Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Firefox update 2.0.0.6 released

July 31st 2007

Firefox have released version 2.0.0.6 to address to fix two security issues: Unescaped URIs passed to external programs:http://www.mozilla.org/security/announce/2007/mfsa2007-27.html Privilege escalation through chrome-loaded about:blank windows:http://www.mozilla.org/security/announce/2007/mfsa2007-26.html A related security advisory has been released which says: “…it is still possible to launch a filetype handler based on extension rather than the registered protocol handler. A way to exploit […]

Read On Comments Off

I’ve been tagged too – stuff i couldn’t live without

July 29th 2007

It’s all Brian’s fault – here I am, after taking the weekend off, escaping to my holiday unit to read Harry Potter, trying to catch up on the millions of emails that arrived during my 24 hour absence (and the 3 million spam hiding said million important emails), when I spot that Brian wants me to do […]

Read On Comments Off

viruses, worms, botnets and hacking – instructional videos for new computer users

July 29th 2007

I admit, there are some statements in the first video that I would argue with (such as 50% of all spam coming from bots – it is far more than that – and some of the technical statements are inaccurate) but overall the videos are a good start and they get the message across.  Their target […]

Read On Comments Off

HOTFIX: A site does not run in the expected security zone in IE7 if the site address in the security zone uses a wildcard character

July 29th 2007

Symptom 1 A site address that uses a wildcard character overrides a site address that uses the exact name. For example, assume that you have added the “*.subdomain.domain.com” site address to the Local Intranet security zone. You also add the “server.subdomain.domain.com” site address to the Trusted Sites security zone. When you access the following Web […]

Read On Comments Off

HOTFIX: IE7 does not open a link in a new window as expected after you use Dynamic Data Exchange to integrate a program into IE7

July 27th 2007

Consider the following scenario. You use Dynamic Data Exchange (DDE) to integrate a program into Windows Internet Explorer 7. In this program, you configure some options to open links in new Internet Explorer windows. However, when you try to open a link in a new window, Internet Explorer 7 opens the link in a window […]

Read On 2 Comments

HOTFIX: The "Size (bytes) field displays the file size as Damaged when you view the file properties for an ActiveX control in IE7

July 27th 2007

Consider the following scenario. You download an ActiveX control. You view the file properties for the control in the Downloaded Program Files folder. You click the Dependency tab in the Properties dialog box. In this scenario, the Size (bytes) field may not display the file size in bytes. Instead, the Size (bytes) field displays the […]

Read On 2 Comments

The dangers of experimenting with online advertising…

July 27th 2007

A trackback on my site pointed me to www.eq2flames.com/general-gameplay/8990-seeking-ideas-make-people-less-upset-about-ads-20.html Now, ever since this blog (and many others) became the target of sustained attempts to seed the blog with comments pointing to URLs that attempt to infect systems with winfixer malware, I check trackbacks and comments and delete those that are a risk to visitors.  The […]

Read On 2 Comments

Attention developers: new IE6 and IE7 VPCs based on XPSP2 with the latest patched are planned for release on 10 August 2007

July 26th 2007

A common request by developers is that they want to run IE6 and IE7 side by side for testing purposes.  To address this need (and help developers avoid having to use the various hacks that almost/kinda/close enough met the developers’ need to run IE6 and IE7 on the same machine) the IE team started offering, […]

Read On Comments Off

Power to the people – WGA helps shut down the biggest software counterfeiting outfit in history

July 25th 2007

“Earlier today the Chinese government and the FBI announced the largest bust of counterfeit software manufacturing or distribution ever. The bust by the Chinese Public Security Bureau (PSB) in cooperation with the FBI and help from Microsoft and others was of a syndicate, headquartered in China’s Southern Guangdong province that is estimated to have sold […]

Read On 2 Comments

HOTFIX: Appointments that are sent between different Exchange Server organizations may be incorrect by one hour when one of the organizations is in the Western Australia time zone

July 25th 2007

Yep, I’ve been hit by this one :o( Daylight saving time (DST) was introduced to Western Australia for a three-year trial period that started December 3, 2006. The Microsoft Exchange Server 2003 Collaboration Data Objects (CDO) tables and Microsoft Office Outlook Web Access tables do not contain updated DST transition times for the Western Australia […]

Read On Comments Off