Theo de Raadt posts some concerns about Core 2 processors. Interesting quotes include:
"Various developers are busy implimenting (sic) workarounds for serious bugs
in Intel's Core 2 cpu.
These processors are buggy as hell, and some of these bugs don't just
cause development/debugging problems, but will *ASSUREDLY* be
exploitable from userland code."
and:
"Note that some errata like AI65, AI79, AI43, AI39, AI90, AI99 scare
the hell out of us. Some of these are things that cannot be fixed in
running code, and some are things that every operating system will do
until about mid-2008.."
and:
"At this time, I cannot recommend purchase of any machines based on the
Intel Core 2 until these issues are dealt with (which I suspect will
take more than a year). Intel must be come more transparent.
(While here, I would like to say that AMD is becoming less helpful day
by day towards open source operating systems too, perhaps because
their serious errata lists are growing rapidly too)."
A good, easy to understand summary for normal people is here: http://www.geek.com/images/geeknews/2006Jan/core_duo_errata__2006_01_21__full.gif
Only one bug is listed due to be fixed by Intel. All others are to be fixed by BIOS or OS producers.
Labels: Bug, Hardware, Vulnerability
TROJ_STRAT.GI Malware type: Trojan
Aliases: No Alias Found
In the wild: Yes
Destructive: No
Language: English
File type: PE
Memory resident: Yes
Size of malware: 20,576 Bytes (compressed)
Initial samples received on: Jun 11, 2007
Payload 1: Downloads files
Details:This Trojan arrives as an attachment to email messages spammed by another malware or a malicious user.
It accesses the following Web site to download and execute a file:
http://{BLOCKED}esunhaxazedesa.com/getw.exe- detected by Trend Micro as WORM_STRAT.GI
As a result, routines of the downloaded worm are also exhibited on the affected system.
It comes with its own compression and runs on Windows 98, ME, NT, 2000, XP, and Server 2003.
Analysis By: Luis Antonio P. Magisa
Copyright (c) 1989-2007 Trend Micro Incorporated. All rights reserved.
Labels: Spam, Trojan
PHB passwords
Bad password policy number 42.
Labels: Insecurity
Spamhaus's web servers came under a DDoS attack starting yesterday at
just after 21:00 GMT. The attack is being carried out by the same people
responsible for the BlueSecurity DDoS last year, using the
Storm malware.
The attack method was sufficiently different to previous DDoS attacks on
us that some of it got through our normal anti-DDoS defenses and halted
our web servers.
At 02:00 GMT we got the attack under control and our web servers are now
back up, www.spamhaus.org is running again as normal.
The attack is ongoing, but it's being absorbed by anti-DDoS defenses.
Also under attack by the same gang are SURBL and URIBL.
Storm is the 'nightmare' botnet, capable of taking out government
facilities and causing much mayhem on the internet. It has 3 functions;
sending spam, fast-flux web and dns hosting mainly for stock scams, and
DDoS. There is a hefty international effort underway by cyber-forensics
teams in a joint effort by law enforcement and private sector botnet and
malware analysts to trace the perpetrators.
--
Steve Linford
The Spamhaus Project
http://www.spamhaus.org
Labels: Attack Tools, Botnet, DoS, Spam