Posted on

Goolag Scanner goes fishin

Storing ..um.. classified Information on your webserver in hidden directories is not exactly very bright because you can be sure that google will index anything it can get.

The goolag scanner, which was recently released by the famous hacker group cultDeadcow actually found pornography on chinese government owned (gov.cn) sites and security holes on western servers.

http://www.cultdeadcow.com/archives/2008/03/cult_of_the_dead_cow.php3

Please assume that files being stored in http://mydomain.com/_this/is/a_super/secret/directory/ will easily be found by simple methods such as specially designed search queries:

intitle:index.of +”last modified” +”parent directory” +(pdf|doc) +”Secret” -htm -html -php -asp

Posted on

Chaos Communication Camp 2007 DVD released

Finally, some decent video footage from the most awesome event i attended in the last few years.

ftp://ftp.ccc.de/camp2007/ccc_camp_2007_movie_DVD

Some news that might interest all the happy campers out there:

The Erlangen CCC organisation Bits n Bugs is hosting the ICMP4 this year. Not too much info up yet but be sure to check out the event wiki and the event site

Update

ICMP4 Website is up and the event ist sheduled for August 8-12

The ICMP is basically yet another outdoor hacker event which focuses on a lot of chill out and some lectures.

Posted on

No room for Vista in the business world

A survey by king research has shown that there is some pretty tight denial against Windows Vista in Business environments by IT administrators.

Some of the biggest marketing aspects of Vista are Direct X 10 and improved client security – two factors that are absolutely useless in a business environment. With the industry standards pointing toward open source technology and a very comprehensive use of Windows XP ( post SP2 release of course 😉 ) there is no real reason for any sane IT admin (hm ok that was a discrepancy there 😉 ) to currently migrate to the nextgen Windows.

Perhaps this is a good timing to migrate to open source software…

Neither or less you will have hell of a time with either Vista or OpenSource software migration so why not use something you can save licensing fees on and invest the savings into your employees or IT admin training.

Posted on

Meta Rheinmain Chaos Days coming up…

and that will probably be my final event for this year regarding IT related conferences…

Having been to Berlin twice this year already (LinuxTag and Chaos Communication Camp) i prefer locations that are not on the complete opposite side of germany, so the Chaos Days will be pretty close and i probably wont attend the Chaos communication Congress this year.

From the event page:

The “metarheinmain chaosdays” is a conference for those who are interested in the it sector and especially the it security aspect of it. Our goal is to facilitate the sharing of knowledge and the meeting of like minded individuals. The mrmcd110b – the sixth metarheinmain chaosdays – written in binary 110b – is an event sponsored by the university student group “chaos darmstadt”, a part of the ccc germany.

Check out the fahrplan (shedule) for the weekend as well…

Posted on

Chaos Communication Camp 2007: so far….

..so good.

Network performance is terrible and keeps on flooding. There seems to be a problem with spanning tree and various dhcp servers running within the network. The streams from both lecutre shelters are having some flaws but apart from that, the atmosphere so far has been great.

Meeting, talking and cooking with hackers from all over the world and the weather has been dry and very sunny.Parties are going on from dusk till dawn – it´s a small city that never sleeps.