Archive for May, 2012

phish-run

Friday, May 25th, 2012

This morning, 10:28 a.m. a new domain got created:

Updated Date: 25-may-2012
Creation Date: 25-may-2012
Expiration Date: 25-may-2013

Same day, a few hours later:

No match for “domain”.
>>> Last update of whois database: Fri, 25 May 2012 14:37:56 UTC <<<

So much work for the spammer:

  • generate a fakeaccount at yahoo!
  • register a domain
  • generate a fakeaccount at freenet (for sending)
  • build a phish webseite and upload it
  • generate the email and send it

    • and after about 50 clicks the domain was already removed..
    money earned? .. none 🙂

    Posted in Allgemein | No Comments »

    Mini Moog

    Wednesday, May 23rd, 2012

    I am very impressed by the emulation of the “Mini Moog” Synthesizer presented as the Goggles “Doodle” of today – including a 4-track recorder .. whow!

    I remember the times when I actually played a Mini Moog back in the 70’s 🙂

    Posted in Allgemein | No Comments »

    php-bug

    Friday, May 4th, 2012

    If you run PHP in cgi-mode you are probably vulnerable to a newly found bug:
    Heise: Gefahr-durch-offene-PHP-Luecke
    Adding parameters like http://localhost/index.php?-s to an url can show the source code or even inject or run parametes in the shell.

    Until an update exists it might be wise to filter out some string-elements (like “-” without “=”)
    RewriteCond %{QUERY_STRING} ^(%2d|-)[^=]+$ [NC]
    RewriteRule ^(.*) $1? [L]

    Tags:
    Posted in Allgemein | No Comments »