Zeroday 01100100011010010

NYT article claiming to help with the issue of kiosk network connections. They could have keyboard sniffers, network sniffers, or just good old spyware.

Print edition

The filtering takes place in at least three ways:

de-listed domains: specific websites are removed entirely from search results; it is as if the website never existed.
de-listed urls: specific urls are removed from search results if they contain a de-listed domain.
restricted keywords: specific keywords are restricted to searches of web pages hosted in China only.

Derek Bambauer explains the legal ramifications of Service class blocking.
 http://blogs.law.harvard.edu/infolaw/200…

Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.

 - Ethereal/Tcpdump compatible data logging
- Airsnort compatible weak-iv packet logging
- Network IP range detection
- Built-in channel hopping and multicard split channel hopping
- Hidden network SSID decloaking
- Graphical mapping of networks

Q: What happens when I ask a question thats already answered here?
A: I’ll probably be rude to you and tell you to go read the docs.
But of course everyone already read the docs all the way to the end,
right? Right?

Greater Boston Area 802.11 Wireless Database
 http://www.digivill.net/~mowse/gba80211/

NYC Wireless Group
 http://nycwireless.net/

Filed in Digital Warfare, Interesting Tech, zeroday | Comments (0) | Permalink

Legal perspective on Internet Filtering from John Palfrey.

More on Psiphon

Psiphon is a censorship circumvention solution allowing users to access blocked sites in countries where the Internet is censored. Psiphon turns a regular home computer into a personal, encrypted server capable of retrieving and displaying web pages anywhere.

Paper by Berkman’s J Zittrain on Chinese Filtering (warn: PDF)!

/whois jzittrain

Jonathan Zittrain - Berkman Center for Internet & Society
Jonathan Zittrain is a co-founder of HLS’s Berkman Center for Internet & Society and served as its first executive director from 1997-2000.

For more information:
from the bug logs:
There seems to me a consistant misuse of autoconf “localstatedir” variable. It is traditionally seen that localstatedir be $prefix/var if not supplied. In the following example from nessus-adduser.in there are two issues. One being that if $localstate dir was $prefix/var then this would create $prefix/var/lib/nesuss. And the second being that nessus-adduser.in is broken. If in this case the auth type is “pass” and MD5 is not present, it will make an auth password in an entirely different tree then if it did have MD5

Plug in count seems low or maybe I’m reading this wrong. Check out the nikto plugin.

The SSH DSA fingerprint is: 08:e9:69:cb:d6:42:9f:24:7d:40:de:12:ee:9e:92:23. The SSH RSA fingerprint is: 48:5f:a5:1c:7e:1c:b4:ef:53:b9:08:49:2d:c0:cb:1b.

Date: Mon, 9 Apr 2007 09:50:04 -0400
From: “Jon D”
Subject: Giving Nessus Reports to clients — Licensing, Legal, etc
To:  nessus at list.nessus.org
Message-ID:

Content-Type: text/plain; charset=”iso-8859-1″

I’ve heard of PenTesters giving a Nessus scan report to the client as part
of their final report.
I read through the nessus licensing agreement, and I didn’t say where it
said it’s not allowed.

Is this legal?
Also, is it legal to copy text from the nessus scan for a report?