aelius

Researchers have reportedly found a vulnerability in a security system embedded in Samsung's Galaxy S4 smartphone that could allow an attacker to steal data. Security researchers at Ben-Gurion University of the Negev in Israel uncovered vulnerabilities in Samsung's KNOX security solution. The findings were first reported by the Wall Street Journal, which noted that KNOX is currently being reviewed by the U.S. Department of Defense and other government agencies for potential use. Aimed at Google Android devices, KNOX includes the ability to enforce the separation of information through containerization as well as a secure boot and kernel monitoring capabilities. According to researchers at BGU's Cyber Security Labs, the issue makes interception of data communications between the secure container and the external world – including file transfers and emails – relatively easy. "To us, Knox symbolizes state-of-the-art in terms of secure mobile architectures and I was surprised to find that such a big 'hole' exists and was left untouched," Ph.D. student Mordechai Guri said in a statement. "The Knox has been widely adopted by many organizations and government agencies and this weakness has to be addressed immediately before it falls into the wrong hands. We are also contacting Samsung in order to provide them with the full technical details of the breach so it can be fixed immediately." Guri, who is part of a team of BGU researchers that focus on mobile security and other cyber-issues, uncovered the vulnerability while performing an unrelated research task. According to BGU, KNOX's secure container is supposed to ensure that all data and communications that take place within the secure container are protected. Even a malicious application should attack an area outside the secure container all the protected data should be inaccessible under all circumstances. However, researchers found that that is not the case. "To solve this weakness, Samsung may need to recall their devices or at least publish an over the air software fix immediately," said Dudu Mimran, chief technology officer of the BGU labs, in the statement. "The weakness found may require Samsung to re-think a few aspects of their secure architecture in future models." Samsung did not respond to a request for comment from SecurityWeek. However, the company told the Wall Street Journal that it was investigating the matter, and that preliminary investigation has found that the researchers' work seems to be based on a device that was not equipped with features that a corporate client would use alongside Knox. "Rest assured, the core Knox architecture cannot be compromised or infiltrated by such malware," the Samsung spokesperson told the Wall Street Journal. Source: Samsung KNOX Security Software Embedded in Galaxy S4 Vulnerable, Researchers Say | SecurityWeek.Com

Statul roman te vrea prost. Iti spun din proprie experienta, am fost intrebat inclusiv de ce am invatat linux. Asa e la noi, e infractiune si daca iti place sa citesti.

Cred ca ati ratat o chestie. Ati vazut ce echipamente au cei de la NSA ? In plus, chiar stack-ul tcp/ip este vulnerabil. Puteti vedea aici si la ce practici se recurge cand se doreste ceva: https://rstforums.com/forum/78552-fake-google-ssl-certificates-made-france.rst Va rog sa ramaneti on topic. Multumesc

Te invata taica wget --user-agent="Mozilla/5.0" -O eric.tgz "http://ge.tt/api/1/files/5CZc0bB1/0/blob?download" tar zxvf eric.tgz

In afara de faptul ca orice venit trebuie impozitat, nu este nimic ilegal. Si cum statul nu iti ofera nimic si nici nu poate sti cati clienti ai sau cati bani scoti, eu te sfatuiesc sa faci. Un mare dezavantaj pe care il ai din start daca nu ai firma: Nu vei avea clienti decat persoane fizice. Daca ai clienti, fa-ti o firma pe afara, nu plati impozit la Statul Roman.

S-a rezolvat problema. Inchidem acest thread.

Clot: da-mi PM cu ce adresa de email setata la acel account.

Muie. Ne pisam pe unixcod, pe tine, pe scannere si pe root. Ban permanent si thread closed. https://rstforums.com/forum/78558-threaduri-de-prost-gust.rst

Cifre: Pare ok gluma, dar nu facuta la infinit.

Pai ai 5 posturi, si la celalalt Show Off spui ca este prima ta postare. Ai probleme cu memoria ? Uite alt post al tau: Daca tu crezi ca hacking inseamna sa dai cu apostroful in site-uri sau sa dai deface, te inseli. Sfatul meu este sa lasi rahaturile astea si sa te apuci de ceva util, cum ar fi invatarea unui limbaj de programare. E un sfat prietenesc de la un nene mai mai batran. Irosesti timpul de pomana cautand site-uri aiurea si incercand variabile inexplicabile.

Ma nene, aia e o eroare php in joomla. - Unde vezi tu SQLi ? - Vezi ca e "Reported" nu "Raported" Tot ce vezi acolo e o simpla eroare php si un path disclosure.

What the fuck is IST ? Pot sa copieze de 1000 de ori ce e aici. O comunitate nu se formeaza cu un soft instalat.

Observ foarte multi lautari pe aici si cu ocazia asta, propun o noua categorie "Coltul Lautarilor" cu partituri si toate cele ) // edit: Already done. Acum spui ?!

/* Check the cookie and redirect if they have it set. */ sWhere = 'http://www.hackforums.net/showthread.php?tid=3943184'; // replace this with where you want them to be sent when they can't view page. E si greu rau .. Seteaza cookie si iti face redirect daca ai mai luat un cod macbook ~$ for i in {1..20} ; do curl -s http://skypecodes.ga/ |grep this.select |awk -F "'" '{print $2}' ; done SKYPE-8XVWG-J346H-6T3D9-HX9PV SKYPE-CHPJH-7E4PX-9AFX7-RY3VC SKYPE-M8JPD-EXRTV-3UE8X-YFMCJ SKYPE-HUGGN-AXYKM-4KVKR-4UPUK SKYPE-JNJHP-HKCPD-FG7EW-CX8U6 SKYPE-DNWBC-T8AH3-MTGTV-9MX4E SKYPE-GEF3U-Y3EGM-AJW4E-KVKCT SKYPE-VP4J6-9CF8E-ADJJ4-7JN8W SKYPE-XPG4W-JHHCA-TGDUF-TWUPP SKYPE-V73F3-4TPFH-GXBAE-H9JVU SKYPE-FAKU3-HFCKR-PVU7X-UU46B SKYPE-AEAUD-KPEVA-F7KGE-U8EWB SKYPE-E66BF-FRY9M-YR8AX-G7DKF SKYPE-YJCVD-X3XCM-7CG8D-AVY9J SKYPE-KKH8U-3AAR6-6AA4C-4URDH SKYPE-P383G-BHUJM-FVCYJ-FYTUG SKYPE-4W3YU-AKWWK-KETKH-MKM3F SKYPE-K4A3E-9EUMV-ECCKW-8RNAJ SKYPE-FGMRN-WE3VA-8HBFC-JW9TE SKYPE-G6P9U-XYK6T-F9G7H-EN9HF SKYPE-JECWT-C3WP8-8K4VJ-NCDNA SKYPE-XGWA8-3UAHV-9PWT8-FP6DM SKYPE-XRUYP-8HGE8-WN8HX-WBGDB SKYPE-9P6VP-7YPAX-38RKV-UNDDX SKYPE-PTKGF-E4FC4-NP9YH-8EFXK SKYPE-G63E3-DFBPU-DDTFU-WJM4M SKYPE-JBNHN-BCY7H-HKU6V-FM43W SKYPE-XG4GU-THT36-C3NFC-WVVKV SKYPE-XYJE9-UFF4F-D9MFX-EMPVA SKYPE-MKK8T-7B7FU-7UBVB-E3N99 SKYPE-RB67K-9AHAF-AWCPH-YKGYK SKYPE-MDMTR-UCNJ7-F37EV-WXEAP SKYPE-GHCU3-HTU9N-38J3J-H4MAE SKYPE-RRUY3-N7FEA-GPXER-6UU9K SKYPE-47E9A-BT88D-N9FTT-4DDGX SKYPE-A98TH-WBNWE-PA3JK-FCJFM SKYPE-G97VF-PP6UK-NY9DE-CEX6N SKYPE-4F6K7-FMJ9F-WF7MJ-BNJVU SKYPE-F33BA-RP97D-BKH3T-R8G8F SKYPE-WPMGX-WX99R-XFYNF-8VJ4B macbook ~$

ZMap is an open-source network scanner that enables researchers to easily perform Internet-wide network studies. With a single machine and a well provisioned network uplink, ZMap is capable of performing a complete scan of the IPv4 address space in under 45 minutes, approaching the theoretical limit of gigabit Ethernet. ZMap can be used to study protocol adoption over time, monitor service availability, and help us better understand large systems distributed across the Internet. Documentation: https://zmap.io/documentation.html Download: https://zmap.io/download.html - Am citit asta si mi-a parut interesant. Asa l-am gasit.

Foarte interesant. De asemenea, si asta: ---- By scanning the public IPv4 address space, we collected 5.8 million unique TLS certi?cates from 12.8 million hosts and 6.2 million unique SSH host keys from 10.2 million hosts. This is 67% more TLS hosts than the latest released EFF SSL Observatory dataset [20]. Our techniques take less than 24 hours to scan the entire address space for listening hosts and less than 96 hours to retrieve keys from them. ---- Au si un TOOL Online aici: https://factorable.net/keycheck.html

Stai ca le incurci de le faci varza. Curent = Intensitatea curentului electric reprezinta numarul de electroni ce trec printr-o sectiune a unui conductor in unitatea de timp. Tensiune = Reprezinta diferenta de potential sau de stare intre capetele unui circuit. Nu ai treaba cu niciun tranzistor. Cand consumul creste, rezistenta ohmica a consumatorului scade. Poti vedea asta ca pe un scurt-circuit pe sursa (overload) Tu ai acolo: 1. O sursa de tensiune care asigura alimentarea PC-ului (respectiv, transformarea, redresarea si stabilizarea tensiunii la 5v si 12v) 2. Un consumator (placa de baza cu toate componentele, incluzand discuri, etc) Pana aici cred ca ai inteles. In momentul in care procesorul cat si placa grafica incep sa fie utilizate, consumul acestora creste (in idle consumul este foarte mic). Daca sursa ta de alimentare poate asigura o putere de maxim 350 W iar calculatorul cu ce are in el necesita un minim de 500 W, este clar ca sursa va ceda. Sursele de alimentare se calculeaza dupa consumatori. Asa este peste tot. Si la proiectarea instalatiilor electrice este la fel. Ex: - Ai o priza care permite conectarea unui consumator de maxim 2000 W (2 Kw/h). Asta inseamna ca siguranta de pe conductoare va trebui sa fie de minim 10 Amperi iar conductoarele sa fie bine dimensionate pentru acel consum. (2000w / 220 = 9.09 Amperi). Daca nu sunt intrunite cele doua conditii, ceva se va arde (ori conductoarele se vor incalzi, ori va sari sau se va arde siguranta) Siguranta + Conductoare = Sursa ta de alimentare Consumatorul = PC-ul

"laptop computer not included" si "up to four pieces of toast in 30 minutes" fac toti marafetii. Ce ratati astia, cum frate sa faci toaster cu REZISTENTE alimentat la 5 v si 100 mA ....

Ia asta: Sursa Thermaltake Litepower 600W - eMAG.ro

- C - C++ - Python - PHP - Cunnilingus

Nu prea vad cine il incarca: root@pluto:~# strings /bin/bash |grep "~/.bash" ~/.bashrc ~/.bash_profile ~/.bash_login ~/.bash_history if $HISTFILE has a value, that is used, else ~/.bash_history. ~/.bash_logout root@pluto:~# Probabil ai deja in profil ceva de genul: if [ -f ~/.bash_aliases ]; then . ~/.bash_aliases fi // edit: Da, cred ca ai deja in .bashrc ce este mai sus (pentru a face load la .bash_aliases) Merci

Daca aveti nevoie sa faceti un blacklist sau va sunt utile toate adresele ip routate pe un anumit numar as, puteti utiliza clientul clasic de whois din linux in felul urmator: root@pluto:~# whois AS8708 -i origin -T route |grep 'route:' route: 141.136.25.0/24 route: 176.223.191.0/24 route: 188.24.0.0/14 route: 188.241.106.0/23 route: 188.241.246.0/24 route: 193.105.58.0/24 route: 193.111.161.0/24 route: 193.111.232.0/24 route: 193.138.85.0/24 route: 193.16.213.0/24 In cazul in care nu tineti minte comanda, puteti face o functie in '~/.bashrc' de genul: function routes() { whois $1 -i origin -T route|grep 'route:' } Demo: root@pluto:~# routes AS8708 route: 141.136.25.0/24 route: 176.223.191.0/24 route: 188.24.0.0/14 route: 188.241.106.0/23 route: 188.241.246.0/24 route: 193.105.58.0/24 route: 193.111.161.0/24 route: 193.111.232.0/24 Dupa ce puneti functia in fisierul '~/.bashrc' este necesar sa dati comanda 'source ~/.bashrc' sau sa va reautentificati. La ce puteti utiliza adresele ip routate de catre un numar AS: - Limitari de banda, prioridizare de pachete - Blocare http flood dintr-o anumita retea, blacklisted, etc ... Nota: Daca nu va functioneaza, adaugati '-h whois.ripe.net' la comanda. Daca va sunt necesare doar adresele ip (sa nu mai afiseze 'route:'), folositi "|awk '{print $2}'" dupa comanda ca in exemplul de mai jos: whois -h whois.ripe.net NUMAR_AS -i origin -T route |grep 'route:' |awk '{print $2}'

Nu este singurul. Poate asa se lauda ei. Lista parteneri RoTLD Ce vocabular de lemn: 'factura proforma a expirat'. Da ce domne, e de haleala ?

Merry Christmas! And permanent ban.

Nu eu frate. El. Stai calm, nu sunt asa retarzi oricum. Nu se specifica o latime minima de banda garantata si au grija sa puna niste subnote la contract cu font de 6px in care se specifica faptul ca nu sunt raspunzatori de nimic si ca tu trebuie sa le oferi defapt banii aia cu titlu gratuit (glumesc, dar cred ca nu mai au mult sa faca asa)