Technical Discussion

Hey guys, I've a lab exam on wenesday in assembly language programming. Our lecturer gave us a program to practise with, but I just can't get it. I've been trying for a good hour and a half, and nothing is working. Can anybody help me with this problem:-

Write an 8086 assembly language program that will compute:

2.0 * log10 X for x = 0.1, 1.0, 10.0, 100.5, 1000.0, and six other values using a loop.

All values are in the single-precision (short real) format

Hi all,
i want to know more about OS development.
if any one have idea about that, please help.

Can anyone please explain how sql injection can be preventing.

I know filtering the contents at the server side is one of the solution. Filtering characters such as (<,>,', OR,1,= )

There is a possibility few of the webapps may treat these characters as legitimate. For example user name may have O' rilly.

In this case you cant filter the (') character as its a part of the user name.

Hi

can anyone please explain how kerberos authentication works with a windows environment. I know Kerberos is an integral part of Active directory.
But i want to know the insight of how the authentication is taking place as well as how the Ticket grading server is working within a windows environment.

If the idea of robot ethics sounds like something out of science fiction, think again, writes Dylan Evans.

Scientists are already beginning to think seriously about the new ethical problems posed by current developments in robotics.

This week, experts in South Korea said they were drawing up an ethical code to prevent humans abusing robots, and vice versa. And, a group of leading roboticists called the European Robotics Network (Euron) has even started lobbying governments for legislation.

QOS ( Quality of Service ) which allows to manage network traffic in a cost-effective manner to enhance user experience in home and enterprise environments. QOS allows network engineers to measure bandwidth, detect changing network conditions such as congestion.

It has been there for a long time, then why suddenly it has become a media concern ?

Recently, I gave an interview for network security engineer and these Firewall questions were asked. For the benefit of SecGuru readers I am posting the questions here.

• Firewall, what is that, how it works, how it is diff from ACLs?
• Describe, generally, how to manage a firewall?
• What is a Denial of Service attack and its safeguards?
• What is a “spoofed” packet?
• What is a SYN Flood?
• What is an Application Layer Firewall?

Yo, MC Plus Plus, my rhymes are so phat,
I'm PSPACE-complete but I'll reduce you to 3-SAT.
My crew is so hard that we roll in NP,
And bitches dereference my pointer for free.
When I'm linear probing they're like, "Damn that's gigantic,"
I showed it to your mom and she used Hoare semantics.
She jumped like JNE up onto my erection
And I picked up that ho like straight garbage collection.
("That's right, mark-and-sweep on these nuts, bitch.")

My lyrics get stolen by sucker MCs,
I gotta sign my rhymes with PGP;
But I keep on generatin' like a CFG

I just gave a programmer personality test, the site states "Programmer's personality test is based of the Myers-Briggs Personality Test and has been changed to relate to your programming personality type. This is not a joke test and is really only relevant to programmers, however anyone is welcome to take the test. There are 12 questions with 2 answers for each question and you must choose one answer from each and every question. There are no 'right' or 'wrong' answers, your answer will simply show what type of personality you have."

Most professionals think they have to change jobs every three years to get ahead. But you really don’t have to move to a new job or company to advance your career. Chances are, your current job offers challenges and opportunities you haven’t yet tapped. By taking on new assignments in your current position, you can expand your skill set and develop your leadership capabilities—and thus your marketability—without spending all that time and effort job-hunting.

Every week, there are security vulnerabilities reported in widely deployed softwares. Many of these threats are buffer-overflow exploitation using which a malicious user could gain control of a computer system by crafting a special input data. These buffer overflows are found in web-browsers, web-servers and all other types of programs and services. No doubt, buffer overflow is a serious threat to system and data integrity.

Recently, I have started working with IDS and noticed a lot of debate over anomaly based and signature based approach. Majority of the commercial products are based on signatures which examine the traffic looking for well known patterns of attack. This means that for every vulnerability and exploit technique, the IDS engineer would code a pattern match for the IDS system. An example for this would be to detect every packet on the wire for the pattern "/cgi-bin/phf?", which might indicate somebody attempting to access this vulnerable CGI script on a web-server.

hey

Anyone hosting honeypots now or then ? If so could you give me some advices on what software would be best to get one running?

my biggest interest is in php flaws.....

Thanks in advance

e.

well if someone want to share with some of his own or what he found on net this is the right place:

php shells / yes i know most of them will be honeypots but we got proxy's right? ;) :

• intitle:"PHP Shell *" "Enable stderr" filetype:php
• PHPKonsole PHPShell filetype:php -echo
• "inurl:[name of shell]"

want some mail adressess?

+NOSPAM@hotmail.com | +NOSPAM@gmail.com | +NOSPAM@yahoo.com
"* at * dot com" | "* at * dot net" | "* at * dot uk" | "* at * dot mx"
etc. etc.

....

to be continued...

e.

Hi
i found a link which has some nice e-books.

http://slav0nic.xss.ru/books/hack_sec/

NimitRulz