Informatix

Updates from Admin RSS

• 

  Wasitup is Down

  Admin 12:09 am on 31 January 2012 | 0 Permalink
  

  Was It Up, an online server status checker is now taken offline due to increased burden of keeping it to stay online. It was a good service and i believe everyone who uses this service will also think the same way.
  
  It's a shame that this great service has to go offline until there's a new investor who can fund this project in the future. As for now, i'm using SiteUptime to monitor my server. It's not a real time though since it's a free service. If i choose the pro version, they will have a shorter time interval between each check.
  
  Another service that i use is Pingdom Panel which is more customizable than SiteUptime. It also offers free service where users may add 1 domain and free 20 sms alerts.

  

  
   
• 

  Leap Year

  Admin 2:42 pm on 30 January 2012 | 0 Permalink
  

  Time does flies so fast. It's like that i have just started this semester and suddenly, i have come to third week out of 14 weeks for this semester. And it is the end of January. In the next two days, we will be coming to February.
  
  What interesting thing in February? Well, we have Valentine days and there's a special event that happened generally once in four years, which is the Leap Year.
  
  According to this article, women can propose to men. It was considered that as the day also had no legal status, it was reasonable to assume that tradition had no status, so women took advantage of this and proposed to the man they wanted to marry. This tradition is applicable for countries who forbids women to propose man during normal days, such as in Scotland

  

  
   
• 

  Leap Year

  Admin 8:52 am on 30 January 2012 | 0 Permalink
  

  Time does flies so fast. It's like that i have just started this semester and suddenly, i have come to third week out of 14 weeks for this semester. And it is the end of January. In the next two days, we will be coming to February.
  
  What interesting thing in February? Well, we have Valentine days and there's a special event that happened generally once in four years, which is the Leap Year.
  
  According to this article, women can propose to men. It was considered that as the day also had no legal status, it was reasonable to assume that tradition had no status, so women took advantage of this and proposed to the man they wanted to marry. This tradition is applicable for countries who forbids women to propose man during normal days, such as in Scotland

  

  
   
• 

  DNSCrypt to from OpenDNS

  Admin 8:39 pm on 29 January 2012 | 0 Permalink
  

  OpenDNS has been known for years due to their service the public by giving a safe DNS service. So far, they have done a great job of protecting the DNS service and also ease parent's job to protect their children by avoiding unappropriate content to be seen by children under age.
  
  They are now working to further enhance their service by introducing DNSCrypt, a new service which will solve the last mile problem that exists between user's computer and the ISP. Somewhere between this line, there can be a man-in-the-middle and DNS Spoofing attack. DNSCrypt solve this problem by securing your DNS request using cryptography so that it's secured by these kind of attack.
  
  They have release the project's source on GitHub and you can start downloading it (only for Mac at the moment).
  
  Have a look on the project's announcement to find out more about this project

  

  
   
• 

  DNSCrypt to from OpenDNS

  Admin 3:09 pm on 29 January 2012 | 0 Permalink
  

  OpenDNS has been known for years due to their service the public by giving a safe DNS service. So far, they have done a great job of protecting the DNS service and also ease parent's job to protect their children by avoiding unappropriate content to be seen by children under age.
  
  They are now working to further enhance their service by introducing DNSCrypt, a new service which will solve the last mile problem that exists between user's computer and the ISP. Somewhere between this line, there can be a man-in-the-middle and DNS Spoofing attack. DNSCrypt solve this problem by securing your DNS request using cryptography so that it's secured by these kind of attack.
  
  They have release the project's source on GitHub and you can start downloading it (only for Mac at the moment).
  
  Have a look on the project's announcement to find out more about this project

  

  
   
• 

  Wine 1.4 is Near

  Admin 9:04 pm on 28 January 2012 | 0 Permalink
  

  Wine, the project that enables users to run Windows application on Linux platform is now reaching a big milestone with 1.4 is getting frozen and the first RC version is out for public. The last major release was 1.2 and it was more than one year ago and since then, the developer has released a developer snapshot every two weeks and the last snapshot was 1.3.37 and now it has been replaced by 1.4-RC1.
  
  We will have a final 1.4 release this year and i hope that it will be another great release as more and more Windows application is running on Linux, makes it easier for user to switch to Linux.

  

  
   
• 

  Wine 1.4 is Near

  Admin 3:56 pm on 28 January 2012 | 0 Permalink
  

  Wine, the project that enables users to run Windows application on Linux platform is now reaching a big milestone with 1.4 is getting frozen and the first RC version is out for public. The last major release was 1.2 and it was more than one year ago and since then, the developer has released a developer snapshot every two weeks and the last snapshot was 1.3.37 and now it has been replaced by 1.4-RC1.
  
  We will have a final 1.4 release this year and i hope that it will be another great release as more and more Windows application is running on Linux, makes it easier for user to switch to Linux.

  

  
   
• 

  Mempodipper Bug

  Admin 5:42 am on 28 January 2012 | 0 Permalink
  

  For those who's using Linux Kernel 3.x, there's a serious bug in the Linux Kernel which can be misued to have a local privilege escalation via suid which is well explained on this site.
  
  The solution is quite easy: all you need is to upgrade to the latest Linux Kernel 3.2.2 and you should be safe.
  
  Here's what you will get when you are running a vulnerable kernel:
  

  bash-4.1$ ./mempodipper
  ===============================
  =          Mempodipper        =
  =           by zx2c4          =
  =         Jan 21, 2012        =
  ===============================
  
  [+] Opening socketpair.
  [+] Waiting for transferred fd in parent.
  [+] Executing child from child fork.
  [+] Opening parent mem /proc/3765/mem in child.
  [+] Sending fd 5 to parent.
  [+] Received fd at 5.
  [+] Assigning fd 5 to stderr.
  [+] Ptracing su to find next instruction without reading binary.
  [+] Resolved exit@plt to 0x80499e8.
  [+] Calculating su padding.
  [+] Seeking to offset 0x80499dc.
  [+] Executing su with shellcode.
  sh-4.1# id
  uid=0(root) gid=0(root)

  
  Quite nasty huh? So what are you waiting for? Go to the kernel site and grab the latest version (3.2.2 at minimum)

  

  
   
• 

  Mempodipper Bug

  Admin 1:56 am on 28 January 2012 | 0 Permalink
  

  For those who's using Linux Kernel 3.x, there's a serious bug in the Linux Kernel which can be misued to have a local privilege escalation via suid which is well explained on this site.
  
  The solution is quite easy: all you need is to upgrade to the latest Linux Kernel 3.2.2 and you should be safe.
  
  Here's what you will get when you are running a vulnerable kernel:
  

  bash-4.1$ ./mempodipper
  ===============================
  =          Mempodipper        =
  =           by zx2c4          =
  =         Jan 21, 2012        =
  ===============================
  
  [+] Opening socketpair.
  [+] Waiting for transferred fd in parent.
  [+] Executing child from child fork.
  [+] Opening parent mem /proc/3765/mem in child.
  [+] Sending fd 5 to parent.
  [+] Received fd at 5.
  [+] Assigning fd 5 to stderr.
  [+] Ptracing su to find next instruction without reading binary.
  [+] Resolved exit@plt to 0x80499e8.
  [+] Calculating su padding.
  [+] Seeking to offset 0x80499dc.
  [+] Executing su with shellcode.
  sh-4.1# id
  uid=0(root) gid=0(root)

  
  Quite nasty huh? So what are you waiting for? Go to the kernel site and grab the latest version (3.2.2 at minimum)

  

  
   
• 

  KDe 4.8.0 is Out

  Admin 1:31 pm on 26 January 2012 | 0 Permalink
  

  KDE 4.8.0 is now released by the KDE developers and it's dubbed as a major release, no longer a maintenance update like the previous release. This new release brings a major improvements to all components, such as Plasma Workspaces, Applications, and as a Platform.
  
  I have been running KDE 4.8.0 for few hours as i have just upgraded using AlienBOB's package on Slackware-Current and it feels so good. It's faster than previous release and i'm happy with it.
  
  KDE 4.8.0 will shortly be landing in your Linux distribution, so just wait and see to feel it. With this release, KDE 4.8.x branch will start it's monthly-release journey starting on February where they will deliver a maintenance release.