June 2007 - Posts

Malware over the years. It is only paranoia if they are not out to get you
25 June 07 09:56 PM

In a slight change of pace, I would like to talk about malware and how things have evolved. I am not exactly a spring chicken which surprises some people because I am still part of the support organization. I like it here – I am working on real problems Read More...

Postedby marklon | 2 Comments    

Filed under: Security, malware, viruses

Subtle holes let in the most dangerous people
20 June 07 01:34 PM

Hello again As Will correctly pointed out, the signed/unsigned ‘conversion’ will break the code here. Some of the things that make code less than secure can be very subtle indeed. If you didn’t see the comment then I will restate the point here. With Read More...

Postedby marklon | 1 Comments    

Filed under: Security

Buffer overruns - keeping the inside in
13 June 07 03:50 PM

Ah, another “Patch Tuesday” or “Update Tuesday” as we are supposed to call it. Patches have traditionally been replacements for only part of files and we typically replace multiple files. So, last blog, I wittered on about why buffer overflows were a Read More...

Postedby marklon | 2 Comments    

Filed under: Security

Buffer overruns and old school exploits
06 June 07 03:36 PM

I was asked to talk about Buffer overruns and I am happy to do that – although you will forgive me if I don’t give sample code, I hope. We don’t often talk about this but the BlackHats all know this material so I guess that it doesn’t much matter. In Read More...

Postedby marklon | 0 Comments    

Filed under: Security

Types of vulnerabilities - the missing scales on the dragon
04 June 07 07:27 PM

Back after a busy time and a break. Sometimes we get pulled on to a critical issue where we burn a lot of cycles and have nothing that we can discuss publically after the event. I lost a week or so doing that and then headed off to Kefalonia for a week Read More...

Postedby marklon | 0 Comments