HackNBlog @ Salamanteri Server

Swiiftfox fanwork logo

I was and still am going to install Greasemonkey plugin for my SwiftFox (optimived version of Firefox, with patches an code optimization for CPU in use).

There are however security issues - some fixed unlless you use old version (in case you have old ccomputer that can’t run veru modern FF) and some are easy to prevent. IF you read the documentiation, and in this case the section “Avoid Common Pitfalls“. Of course reading the whole manual is a good idea.

I may infact intead of regular FF plugins start making Greasemonkey scripts, though that willl require the user to installl Greasemonkey to get my add-on - oh welll, I could think that if he doesn’t then he does not need it - or better yet, maybe he does not even deserve it (tee-hee, I make a joke).

Anyway, have a nice day - I have gone FF add-on mental, pretty soon I will post all add-ons that I installed and yound actually worthy to keep.

Now there seems to be a similiar new case in Facebook. It seems like te send a fake message from one of your friends showing your firends name and picture and a link to a video. Opening link seems like YouTube but has a message in middle of screen telling that you need to install new version or Adobe Flash Player.

Cliking on install will however not update Flash but instead instead a new version of Koobface worm. This worm is also spread on MySpace and, unlike the last one I posted about, on Friendster.

Koobface will let black hats to run commands on infected computers. Naturally this will only be a problem for Windows users as the worm cant infect other OS’s but according to stast of my blog quite a few visitors I get are using a Windows system so I decided it to be best to warn people again.

There is more information about this on security site TrendMicro and on F-Secure Malware Information Pages.

From the page:

In just 20 minutes, he found and cloned the passports of two very unaware US citizens

Do watch the 5-minute video: http://www.engadget.com/2009/02/02/video-hacker-war-drives-san-francisco-cloning-rfid-passports/.

Btw, Steve, if offended about me copying your entry, take contact and I’ll remove or rewrite the thing. Hope you wont though ;)

Note! This post discusses a lot about program here and often elsewhere called “SecureROM” - apparently the correct name would be SecuROM

Something interesting I bumped into… There is a good bunch of examples of why DRM protection of software (usually games) is a bad idea. Most notable reasons being as simple as following: While DRM protection has not prevented a single game from becoming available as pirate copy with protection being removed, for those willing to buy the game the copy protection does instead create problems ranging from minor annoying to outrageous problems concerning functionality of the whole operating system. This alone should be reason enough to abandon DRM technologies but still several companies don’t seem to understand this… Today I bumped into good example of how trying to use DRM as futile attempt to prevent a game from being pirated can also be a massive failure creating a huge loss in game sales and resulting to 100% opposite effect than what was hoped. Electronic Arts has been using a DRM system named “SecureROM” on some of their games, including their hit game “Spore” which has resulted in huge losses for the company itself. This protection software can rightfully be considered as highly harmful malware. Some of the things the user should know of what happens when you install Spore obtained from legitimate source and thus requiring SecureROM:

• SecureROM is cant be uninstalled by uninstalling Spore, nor with uninstaller of it’s own. The user has to do certain special steps to get rid of it.
• SecureROM constantly monitors usage of the system and thus creates possible and severe security risks, uses system resources (CPU and memory) all the time and thus generally lowers usability and security of the system.
• Cripples functionality of the whole operating system. According to several users this malware has, for example, prevented the OS from recognizing some hardware changes like installing a new dvd-drive. Some users have also reported not being able to burn any data on DVD’s. In some cases apparently the whole OS has stopped to function after CPU or motherboard change (or other large changes in hardware) when SecureROM is installed.
• and more…

(more…)

I decided to enable SSL-secured access to this server. The system running Salamanteri is Fedora 7 Linux + Apache 2 (at the moment of writing) so at least with Fedora 7 anything I did should work too. Yes, I wrote a description for those webmasters without knowlege about everything (should be easy enough to adapt my “guide” for other distributions or unixes.

Whatever the reason you might want to connect securely (https://salamanteri.homelinux.net/wordpress/), my reason was gaining a way to securely login to administration page without separate ssh-tunnel.

How to do it?

(more…)

I decided it best to inform MySpace and/or FaceBook users about a new nasty malware spreading trough messages seeming to come from the users friend. I found this information from another blog, but here’s a quote from there:

The messages look like they contain links to video clips. When clicked on they prompt the recipient to download an executable file that purports to be the latest version of Flash Player. Instead, it is the worm itself, infecting yet another victim.

Go read the whole article from Dan Morrils IT security blog.