spamversand

Today the Bundesverfassungsgericht judged about the 6 months collection
of ip addresses and email-data. Result: The current laws are not satisfying the german
Grundgesetz (constitution). All saved data are to be deleted.

Press information

On the other hand are these kinds of collection not impossible at all, as long as the
laws are made right. We will see if we can use our boxes for binary-news storage
instead

Do you believe your neighbour is using your WLAN without your permission?
Here is a funny solution what to do with him:
(found in “Full Disclosure”)

http://www.ex-parrot.com/pete/upside-down-ternet.html

I’ve added quite a lot of target ips to the honeypot. The number of successfully analyzed attacks per hour
raised to more than 750. Each attack generates an automatic complaint or results in blocking our own customer.
Must have a look if the honeypot and the following systems are powerful enough..

The famous backup-software Mondo has been released with a new version:


Project mondorescue version 2.2.9.1 is now available
Now available at ftp://ftp.mondorescue.org



Thanks to Bruno Cornec for this flexible image-generating tool.

Nessus, the popular Security-Scanner has been released in a new version:
(continue reading…)

Rumors say that str0ke, the maintainer of milw0rm has
died. There has been a lag recently in publishing new exploits on this website, so it might be true?

— Update —

Seems it was a fake: http://twitter.com/str0ke says he’*s alive and kicking.

Yamata Li from the Palo Alto Networks threat research team has developed a plugin for wireshark that allows you to view the obfuscated traffic generated by a Mariposa (Botnet) infected client.
This info was published on Full Disclosure today. The website mariposa-tool shows the detailed usage of this tool.

I started the honeypot-complaint service – now every attck is reported to the appropriate email-address. This was kind of tricky, since the abusix-database does not match every time. I added a whois-query and grep in the output, too..

The exploit-portal Mil0rm has stopped.
Too many exploits and not enough time to verify them are the reasons.
Bad news..

You use Legato Networker and your directory-path are changing quite often? You want wo
parallelize your SaveSets? Here is how I do it:

on the backup server:
* enter “savepnpc” in the clients backup command.
* create 2 groups with this client starting shortly one after the other

on the client:
* in the /nsr/res directory create 2 file named <groupname1>.res and <groupname2>.res
group1 (which runs first) contains:
type: savepnpc;
precmd: "/usr/local/sbin/nsrupdate";
group2 contains:

----------------------------------
type: savepnpc;
precmd: "/usr/local/sbin/nsrupdate";
pstcmd: "/usr/local/sbin/nsrpostupdate";


The file nsrupdate reads the dir-listing and changes networker via nsradmin;
in the second group this saveset is then used and afterwards changed to something
small, which will be modified again in the the next run..

------------------------------
#!/usr/bin/expect

# starte das backup-administrationsprogramm
spawn /usr/sbin/nsradmin -s backupserver
expect "nsradmin>"
send ". type : NSR client;name:dummy\r"
expect "nsradmin>"
send "update save set: $dir\r"
expect "Update?"
send "Y\r"
expect "updated resource"
send "quit\r"
exit 0
------------------------------



------------------------------
#!/usr/bin/expect

# starte das backup-administrationsprogramm
spawn /usr/sbin/nsradmin -s backupserver
expect "nsradmin>"
send ". type : NSR client;name:dummy\r"
expect "nsradmin>"
send "update save set: /tmp/y\r"
expect "Update?"
send "Y\r"
expect "updated resource"
send "quit\r"
exit 0
---------------------------------