August 2004 - Posts - Farstrider's Place
in

dotnet.org.za

South African .NET Developer Portal

This Blog

Syndication

Tags

News



Blog Flux Theme Directory - Find and Search Blog Themes Button Creator for Free

Is it possible to test a nuclear weapon without producing radioactive fallout?
In what may prove to be the first nuclear explosion since 1998, North Korea claims it has conducted an underground test of a nuclear weapon. The official press release states, "there was no...radioactive emission in the course of the nuclear test." How likely is that? No radioactive emission my ***!!!


View My Stats

ADSL

Annoyances.org

Cape Town Weather

Microsoft Software Forum Network

More Blogs

South African Time

SSC Home Page

Farstrider's Place

SOLID STATE COMPUTERS

August 2004 - Posts

  • Lavasoft Ad-Aware SE Plus or SE Pro

    Earliest adopters of updated program should download again to ensure full security.

    Just days after Lavasoft launched new versions of its popular Ad-Aware security program, PC World tests revealed a significant security issue that has prompted Lavasoft to quickly to patch the program--but the company's update procedure may leave some customers vulnerable.

    Users who are running versions of Ad-Aware SE Plus or SE Pro earlier than the current v1.03, which is available now for download, should redownload their copies of the application. This is Ad-Aware's third update in a week's time, but the most urgent. Simply running the software's Web Update feature--which downloads the latest definition files--will not correct the problem.

    View: Full Story
    News source: PC World

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 15 2004, 06:56 PM by John Piers Cilliers with no comments
    Filed under:

  • Microsoft offers disabled SP2 download

    Customers can delay installation of service pack to provide time for validation and testing...

    Microsoft Corp. is letting customers disable installation of SP2 until they are ready to deal with the multitude of issues it brings.

    Users, largely expected to be corporate, can prevent the installation of the newly minted XP service pack while permitting the installation of all other automatic OS updates.

    The idea behind it is that smaller organizations may find that the update process overwhelms their resources, whether download bandwidth, or technical staff who will have to manage the fall-out of a massive OS update dropping into most users' machines.

    In the Technet section of its site, Microsoft said that, "some organizations have requested the ability to temporarily disable delivery of this update via AU (automatic update) and WU (Windows update) ... these customers would like to temporarily block the delivery of SP2 in order to provide additional time for validation and testing of the update." The move follows IBM Corp.'s instruction to its employees not to install SP2.

    Microsoft explains three ways of disabling the installation. Active Directory users can use group policies via a downloadable Active Directory template. The second uses a downloadable executable -- Microsoft points out that it's signed code -- while the third uses a link over email. All rely on the presence of a new registry key originally created for in-house use during the development of the service pack.

    Microsoft is encouraging companies to use its Software Update Services or Systems Management Server. In this way, users can enable automatic updates which are then redirected to an internal company server rather than to Microsoft's servers.

    The option to disable installation of SP2 while leaving automatic updates enabled expires 120 days after Aug. 16, at which point users who hold back will have little option unless they disable all updates.

    It's early days for user feedback, although some posts on technical forums suggest that few problems have so far been detected. However, one user's posting was emblematic of the general attitude: "Oh, I'll put it on a test rig. I'm sure we'll do a write-up. But I'm not letting it within ten feet of a rig whose operation is critical. And the reason is simple. I don't have time to spend four hours trying to coax my system back to life. I'd rather take my chances with the security flaws."

    http://www.microsoft.com

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 15 2004, 04:58 PM by John Piers Cilliers with 1 comment(s)
    Filed under:

  • Microsoft Windows XP Driver Protection features

    INTRODUCTION
    Microsoft Windows XP Professional Service Pack 2 and Microsoft Windows XP Home Edition Service Pack 2 (SP2) include the Driver Protection feature. This feature helps protect operating system stability by preventing the operating system from loading drivers that are known to cause stability problems. Driver Protection is built upon application compatibility technology that is present in Windows XP. Driver Protection is active at all times. The feature is available during operating system upgrades from prior versions of Windows and at runtime after the operating system is installed. Driver Protection is not intended to be disabled by end users.
    Drivers that are known to cause stability problems are listed in the Driver Protection List database that is included with Windows XP. Driver Protection checks this database to determine whether to load a driver in Windows XP.
     
    MORE INFORMATION
     
    The following device drivers are known to cause instability in Windows XP SP2 and have been added to the Windows XP Driver Protection List:
     
     
     
     
     
    Application/Driver Vendor Driver Binary Match Criteria
    Security Services and AV Driver Command Software CSS-DVP.SYS Product Version: 4.90.4.40123 and
    Link Date: 01/23/2004 16:08:00
    SMSC LPC Memory Stick Host Controller Sony Smscms.sys Link Date: 09/02/2003 19:07:48
    Virtual PC/Windows CE Emulator Microsoft VPCAppSv.sys Product Version: 6.13.10.2149 and system is running in PAE or NX mode
                                                                                                                                               
     
    For more information about the Driver Protection feature in Windows XP and to view existing drivers on the Driver Protection list, visit the following Microsoft Web site:

    http://www.microsoft.com/whdc/winlogo/drvsign/drv_protect.mspx

                                                                                                       
     
    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 10 2004, 09:13 PM by John Piers Cilliers with no comments
    Filed under:

  • Windows XP SP2

    This should start the XP SP2 download. Be warned it is big: http://download.microsoft.com/download/1/6/5/165b076b-aaa9-443d-84f0-73cf11fdcdf8/WindowsXP-KB835935-SP2-ENU.exe

     

    File Name:

    WindowsXP-KB835935-SP2-ENU.exe

    Download Size:

    272391 KB

    Date Published:

    8/9/2004

    Microsoft Windows XP Service Pack 2 (SP2) provides new proactive security technologies for Windows XP to better defend against viruses, worms, and hackers.  In addition to a more robust security infrastructure, SP2 improves the security configuration options of Windows XP and provides better security information to help users faced with security decisions.

     

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 10 2004, 03:32 PM by John Piers Cilliers with 1 comment(s)
    Filed under:

  • Comments on Windows XP Service Pack 2

     As we reported yesterday, Service Pack 2 for Windows XP has finally been released and is now available for people to download and install on their systems. The file, at just over 250 Megs, is a hefty download yet is packed with new updates well worth getting (Microsoft will allow people to order a CD with it on in due course).

    The install took about 5-10 minutes, yet clearly this figure will vary from system to system. After installing and rebooting XP asked me to turn on automatic updates (even before reaching windows). An excellent move on Microsoft's behalf, and one that serves to highlights a growing commitment to security and user safety. On the first run, Microsoft also loads up the new Security Center (screenshot). The Security Center monitors your Antivirus, Firewall, and Auto Update situation. If it detects anything that is potentially damaging or hazardous, it will prompt you with a warning and give you advice on how to resolve the issue. Microsoft has saved a lot of hassle for users in that if you have Zone Alarm installed, they leave the Windows Firewall off to prevent conflicts (screenshot).

    Less importantly for a Firefox user like me, Internet Explorer has been updated (screenshot)and the new features seem helpful. As well as a new version of IE, Outlook Express, Microsoft's free mail client bundled with Windows has been updated with better protection against email spread viruses and worms. I spent a few hours using the improved browser and it does seems somewhat nippier than before. With additions like pop-up blocking, IE becomes a slightly more attractive prospect. However, it still lacks features like tabbed browsing and standards compliancy that make some of the new features moot points. To really start winning back people, Microsoft need to get IE 7 out the door with these features (Before longhorn though?). I'd like to say i was impressed, but IE in SP2 is playing catch up, not adding features.

    Microsoft have also updated the wireless capabilities with SP2, which in previous service packs have been dubious at best. The new wireless network setup wizard (screenshot) allows users to easily deploy and manage networks, and at first glance appears to be reasonably effective. Asides from these major additions, there are many more subtle changes that XP SP2 has brought in (NX code, improved security and stability). The No eXecute technology will allow users with AMD chips to have a bit more protection against nasty bits of code, yet the true extent that it will protect it's users is really un-known; it currently seems to be more of a PR thing than anything else. Intel / no NX chip enabled users will benefit from what could be described as a "toned down" software version of NX, called DEP (Data Execution Prevention - screenshot).

    As a user, my computer does seem to be doing tasks a bit faster than before; basic tasks like loading up explorer windows or getting desktop properties up are definitely going faster than under SP1. The only minor problem in encountered with SP2 was to do with MS Messenger. XP re-installed MS Messenger (to be expected) after I’d previously removed it, and on rebooting post install continued to load it up even though MSN Messenger is running! Silently wasting 5 megs of Ram, it's annoying and something Microsoft doesn't seem to want to tackle! However, it's thankfully removable. I haven't had any of the problems that a few people have mentioned, and would thus recommend SP2 to all. To people who might have had bad experiences with earlier beta releases of the service pack, I'd urge them to try the final version, which is (somewhat obviously) substantially more polished than the betas. You can download it at the links below.

     View: Previous coverage | The SP2 thread in our forums
     Download: MD5 Checker | The exe md5 hash is : 59a98f181fe383907e520a391d75b5a7
     Download: Patched UxTheme.dll for Windows XP SP2

    News Source www.neowin.net

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 09 2004, 03:36 PM by John Piers Cilliers with 2 comment(s)
    Filed under:

  • While waiting for winXP sp2

    The general public won't see SP2 till somewhere next week, MS Premier customers hope to get it after the weekend. Current RTM candidate build is 2180.

    Meanwhile:

    Update your MS CRM 1.2 clients cause it will break after installing winxpSP2 on the clients.

    Update for Microsoft CRM 1.2 to operate on Windows XP SP2

    Read updates docs on sp2

    Ad Hoc Internet Sharing with Microsoft Windows XP

    Troubleshooting Windows Firewall in Microsoft Windows XP Service Pack 2

    Changes to Functionality in Microsoft Windows XP Service Pack 2

    This update enables and configures the Windows Firewall in Windows XP Service Pack 2 on Windows Small Business Server 2003 networks

    FAQ: How Windows XP Service Pack 2 Affects Systems Management Server 2003

    FAQ: How Windows XP Service Pack 2 Affects SQL Server and MSDE

    New Networking Features in Windows XP SP2

    Enterprise Computing and Windows XP SP2

     

    		 Deploying the Service Pack
    Installing and Deploying Updates.
    Deploying Windows Firewall Settings for Windows XP SP2
    Using the Windows Firewall INF File in Microsoft Windows XP Service Pack 2
    Business Desktop Deployment with Windows XP Service Pack 2
    Network Determination Behavior for Network-Related Group Policy Settings

    The New Wireless Network Setup Wizard in Windows XP Service Pack 2

    Manually Configuring Windows Firewall in Windows XP SP2



    News Source: http://bink.nu/
    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 05 2004, 11:49 PM by John Piers Cilliers with no comments
    Filed under:

  • Windows XP Service Pack 2 Release Update

    Microsoft will finalize the code for Windows XP Service Pack 2 (SP2) sometime today, release it via Microsoft Download Center and MSDN on the Web tomorrow, and then ship it to customers via Windows Update beginning August 25, though Automatic Update users will get it immediately on a staggered basis.

    Microsoft says that its Premier Support customers will be notified by e-mail using the Security Response infrastructure on August 5th that they can begin downloading the Full Network Install SP2 Kit immediately using the Download Center on the Microsoft Web site.

    Update: Below are some screenshots from Build 2179 compiled 2 days ago, thanks to mstest from the forums.

    Screenshots: Winver | Internet Explorer | Outlook Express
    News source: WinInfo
    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 04 2004, 11:25 PM by John Piers Cilliers with no comments
    Filed under:

  • XPSP2 hasn't RTM'd....just yet

    We were all a little confused yesterday when Microsoft Australia issued a statement claiming XPSP2 had gone into manufacturing. Some sites are claiming that the final build is 2178 which is false since 2179 was compiled on the 2nd of August. Hopefully whilst writing this 2180 will have compiled on the 3rd of August and if Microsoft are syncing build numbers between their Windows Update 5 (2181) and Windows XP SP2 then 2181 will compile today as RTM, otherwise 2180 will most likely be signed as RTM.

    The dates for release are as follows:

    5th August RTM Announcement
    10th August RTW (release to web)
    24th August Windows Update/Automatic Updates release

    Microsoft informed premier support customers that their own customers will begin receiving XPSP2 by automatic updates on the 25th August.

    Not long now

    News source: Neowin.net - Your place for XPSP2 news

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 04 2004, 03:18 PM by John Piers Cilliers with no comments
    Filed under:

  • Black Hat Day 2 Sounds Security Alarm

    After a night of drunken madness and impromptu skinny-dipping into the Caesar's Palace pool, Black Hat attendees came back for another day of mentally punishing talks. There were 38 talks spread among five tracks: Application Security, Computer Forensics and Log Analysis, Privacy and Anonymity and Zero Day Defense. A new track was held, Turbo Talks, which comprised a faster paced track during which talks are just twenty minutes long, compared to the usual one- hour-and-fifteen-minute talk length. 

    On day two, we listened to the Google Hacking talk. In addition, I interviewed Lukas Grunwald, who explained some of the vulnerabilities of RFID tags and his RFDUMP tool.

    By Humphrey Cheung at Tom's Hardware.

    NEXT: Google Hacking

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 03 2004, 03:43 PM by John Piers Cilliers with no comments
    Filed under:

  • Google Hacking

    Google Hacking

    The signature talk of Black Hat was Google Hacking by Johnny Long, the importance of which was reflected by a packed, standing room only auditorium. The massive crowd overflowed into the aisles and hallways. Johnny showed the audience how to push Google searches to the limit.

    Did you know that Google can help in hacking Web pages and finding vulnerable servers? You just have to know how to define searches with advanced and arcane search operators.

    One operator allows you to search within a known website. If you want to search for the word security within Microsoft's Website, then type the following command inside the Google searchbox: site:www.microsoft.com security (Type everything in bold). 

    Another great operator is the intitle: operator. This will look for a word or group of words in the title of a Webpage. An example would be if you wanted to find folder contents within Webpages. You would type intitle:index.of/admin.

    You can use Google to do a search for available VNC (Virtual Network Connection) Java clients. VNC is used for remote control of computers just like Microsoft's Remote Desktop and Terminal Services. VNC runs on port 5800. You can type "VNC Desktop" inurl:5800 to find a list of potentially vulnerable VNC client computers.

    This was just a few examples of dozens given in the talk. It is amazing how much information a well-worded Google search can get. In a few weeks, you will be able to obtain the entire Google Hacking talk at the Black Hat Media archives page

    By Humphrey Cheung at Tom's Hardware.

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 03 2004, 03:41 PM by John Piers Cilliers with no comments
    Filed under:

  • School for Hackers

    A presentation on how to be the first to exploit new flaws in Web server software was deemed "just as cool for white hats as for black hats" attending the Defcon 12 conference here over the weekend. The session offered new tools, as well as insight into the mindset of the so-called black hat, or malicious hacker, community, said one enthusiastic attendee, who works for a security consulting company that secures Web servers for the financial sector. The two presenters, German security consultants "FX" and Halvar Flake, spoke about taking advantage of new-found holes, known as zero-day Web-based vulnerability exploitation.

    Hacking Advice

    Finding vulnerabilities to exploit is real work, the presenters said. The large, packed crowd listened to them talk about "making script kiddies into real hackers," referring to novice hacker wannabes who simply use other hackers' tools to deface Web sites. The pair outlined the procedural steps of drilling down and finding Web server weaknesses--effectively offering tips to those who want to do so, but also providing knowledgeable warning to those who guard against such action.

    News source: PCWorld.com

    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 03 2004, 01:29 AM by John Piers Cilliers with no comments
    Filed under:

  • Intel strikes back with Nocona

    Infatuated with Itanium, Intel has long resisted the obvious: creating a 64-bit chip that simply extends the x86 architecture on which the company built its fortune. Instead, Intel has ceded that ground to AMD, whose 64-bit, x86-compatible Opteron has steadily eaten into the market shares of both Itanium and the 32-bit Xeon throughout the past year. For many, Itanium has been too expensive and too much of a departure. And Xeon has lacked the 64-bit headroom provided by Opteron.

    The game changed in late June when Intel introduced its newest Xeon processor, code-named Nocona. Intel unveiled the most recent arrival in its storied Xeon processor line with little fanfare, but in fact, it’s a major departure given that Intel has actually adapted the x86-64 instruction set that AMD developed for the Opteron. Intel’s new architecture, the EM64T (Extended Memory 64 Technology), brings a Xeon chip into direct competition with the Opteron for the first time.

    News source: InfoWorld
    Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
    Posted Aug 03 2004, 12:48 AM by John Piers Cilliers with 1 comment(s)
    Filed under:
Powered by Community Server (Commercial Edition), by Telligent Systems