topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Sunday December 21, 2025, 2:32 pm
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Recent Posts

Pages: prev1 ... 223 224 225 226 227 [228] 229 230 231 232 233 ... 404next
5676
Developer's Corner / Re: Nerdy Data - source code search engine
« Last post by wraith808 on August 04, 2013, 07:50 PM »
The free account on NerdyData will allow the user to search 200 times per month and 10 results per query, with a professional account costing $99 per month, it will allow 1,200 searches and up to 5,000 results per query. Similarly, for enterprise account, it will cost $149/month, and will allow the user to search 3,000 times per month and for every query 100,000 results.

No thanks.
5677
Living Room / Re: BREAKING: Half of TOR sites compromised, including TORMail.
« Last post by wraith808 on August 04, 2013, 07:49 PM »
Oh... I don't think that anyone who knows anything would say that after Stuxnet.  I just wish they'd use their superpowers for good instead of evil.
5678
Living Room / BREAKING: Half of TOR sites compromised, including TORMail.
« Last post by wraith808 on August 04, 2013, 05:42 PM »
(from TwitLonger)

The founder of Freedom Hosting has been arrested in Ireland and is awaiting extradition to USA.

In a crackdown that FBI claims to be about hunting down pedophiles, half of the onion sites in the TOR network has been compromised, including the e-mail counterpart of TOR deep web, TORmail.

http://www.independe...planet-29469402.html

This is undoubtedly a big blow to the TOR community, Crypto Anarchists, and more generally, to Internet anonymity. All of this happening during DEFCON.

If you happen to use and account name and or password combinations that you have re used in the TOR deep web, change them NOW.

Eric Eoin Marques who was arrested runs a company called Host Ultra Limited.

http://www.solocheck...Ultra-Limited-399806
http://www.hostultra.com/

He has an account at WebHosting Talk forums.

http://www.webhostin...wthread.php?t=157698

A few days ago there were mass outages of Tor hidden services that predominantly effected Freedom Hosting websites.

http://postimg.org/image/ltj1j1j6v/

"Down for Maintenance
Sorry, This server is currently offline for maintenance. Please try again in a few hours."

If you saw this while browsing Tor you went to an onion hosted by Freedom Hosting. The javascript exploit was injected into your browser if you had javascript enabled.

What the exploit does:

The JavaScript zero-day exploit that creates a unique cookie and sends a request to a random server that basically fingerprints your browser in some way, which is probably then correlated somewhere else since the cookie doesn't get deleted. Presumably it reports the victim's IP back to the FBI.

An iframe is injected into FH-hosted sites:

TOR/FREEDOM HOST COMPORMISED
By: a guest on Aug 3rd, 2013
http://pastebin.com/pmGEj9bV

Which leads to this obfuscated code:

Javascript Mozilla Pastebin
Posted by Anonymous on Sun 4th Aug 02:52
http://pastebin.mozilla.org/2776374

FH STILL COMPROMISED
By: a guest on Aug 3rd, 2013
http://pastebin.com/K61QZpzb

FBI Hidden Service in connection with the JavaScript exploit:
7ydnpplko5lbgfx5

Who's affected Time scales:

Anyone who accessed an FH site in the past two days with JavaScript enabled. Eric Eoin Marques was arrested on Sunday so that's the earliest possible date.

"In this paper we expose flaws both in the design and implementation of Tor’s hidden services that allow an attacker to measure the popularity of arbitrary hidden services, take down hidden services and deanonymize hidden services
Trawling for Tor Hidden Services: Detection, Measurement, Deanonymization"

http://www.ieee-secu.../papers/4977a080.pdf

The FBI Ran a Child Porn Site for Two Whole Weeks
http://gizmodo.com/w...hole-weeks-510247728

http://postimg.org/image/o4qaep8pz/

On any other day one would say these sick perverts got what they deserved. Unfortunately the Feds are stepping far beyond just pedophiles in this latest issue.

The js inserted at Freedom Hosting? Nothing really, just an iframe inject script with a UUID embedded server-side.

The iframe then delivers an exploit kit that appears to be a JavaScript 0day leading to...something. It only attempts to exploit Firefox (17 and up) on Windows NT. There's definitely some heap spraying and some possible shell code. The suspect shell code block contains some strings that look to formulate an HTTP request, but I haven't been able to collect the final payload yet. The shell code also contains the UUID with which the exploit was delivered. Any UUID will work to get this part of the exploit.

I'm still pulling this little bundle of malware apart. So far, I've got that the attack is split across three separate files, each loaded into an iframe. Calls are made between the frames to further obfuscate the control flow. The 'content_2.html' and 'content_3.html' files are only served up if the request "looks like" Firefox and has a correct Referer header. The 'content_2.html' is loaded from the main exploit iframe and in turn loads 'content_3.html'.

Short version. Preliminary analysis: This little thing probably CAN reach out without going through Tor. It appears to be exploiting the JavaScript runtime in Firefox to download something.

UPDATE: The exploit only affects Firefox 17 and involves several JS heap-sprays. Note that the current Extended Support Release is Firefox 17, so this may also affect some large organizations using Firefox ESR.

http://pastebin.mozilla.org/2777139

The script will only attempt the exploit on Firefox 17, so I'm no longer worried about it being some new 0day. Enough of the "Critical" MFSAs are for various sorts of memory corruption that I don't have the time to find out if this is actually a new exploit or something seen before.

http://postimg.org/image/mb66vvjsh/

Logical outcomes from this?

1. FBI/NSA just shut down the #1 biggest hosting site and #1 most wanted person on Tor

2. Silkroad is next on their list, being the #2 most wanted (#1 was Child Porn, #2 is drugs)

3. Bitcoin and all crypto currenecies set to absolutely CRASH as a result since the feds can not completely control this currency as they please.

I don't always call the Feds agenda transparent, but when i do, I say they can be trying harder.
5679
Living Room / Re: PLease help superboyac build a server (2013 edition).
« Last post by wraith808 on August 04, 2013, 05:29 PM »
It has a drain valve yes, but it hasn't produced a single drop in 3 months.
-Stoic Joker (August 04, 2013, 04:04 PM)

Thanks for that... I've been looking at this for my man cave, but it has no windows, and I was worried about that so didn't get it.  So what do you do with the hose?  Do you just have it going out of the window?
5680
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 04, 2013, 02:56 PM »
Thanks for the test. I notice even in your test, the closing braces aren't indented correctly. I wound up just linking to two separate listings of the code snippet.
-kyrathaba (August 04, 2013, 02:30 PM)

Yeah... it just highlights... not indents.  You have to do the indents yourself, although I think there are settings for that.  For example:

Code: C# [Select]
  1. using System;
  2. using System.Runtime.InteropServices;
  3. using System.Windows.Forms;
  4.  
  5. namespace MoveFormWithoutTitlebar {
  6. public partial class Form1 : Form {
  7.  
  8. public const int WM_NCLBUTTONDOWN = 0xA1;
  9. public const int HT_CAPTION = 0x2;
  10.  
  11. [DllImportAttribute("user32.dll")]
  12. public static extern int SendMessage(IntPtr hWnd,
  13. int Msg, int wParam, int lParam);
  14.  
  15. [DllImportAttribute("user32.dll")]
  16. public static extern bool ReleaseCapture();
  17.  
  18. public Form1() {
  19. InitializeComponent();
  20. }
  21.  
  22. private void Form1_MouseDown(object sender, MouseEventArgs e) {
  23. if (e.Button == MouseButtons.Left) {
  24. ReleaseCapture();
  25. SendMessage(Handle, WM_NCLBUTTONDOWN, HT_CAPTION, 0);
  26. }
  27. }
  28. }
  29. }

The DC code highlighter uses GeSHi also, so it doesn't indent either.
5681
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 02:25 PM »
But what I don't get is his cast.  Everyone knows who Uwe Boll is and what kind of movies he makes.  But they still sign up for it... do they need the paycheck that bad?!?

And I'm not talking the bit people... he gets some pretty big names, and drags them along with him.
5682
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 04, 2013, 02:21 PM »
Hmmm... It does appear to be something with your installation- I took your code and pasted it on my blog:

http://thinkshui.net...sting-crayon-plugin/

I used the crayon plugin window to paste the code into with the default options if that helps.
5683
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 04, 2013, 01:32 PM »
Hmmm... try to copy the code to a plain text editor, then copy it back.  What you're trying to do is remove any extraneous characters that might be affecting the output. 

If that doesn't work, I'm not sure.  I've not seen that before... :(

I'll try it on my blog...
5684
Living Room / Re: Worth Reading: Trevor Pott's editorial on NSA PRISM and its real ramifications
« Last post by wraith808 on August 04, 2013, 01:30 PM »
That's why no comment :(
5685
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 12:47 PM »
What the hell. Why not Uwe Boll. He can turn any movie into a horror story.

Sorry, I forgot that's horrible not horror. My mistake.
-Vurbal (August 04, 2013, 12:12 PM)

OMG... I'm just hoping that Uwe Boll never gets another cent to make a movie.  I swear, he must have some really good dirt on someone to get the names and the money and the rights to continue to slaughter movies.
5686
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 12:46 PM »
Yeah he definitely had some humor and I wouldn't put anything past Whedon. He just tends to remind me more of 40's Cary Grant, cute rapid-fire repartee but I guess Firefly's humor had a more serious edge.

Jayne, your mouth's talkin. You should see to that.
-Vurbal (August 04, 2013, 12:09 PM)

One of my favorite quotes.  But one of my favorite dark episodes was War Stories.  The part while they were getting tortured?  There was some comedy gold there... but you felt bad for laughing.
5687
Living Room / Re: Worth Reading: Trevor Pott's editorial on NSA PRISM and its real ramifications
« Last post by wraith808 on August 04, 2013, 12:25 PM »
Presented without further comment...

Members of Congress denied access to basic information about NSA

5688
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 04, 2013, 12:12 PM »
Hmmm... not sure past that.  Your syntax looks right...

My suggestion: life's too short to try to debug an extension when you're doing things right, and there are several options out there.

I'd try http://wordpress.org...-syntax-highlighter/ :)
5689
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 12:08 PM »
I have an original Deities & Demigods with all that in it. Though I bought it well after it came out - found it in a store one day and snatched it up real quick.
-Renegade (August 04, 2013, 11:24 AM)

I bought mine new from the store. :P  I was like 10 or so at the time... but still.

The funnier thing... I worked at that same store 8 years later... and the person I bought it from was still working there.  And he wasn't the owner.  Flash forward 20 or so years with me working part time there sometimes (for credit, natch)... and that guy was still working there when the store closed down.
5690
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 12:02 PM »
If Joss Whedon was writing I'd rather it died in pre-production. Don't get me wrong, I love his glib dialog, but for Lovecraft? Might as well make it a romantic comedy.
-Vurbal (August 04, 2013, 11:35 AM)

I totally agree.  I love Whedon, but some things just weren't meant to mix.
5691
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 12:01 PM »
And I'd like to see At the Mountains of Madness get made so badly that I don't think I really care who (within reason) makes it at this point.
-40hz (August 04, 2013, 10:54 AM)

Michael Bay?  How about Cameron?  Or Ridley Scott!

Sorry for that visual :P
5692
Living Room / Re: The fun of installing custom router firmware (tomato, dd-wrt) - an introduction
« Last post by wraith808 on August 04, 2013, 08:13 AM »
FWIW, the most useful setting in Tomato that I think every router firmware should have is the one that lets you set it to reboot itself in the middle of the night every day. For me, that completely solved the problem of having to pull the power on the router when it started having  problems after a couple weeks of constant uptime.
-mwb1100 (August 04, 2013, 02:22 AM)

That *does* sound useful.  Though I really only get those problems after the cable goes down for some reason.  I wonder if it could sense that and reboot...
5693
Living Room / Re: Facebook 15 second auto-play ads
« Last post by wraith808 on August 04, 2013, 08:11 AM »
yeah... but I can use adblock on youtube.  On facebook, I've been dealing with ads because of Words with Friends, that keeps changing to get around my custom adblock rules and make the game unusable.

Eh.. I spend too much time on those stupid games anyway...  :-[
5694
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 04, 2013, 08:06 AM »
@wraith: closing tag is there, but won't show within DC quote blocks. It's the closing "pre": left angle bracket,  slash, "pre", right angle bracket.
-kyrathaba (August 03, 2013, 11:10 PM)

So I guess the next question is... which WP Plugin for Geshi do you have installed?  There are several...

A good list: http://www.wpsquare....r-wordpress-plugins/
5695
Living Room / Re: Domain Name Registrars
« Last post by wraith808 on August 04, 2013, 08:04 AM »
Your inspiration apparently has good timing. Maybe it really just wanted to make sure you saw that.
-Vurbal (August 04, 2013, 05:57 AM)

That is an excellent way of looking at it. :)
5696
Living Room / Re: Movies or films you've seen lately
« Last post by wraith808 on August 04, 2013, 08:03 AM »
If anyone made a Lovecraft film, of the currently known directors, I'd only want Del Toro.
5697
Living Room / Re: Domain Name Registrars
« Last post by wraith808 on August 04, 2013, 12:03 AM »
I had a fit of inspiration, and was going to register a new domain in the meantime until I transferred my others.  I tried 1&1 and the site was down.  Needless to say, I won't be going with them...  :huh:
5698
Living Room / Re: Sci-fi novel now available from DC member kyrathaba!
« Last post by wraith808 on August 03, 2013, 10:50 PM »
I don't see a closing tag... I'm assuming you have one, but just wanted to be sure...
5699
Living Room / Re: Semi-happy ending to 'The Doom that Came to Atlantic City' Kickstarter campaign
« Last post by wraith808 on August 03, 2013, 10:17 PM »
And a list of controversial or fraudulent boardgame kickstarters: http://www.boardgame...udulent-kickstarters

Three of interest...

Katalyka - That woman is just plain bonkers.  If you go to the kickstarter and read the updates, you'll see what I mean.  An example:
Just wanted to contact everyone and let you all know what's going on.

It seems like the spiritual collaboration I am working with was able to work out an understanding with the military and some other various groups over the last few weeks, and things are feeling very positive for the future!

All the paper supplies are still safely in a climate controlled storage while I am saving up some money to purchase ink for printing with a different printer than I had budgeted for.

I'm not having troubles with hyperdimensional plasma attacks any more, so the only problem left to resolve is that I had budgeted for using the 4 color laser printer, and it turned out that I have to use an inkjet (for the card decks ONLY) instead, which will cost a bit more than I had budgeted for.  But I'm well along the way to having the new ink budget, so once I am back in Washington state, I should be able to print up the decks without any more issues.

Purge

Apparently, the creators were arrested for arson?!?

Glory to Rome - The creator fulfilled everything... but lost his job and home in order to do so.
5700
Living Room / Re: Semi-happy ending to 'The Doom that Came to Atlantic City' Kickstarter campaign
« Last post by wraith808 on August 03, 2013, 09:09 PM »
Oh... another post on a BGG thread... very interesting look at the other side, and it seems that what I was saying is true... he's clamming up under legal counsel.

Wow, doesn't this Erik guy have any friends around here at all? I mean, people who know him? He is a board game enthusiast in a major metropolitan area after all....

... Oh wait. That's me.

Yes, I'm a friend of Mr. Chevalier. In fact, I'd go so far as to say I love the boy. I imagine my presence and words are dead to most of you after saying that, but my friendship with Erik is more important to me than popularity. With so much vitriol tossed around about him these days, it would be smarter (well, safer) to just sit idly by. However, after biting my tongue these last few days out of respect to Erik's privacy, in good conscience I can no longer stay silent. Erik is a good man--just a man who makes some pretty poor decisions from time to time.

I'm a little uncomfortable speaking on Erik's behalf, so let us be clear here: I am not. I did not work at Forking Path, and I can't speak to the details surrounding reimbursement. I am a little annoyed he hasn't spoken out publicly in defense of his own name, but I can appreciate that too. Erik isn't one to court conflict--he's a relatively reserved and shy fellow. From what he has told us, he is worried his situation will exponentially worsen if he says the wrong thing at the wrong time. Hedging his bets, he has been seeking legal counsel before moving forward.

His detractors will be happy to know he hasn't been in a good place lately. It's not lost on him that his name is tarnished, that future projects aren't promising, and many wish him serious harm. He has been hounded by the press, and is mortified about the damage he has contributed to Kickstarter's reputation (he is a big proponent of democratically rooted, grass root efforts like Kickstarter--a means of bypass the traditionally corporate control of funding which mollifies artistic expression into bland, tasteless convention).

Many of you are angry, and rightfully so: Erik promised something and failed to deliver, in a rather spectacular way. This failure, however, wasn't born from a willful intent to defraud. He didn't see a payday without strings--every word he communicated to his backers about issues (from legal to printer concerns) were rooted in truth. His heart was (and still is) sincerely in the right place. He wanted to deliver on the Doom, which only stands to reason since he would have little reason to establish a game company (or, as some are claiming, looking into Knizia licensing options) unless he foresaw a positive future for Forking Path. He never went into this with the intent to fail. Fraud was never an intent.

I am *very* close with Erik. We've been roommates, and I speak with him regularly. I've seen him on top of the world, and I've seen him emotionally broken. He is just a person who got in over his head--nowhere near the villain he is being made out to be.

I know a lot of the story, but I've intentional avoided addressing any of the misconceptions being aired in this forum. That is Erik's place, and responsibility. However, two points I will address:

1. Inari was under no obligation to repay any of the money Joystiq Labs incubated it with. I can say with 100% confidence that not a penny of the backers' support went into that. The troubled incubation of Inari had more to do with personnel than a desire to misappropriate funds.

2. I'm no expert on the details surrounding the Hasbro injunction, but I believe Erik contests whether the art assets he was provided in late 2012 appeased the issue.


I don't hang around here much, but if you have anything to ask, I will respond sometime tomorrow.
Pages: prev1 ... 223 224 225 226 227 [228] 229 230 231 232 233 ... 404next