mubix

Bash.org has been closed for quite a while. I tried starting up http://www.ircwallofshame.com/ but I haven't gotten any submissions.

Yup been out since ShmooCon '06

Boot Anonym.OS

The Microsoft one. They all read horrible, but you get the most extensive wealth of knowledge on it.

There was a post on Digg a while back about a DVD making software that allowed you make a multi distro live-dvd, which you could probably modify to put on your hd.

I second CDex as being a quite awesome ripper.

No problem, it is my job as the resident ____________ A) God B) Demi-God C) Expert D) Linux Guru E) Geek F) Bored dumbass G) newb

Create the forest, you'll thank me later

nicely done kYd. A+

this be the stupidest forum posting yet. aye. /me kicks Smeed down the stairs.

Are they both set up as domain masters? aka forest roots? If so, you are in for a shit storm and I would rebuild with 3 servers, the two already in place and a third you can make the domain master, or forest root, because that server will be burdened enough.

Is port forwading enabled on the Airport?

wow....

You can always try the xen linux distro. Lightweight and it boots VMWare style virtual machines. worth a look. You could probably put VNC on that, and watch it boot.

Yup, I was wrong. free porn would be the way to go.

Spam. That is the best way.

This question seems to come up ALL the time. Linux - Clamav Winders - NOD32 Mac - OSX which is both the virus and the virus detection.

http://digg.com/security/Missed_ShmooCon_Go_now./ DIGG IT!

Excuse the bump. Just trying to get the word out

Agreed. but I just want the scr

nope. NZB

Distributed Reflected Denial of Service. So you have all mostly heard of Distributed Denial of Service and how zombies work but here is a breif 'barney' style spin up: Hacking from ones house is not only stupid but not very efficient. You only have so much bandwidth and if you want to, lets say, hold an online gambling website for a million dollar randsom, one, you don't want to be caught, and two you have to pack a bigger punch then your 784kbps home DSL modem. So how does one do this? Through viruses, trojans, malware, and phishing, vulnerable host are silently infected with a 'zombie' program. This program connects to an IRC server and joins it's zombified pals. And contrary to popular belief, you don't need irssi, xchat, bitchx, or mIRC to connect to an IRC server. You can connect with telnet or my favorite tool, netcat. And the enduser will never know he/she is infected, since it isn't affecting his or her normal usage. Well that is until the zombie is activated by the zombie master. So this Zombie master is the 'cracker' who either wrote the IRC program or downloaded it and modified the configurations for another IRC server or channel. And when he joins that channel and issues a command, every zombie computer follows that command. So if he tells his zombie army or 'botnet' to ping a specific IP, and he could have 10s of thousands of zombies. That innocent 784 DSL, just got amplified 10,000 times. Which can pretty much take a small to mid size network to its knees in a matter of seconds. Just a side note. Ping is one of the mildest commands a zombie master can invoke. So now we know what DDoS is. What the heck is DrDoS? Well it's the exact same thing, except, the source IP is spoofed to a real IP address of another host that is to be attacked. So when the under attack network tries to respond to all these requests or pings, it will be in essence be becoming it's own worst nightmare. The attacked network will either be attacking itself or someone else. And chances are, the attacked network has much more than the 784kbps DSL we started with. Now that I have you scared. How can you protect against, 1. Being a zombie, and 2. Falling pray to DDoS and DrDoS. 1. You can deny IRC traffic on your network. But that doesn't mean they won't use another port. You can set up SNORT signatures to see RFC based IRC messages, which can catch IRC traffic on all ports. As a home user, make sure that you keep very aware of what traffic your computer is sending. A great way to do this is with TCPView from Sysinternals http://www.sysinternals.com/Utilities/TcpView.html 2. You really can't defend against DDoS and DrDoS at the moment. There are some great technologies for big buisness that cost big bucks, but if you are anywhere from a home user to a mid size buisness, your only hope is your ISP and the FBI.

:twisted: I didn't know it cost 200 bucks :twisted:

After reviewing my code to some of the other PoC code. I believe milw0rm may have sanitized the code. I'm working on getting the real exploit.

Let the Shmooing continue!