William Genovese's website here. An interesting read, and he lists some of the e-mail and snail mail addresses used in the sting against him.
The full article seems to be available in the print-only version here:, 1101299,00.html
http://www.time.com/time/magazine/printout/0,8816
You're not missing much, though -- I'm guessing this one was a sidebar blurb, as it's only two paragraphs anyways.
You can change port forwarding without a router reboot on Linksys routers. IIRC, D-Link routers do make you reboot, which is definitely annoying. Not sure about other manufacturers.
Couldn't you already get e-mail at your AOL screen name @netscape.net?
Replying to myself.
Slashdot ate my Unicode -- the domain name I was using was the first one in the "Chinese Domain Names" box here.
These LGA people claim to require a browser plugin to use these Chinese domain names. However, it just seems that they're implementing the names using punycode and some new (presumably non ICANN-approved) TLDs.
.
... [snipped to get past line-length filters] ...
;; global options: printcmd
;; Got answer:
;; ->>HEADER ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;; QUESTION SECTION:
;xn--eqro3ot1fkxx.xn--55qx5d. IN A
;; ANSWER SECTION:
;; AUTHORITY SECTION:
;; ADDITIONAL SECTION:
;; Query time: 821 msec
;; SERVER: 203.81.44.40#53(ns1.i-dns.biz)
;; WHEN: Tue Apr 26 19:49:06 2005
;; MSG SIZE rcvd: 148
For example, the domain name "." resolves via punycode to xn--eqro3ot1fkxx.xn--55qx5d. Now we can check this domain via whois:
$whois -h whois.i-dns.biz xn--eqro3ot1fkxx.xn--55qx5d
i-DNS.net WHOIS Server Version 1-2-0
This service may be used to query the availability of
multilingual domain names. Please visit http://www.i-DNS.net/
for more information about multilingual domain names.
For help with the i-DNS.net WHOIS service, type 'HELP'.
Domain ID: D1148313-IDNS
Domain Name (Native):
Domain Name (ACE): xn--eqro3ot1fkxx.xn--55qx5d
Created On: 14-Nov-2004 19:58:54 GMT
Last Updated On: 02-Mar-2005 06:12:50 GMT
Expiration Date: 14-Nov-2006 19:57:30 GMT
Name Server: ns1.i-dns.biz
Name Server: ns2.i-dns.biz
and we can actually resolve this name if we use the right DNS server:
$dig xn--eqro3ot1fkxx.xn--55qx5d @ns1.i-dns.biz
; > DiG 9.2.2 > xn--eqro3ot1fkxx.xn--55qx5d @ns1.i-dns.biz
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN A 203.81.44.27
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN NS ns1.universal-names.com.
xn--eqro3ot1fkxx.xn--55qx5d. 86400 IN NS ns2.universal-names.com.
ns1.universal-names.com. 117755 IN A 203.81.44.40
ns2.universal-names.com. 117774 IN A 203.81.44.27
The question raised here then is the following: why use a browser plugin at all if all is needed is to configure the user's DNS resolver to consult alternate root servers for the new TLDs? The paranoid conspiracy theorist in me suggests spyware, or something else that's not quite kosher.