I am pleased to announce that Fleximus is now an official mirror for pfSense in Germany. As of this writing Fleximus is the only mirror located in Germany.
pfSense is a customized firewall and router distribution with FreeBSD under it's hood. pfSense started as a fork of the m0n0wall project in 2004.
Fleximus Blog
George Hotz alias geohot released his playstation 3 exploit to the public. It gains control of the hypervisor which could be used to run pirated PS3 games and game backups on the hacked machine.
You can find more details in his blog and also an article which explains what the exploit does for the less technical people.
You can find more details in his blog and also an article which explains what the exploit does for the less technical people.
Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted DNS packets.
Squid still using the obsolete dnsserver are not vulnerable.
The ignore_unknown_nameservers option affects the severity of this vulnerability. When set to "on" (the default) risk is low. When set to "off" the vulnerability risk is increased.
All unpatched Squid-3.0 versions up to and including 3.0.STABLE21 are vulnerable.
All unpatched Squid-3.1 versions up to and including 3.1.0.15 are vulnerable.
All unpatched Squid-2.x versions are vulnerable.
Using all of the following steps are required to protect a vulnerable Squid from this and other forms of DNS attack.
The most secure implementation of these requirements is to use a nameserver running on the localhost IP dedicated for secure use by Squid and any other services on the Squid machine.
http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
Vulnerable versions
Squid still using the obsolete dnsserver are not vulnerable.
The ignore_unknown_nameservers option affects the severity of this vulnerability. When set to "on" (the default) risk is low. When set to "off" the vulnerability risk is increased.
All unpatched Squid-3.0 versions up to and including 3.0.STABLE21 are vulnerable.
All unpatched Squid-3.1 versions up to and including 3.1.0.15 are vulnerable.
All unpatched Squid-2.x versions are vulnerable.
Workarounds
Using all of the following steps are required to protect a vulnerable Squid from this and other forms of DNS attack.
- Ensuring the ignore_unknown_nameservers is turned on.
- Ensuring that DNS packets cannot be sent to Squid from untrusted nameservers or other machines.
The most secure implementation of these requirements is to use a nameserver running on the localhost IP dedicated for secure use by Squid and any other services on the Squid machine.
Link to full advisory
http://www.squid-cache.org/Advisories/SQUID-2010_1.txt
The german antivirus company Avira has published statistics about file extensions used by malware in URLs that may occur in emails or infected websites for January 2010.
The most common extension used by malware is .exe (53.29%) followed by no file extension (18.99%) and the third place goes to .txt (10.37%).
The most common extension used by malware is .exe (53.29%) followed by no file extension (18.99%) and the third place goes to .txt (10.37%).
The website of the BSD magazine announces that the BSD Mag is now becoming a free monthly online publication. You can sign up to their newsletter and get every issue straight to your inbox.