"You may only request payment, and SENDMAILS CORPORATION shall only disburse from your account, when your account is equal to or greater than $50.00 for United States residents and $90.00 for those residents outside the United States."
nice one:
"In the event of technical problems or data loss which causes a loss of account information, your account will be reset at $0.00, and you hereby waive any and all claims for any amount previously accrued but not yet disbursed."
and it includes spyware:
"SENDMAILS CORPORATION collects online behavior statistical information for our members. Examples of information that we collect, other than through the registration form, include URL of visited pages, registration for offerings and IP addresses."
I have public Bluetooth hotspot on my university. It's a PC with iTec USB Dongle (100 m range) running Debian GNU/Linux, BlueZ stack and my Java utility, which scans for Bluetooth devices and sends them "welcome on our university" note. Additionally it serves LAN/Internet access using PPP over Bluetooth.
Yes, I understand. Warsaw *monthly* tickets are based on smartcards (they need to be put near the sensor). You buy such card once and you need to refresh it every month. Normal tickets are magnetic ones.
Each user has it's own fork()ed copy of sshd running, so overflow can occur only in your own copy of sshd. The ONLY way to exploit it is to fool glibc free() by overwriting fd->prev or fd->next pointer.
After analysis, I can say, that this vulnerability is 4 bytes heap overflow, VERY hard to exploit. Problably only Linux will be affected, because Doug Lea's malloc() depends on control structures located just after malloced buffer.
Slashdot Mirror
OS detection combined with firewall rules is already implemented in OpenBSD.
"You may only request payment, and
SENDMAILS CORPORATION shall only disburse from your account, when your account is equal to or
greater than $50.00 for United States residents and $90.00 for those residents
outside the United States."
nice one:
"In the event of technical problems or data loss which causes a loss of account information, your account will be reset at $0.00, and you hereby waive any and all claims for any amount previously accrued but not yet disbursed."
and it includes spyware:
"SENDMAILS CORPORATION collects online behavior
statistical information for our members. Examples of information that we collect,
other than through the registration form, include URL of visited pages, registration
for offerings and IP addresses."
I have public Bluetooth hotspot on my university. It's a PC with iTec USB Dongle (100 m range) running Debian GNU/Linux, BlueZ stack and my Java utility, which scans for Bluetooth devices and sends them "welcome on our university" note. Additionally it serves LAN/Internet access using PPP over Bluetooth.
Yes, I understand. Warsaw *monthly* tickets are based on smartcards (they need to be put near the sensor). You buy such card once and you need to refresh it every month. Normal tickets are magnetic ones.
We have already magnetic cards and magnetic tickets in Warsaw public transport.
in Poland it's already illegal.
But it loses Niels Provos from coreteam. He "works" for NetBSD now.
"One remote hole in default install, in nearly 6 years". Two if you install new ssh.
Each user has it's own fork()ed copy of sshd running, so overflow can occur only in your own copy of sshd. The ONLY way to exploit it is to fool glibc free() by overwriting fd->prev or fd->next pointer.
After analysis, I can say, that this vulnerability is 4 bytes heap overflow, VERY hard to exploit. Problably only Linux will be affected, because Doug Lea's malloc() depends on control structures located just after malloced buffer.
Here, in Poland, many hospitals are stil using VAX boxes for heart and lung radioisotophe diagostics.