Welcome to the club. This type of attack is called a Joe Job in geek speak. It's pretty common, especially if you've ever succeeded at getting a spammer booted off his provider. You should visit the SpamCop newsgroups; they are old hands at this and helped me with the same situation in mid-April.
My Joe was also a Javascript encoded porn ad -- it might have been the exact same spammer. Here's a clipping for comparison:
Received: from [195.6.76.211] (195.6.76.211) by amyris.wanadoo.fr; 20 Apr 2001 16:05:27 +0200
Message-ID: 00000b300739$00002642$00001399@62.168.16.146
To: Undisclosed Recipients
From: fuy1@umbc.edu
Subject: Just For You
[...headers abridged...]
html
head
title HardCore/title
meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Diso-88=
59-1" /head
body bgcolor=3D"#FFFFFF"
script
function Merlin( s ) { var sRet=3D""; for(j=3D0; j=3D8364) {n =3D 128;} sRet +=3D String.fromChar=
Code( n - 3 ); } return( sRet ); }
The decoder tool at NetDemon revealed that the spam was for lolital.com and visit-x.net. I contacted their hosting providers as well as wanadoo.fr (the open relay) but I don't think anything came of it.
On the bright side, not a single angry recipient wrote back to me to complain. I guess everyone really does delete spam on sight... or maybe they happily clicked to see HardCore Teens.;-(
A quarantine is pointless. As we all know, the DNA code for earthly life actually originated on mars and was transplanted here by benevolent big headed Cydonians. Any life that comes back from there would be us.
Oh, you're one of those fringe wackos who disagree? Well, I dare you to refute this proof! The big-heads are in it with the Freemasons, not to mention God.
p.s. Call this overrated if you must, but if you mod me offtopic or troll I'll put a cap in your ass.
some troll named ThiotimolineDude keeps posting goatsex links way before the articles even come up.
In case some of you young'uns didn't catch the reference, here's a link. Thiotimoline to the Stars!
Taco's corollary to Clarke's Law: any sufficiently convoluted Slashdot topic is indistinguishable from science fiction (or will at least provide good context for some hyperlinks).
How many trade shows have you been to and not seen booth babes?
Hmm...off the top of my head:
I helped a friend unpack his booth for MANTS several years ago.
My wife attended ACC this spring; I went along for the ride.
Oddly enough, we visited a completely different ACC show last year just for fun.
And of course, I should include at least one show that counted as a work day.
Total bikini babe count: zero. Perhaps you were referring only to industries aimed at and/or run by 20ish males? Gee, that's a very inclusive world view you have. Perhaps you should go outside more often.
Apple has no control over the openness of Sorenson's codec.
BZZT. Apple owns an EXCLUSIVE license to the codec. Sorenson is perfectly willing to release Linux/Posix/whatever binaries, but Apple isn't interested. Read it and weep:
If you're interested in QuickTime for platforms other than Mac or Windows,
please contact your platform vendor and let them know that you would like
them to license QuickTime from Apple. Once QuickTime is available on a
platform, Sorenson Video will be there as well.
Scott Wheeler
Customer Service Department Sorenson Vision, Inc.
I'm usually a rabid Evangelista, but the codec is being withheld by Apple for market purposes (aka evil).
I challenge you to find me a high-quality 22" wide-screen LCD for less than $2500.
Heck, it's hard to find another 21"+ LCD at all. For example, Outpost has an NEC 20" that only gets 1280x1024 and costs $3279. Mysimon and cNet Shopper both list exactly one LCD larger than 18"... care to guess?
Also, Slashdot previously discussed the Samsung 240T. It costs over twice as much, and came from the drool-flows-continuously dept. Apple's 15" is a bit over the average LCD price (about $500), and the 17" is dead on ($999), but the Cinema Display is an amazing deal (if you can afford it).
There was just a story about these bikes on NPR yesterday. But why have a media blitz for something that 99.9% of Americans can't afford? It's like having commercials for helicopters.
Actually, that FAQ is several months out of date. For example, MacSoft is doing a Civ3 port (gee, guess which platform?) so there is at least one commitment yet.
But it's a shame Civ3 will probably use DirectPlay (aka the Seinfeld Network Nazi) just like all of the other Firaxis games. No cross-platform multiplay for you!
made a browser that couldn't read a page every other browser could.
That is such utter BS, not to mention flamebait. Run the page through the official W3 validator and you'll see LinuxToday is loaded with errors. It's their own damn fault if it doesn't load properly.
BTW, if you dislike M$ so much, why are you using Hotmail?
My wife is shopping for a laptop, and a couple visits to Dell's web store left us both thoroughly pissed off.
First you have to pick what type of customer you are. Hmm...I'm in education. My wife is in healthcare. We both work for a large business. And there's always "home user". It turns out that not only are the prices radically different each way you try it, but so is the selection of models you can choose. And of course, following the exact same click path at home in the evening gave us a different price than doing it at work in the afternoon.
conditioned to believe that we have the right to be charged the same price as the next guy,
Sure, it's not in the Constitution or anything. But it's what we want, and we're definitely not buying Dell, even though their deal was equal to (possibly better than, depending on the price of the minute) our backup choice.
coke machines have thermometers in them and they jack the price up
This sort of thing happens all the time in major cities, but it doesn't involve microchips. You see little carts selling umbrellas for $2 (or whatever). Whenever it starts raining, they flip the sign over and the price jumps 2x or 3x higher.
Well, a dead standard, at least. For example, PowerMacs had DVD-RAM drives two years ago, and even Mac addicts panned it because DVD-RAM can't play back on consumer DVD players. That's where the money is.
public at large had not truly begun to adopt the technology until perhaps 1996.
1996, you say? Interesting. The High Performance Computing Act of 1991 paid for increasing network backbone infrastructure over the next 5 years. Perhaps there's a connection? However, I seem to remember some guy getting a whole lot of shit for taking credit.
TCP/IP. HTTP. graphical web browsers. What do these things have in common? Answer: they were all created with government funding.
Yes, I know that WEP 128 supposedly only has 30something bit entropy. I also know that none of the naysayers have actually demonstrated working software that breaks WEP. A theoretical problem without a practical application is only a vulnerability, not a "failure".
That said, using VPN and a separate firewall for the wireless base station is a good plan.
Neither am I, but I do know the difference between trademark law and patent law. A patent holder does not Not NOT need to defend it in order to maintain it. They can choose to enforce it selectively, at a late date, or otherwise, any time in the duration of the patent.
The parent post is a good candidate for -1: Misinformative moderation.
Then they can hold a press conference to proudly announce: "Microsoft Office is the only suite that is 100% XML compliant!" The word XML is like the word consultant -- it can hold so many meanings that it's pretty much meaningless.
Since we're on this topic... my wife needs to buy a laptop for a biostatistics class. We're currently an all-Mac household (I bring a Wallstreet to work, with a PowerBase at home that also runs NetBSD) but we wouldn't be averse to a PC if it made sense.
What laptops in the $1500ish range are better and cheaper the new iBook? I went to Dell.com (educational sales) and priced out a comparable Inspiron -- it was $150 more than the Mac! Not interested...
Aw, double click is nothing. You should try the spring loaded folders feature in MacOS -- it requires one and a half clicks. It's actually a handy tool, although totally outclassed by FinderPop.
Unix avoids double clicks in favor of binding events to different mouse buttons.
And what a mess that can become if different apps use them differently. Two buttons (plus a scroll wheel) is probably optimal for usability, but we'll always get calls like:me: "Right click on the 'My Computer' icon [long explanation deleted], then click on 'Properties'."them: "I don't have Properties. I see 3 1/2 Floppy..."
Re:Security through obscurity works.
on
Cracking OSX
·
· Score: 2
Obscurity? No.
PPC Assembly is publicly documented at both IBM and Motorola. APIs and a full development environment are available at Apple. The kernel is open source.
This word "obscurity", I don't think it means what you think it means. Perhaps you meant to say "security through diversity"?
Perhaps you should mention that to Microsoft, becuase they say otherwise. According to their own web site:
This feature lets content owners disable digital output by setting a parameter in licenses for their music.
Users can listen to decrypted music, but they cannot make copies.
Bingo. The reason why relatively few people will crack OS X is the same reason why there are so few Mac system viruses compared to Windows. Most of the black hats use x86 commodity hardware, often self-built. Converting that code to PPC is a little easier now with Darwin's GCC, but it's still an extra hurdle.
Think back to the LinuxPPC contest a few years ago. They enabled a known vulnerable version of FTPD on purpose, but it still took weeks before someone wrote a PPC buffer overrun crack.
Slashdot Mirror
Welcome to the club. This type of attack is called a Joe Job in geek speak. It's pretty common, especially if you've ever succeeded at getting a spammer booted off his provider. You should visit the SpamCop newsgroups; they are old hands at this and helped me with the same situation in mid-April.
My Joe was also a Javascript encoded porn ad -- it might have been the exact same spammer. Here's a clipping for comparison:
The decoder tool at NetDemon revealed that the spam was for lolital.com and visit-x.net. I contacted their hosting providers as well as wanadoo.fr (the open relay) but I don't think anything came of it.
On the bright side, not a single angry recipient wrote back to me to complain. I guess everyone really does delete spam on sight ... or maybe they happily clicked to see HardCore Teens. ;-(
A quarantine is pointless. As we all know, the DNA code for earthly life actually originated on mars and was transplanted here by benevolent big headed Cydonians. Any life that comes back from there would be us.
Oh, you're one of those fringe wackos who disagree? Well, I dare you to refute this proof ! The big-heads are in it with the Freemasons, not to mention God.
p.s. Call this overrated if you must, but if you mod me offtopic or troll I'll put a cap in your ass.In case some of you young'uns didn't catch the reference, here's a link. Thiotimoline to the Stars!
Taco's corollary to Clarke's Law: any sufficiently convoluted Slashdot topic is indistinguishable from science fiction (or will at least provide good context for some hyperlinks).
Any code posted on their Publicsource site is open for all comers. For example, OpenPlay runs on Mac, Win, and various *nixes.
As for CDSA, a couple other people are already working on Windows and Linux implementations.
Hmm...off the top of my head:
Total bikini babe count: zero. Perhaps you were referring only to industries aimed at and/or run by 20ish males? Gee, that's a very inclusive world view you have. Perhaps you should go outside more often.
BZZT. Apple owns an EXCLUSIVE license to the codec. Sorenson is perfectly willing to release Linux/Posix/whatever binaries, but Apple isn't interested. Read it and weep:
I'm usually a rabid Evangelista, but the codec is being withheld by Apple for market purposes (aka evil).
Heck, it's hard to find another 21"+ LCD at all. For example, Outpost has an NEC 20" that only gets 1280x1024 and costs $3279. Mysimon and cNet Shopper both list exactly one LCD larger than 18" ... care to guess?
Also, Slashdot previously discussed the Samsung 240T. It costs over twice as much, and came from the drool-flows-continuously dept. Apple's 15" is a bit over the average LCD price (about $500), and the 17" is dead on ($999), but the Cinema Display is an amazing deal (if you can afford it).
There was just a story about these bikes on NPR yesterday. But why have a media blitz for something that 99.9% of Americans can't afford? It's like having commercials for helicopters.
Actually, that FAQ is several months out of date. For example, MacSoft is doing a Civ3 port (gee, guess which platform?) so there is at least one commitment yet.
But it's a shame Civ3 will probably use DirectPlay (aka the Seinfeld Network Nazi) just like all of the other Firaxis games. No cross-platform multiplay for you!
That is such utter BS, not to mention flamebait. Run the page through the official W3 validator and you'll see LinuxToday is loaded with errors. It's their own damn fault if it doesn't load properly.
BTW, if you dislike M$ so much, why are you using Hotmail?
My wife is shopping for a laptop, and a couple visits to Dell's web store left us both thoroughly pissed off.
First you have to pick what type of customer you are. Hmm...I'm in education. My wife is in healthcare. We both work for a large business. And there's always "home user". It turns out that not only are the prices radically different each way you try it, but so is the selection of models you can choose. And of course, following the exact same click path at home in the evening gave us a different price than doing it at work in the afternoon.
Sure, it's not in the Constitution or anything. But it's what we want, and we're definitely not buying Dell, even though their deal was equal to (possibly better than, depending on the price of the minute) our backup choice.
This sort of thing happens all the time in major cities, but it doesn't involve microchips. You see little carts selling umbrellas for $2 (or whatever). Whenever it starts raining, they flip the sign over and the price jumps 2x or 3x higher.
Well, a dead standard, at least. For example, PowerMacs had DVD-RAM drives two years ago, and even Mac addicts panned it because DVD-RAM can't play back on consumer DVD players. That's where the money is.
1996, you say? Interesting. The High Performance Computing Act of 1991 paid for increasing network backbone infrastructure over the next 5 years. Perhaps there's a connection? However, I seem to remember some guy getting a whole lot of shit for taking credit.
TCP/IP. HTTP. graphical web browsers. What do these things have in common? Answer: they were all created with government funding.
Yes, I know that WEP 128 supposedly only has 30something bit entropy. I also know that none of the naysayers have actually demonstrated working software that breaks WEP. A theoretical problem without a practical application is only a vulnerability, not a "failure".
That said, using VPN and a separate firewall for the wireless base station is a good plan.
Neither am I, but I do know the difference between trademark law and patent law. A patent holder does not Not NOT need to defend it in order to maintain it. They can choose to enforce it selectively, at a late date, or otherwise, any time in the duration of the patent.
The parent post is a good candidate for -1: Misinformative moderation.
Boot your PHB's computer into BIOS, set the clock ahead three years, shut down... "This OS will self-destruct in 10 seconds"
All M$ has to do is add a few characters to the start and end of every file format they currently use. For example, something like this:
Then they can hold a press conference to proudly announce: "Microsoft Office is the only suite that is 100% XML compliant!" The word XML is like the word consultant -- it can hold so many meanings that it's pretty much meaningless.
Since we're on this topic ... my wife needs to buy a laptop for a biostatistics class. We're currently an all-Mac household (I bring a Wallstreet to work, with a PowerBase at home that also runs NetBSD) but we wouldn't be averse to a PC if it made sense.
What laptops in the $1500ish range are better and cheaper the new iBook? I went to Dell.com (educational sales) and priced out a comparable Inspiron -- it was $150 more than the Mac! Not interested...
Oh, you mean like this?
Aw, double click is nothing. You should try the spring loaded folders feature in MacOS -- it requires one and a half clicks. It's actually a handy tool, although totally outclassed by FinderPop.
Unix avoids double clicks in favor of binding events to different mouse buttons.And what a mess that can become if different apps use them differently. Two buttons (plus a scroll wheel) is probably optimal for usability, but we'll always get calls like:me: "Right click on the 'My Computer' icon [long explanation deleted], then click on 'Properties'." them: "I don't have Properties. I see 3 1/2 Floppy ..."
PPC Assembly is publicly documented at both IBM and Motorola. APIs and a full development environment are available at Apple. The kernel is open source.
This word "obscurity", I don't think it means what you think it means. Perhaps you meant to say "security through diversity"?
Perhaps you should mention that to Microsoft, becuase they say otherwise. According to their own web site:
Secure Audio PathBingo. The reason why relatively few people will crack OS X is the same reason why there are so few Mac system viruses compared to Windows. Most of the black hats use x86 commodity hardware, often self-built. Converting that code to PPC is a little easier now with Darwin's GCC, but it's still an extra hurdle.
Think back to the LinuxPPC contest a few years ago. They enabled a known vulnerable version of FTPD on purpose, but it still took weeks before someone wrote a PPC buffer overrun crack.