Paul Know's Tech

Entries in connection (7)

Tuesday

Mar032009

Gmail Vulnerable to a Change PW Attack!

Author:

Paul Sylvester | Date:

Tuesday, March 3, 2009 at 9:11AM |

Permalink

Securiteam has made an announcement that Gmail has an issue. I will quote:

GMail is vulnerable to CSRF attacks in the "Change Password" functionality. The only token for authenticate the user is a session cookie, and this cookie is sent automatically by the browser in every request.

[ad#ad2-right]An attacker can create a page that includes requests to the "Change password" functionality of GMail and modify the passwords of the users who, being authenticated, visit the page of the attacker.

The attack is facilitated since the "Change Password" request can be realized across the HTTP GET method instead of the POST method that is realized habitually across the "Change Password" form.

[Via Securiteam]

One way to prevent this to a point is right now having GMAIL automatically connect securely. You would go into your settings in gmail and make sure it uses https connection:

This is one way to prevent the cookie attack but is still needing to be fixed. Since it is using the HTTP GET method it should use the HTTPS method as soon as you try accessing the site. Google needs to change to the HTTPS Get method instead to prevent this type of attack. If you have any other ideas for Google just leave a comment.

Post a Comment | in

2009,

Account,

CSRF Attack,

Change Password,

Email,

Gmail,

Google,

HTTP,

HTTPS,

Sunday

Feb082009

ThePirateBay might be blocked in the US

Author:

Paul Sylvester | Date:

Sunday, February 8, 2009 at 9:37AM |

Permalink

I was looking around on Google and thought I just for giggles check out the Piratebay complaints. I tried going to the site and here's what Popups:

[ad#ad2-right]I tried on OpenVPN and my Local ISP, It keeps saying that. I then tried on my Cricket Modem and it tells me the connection has been interrupted, like something stops the connection in the first place. I can ping it and I can Tracert the Site but I can't even view it. I would like to know if Anyone else is having this problem also. Although I've not checked Thepiratebay.org complaints for quite some time because I've been so busy with my website. If you want to watch your favorite shows check out these sites like Hulu, CBS, NBC, ABC, ABC FAMILY and TNT.TV for free. I am just curious as to what happened and does this have anything to do with Net Neutrality? Anyway I wanted to talk about this and see what people are saying. Anyone know what is going on? Let's talk about this and help everyone by saying what you know. I don't know if Thepiratebay.org is down but I do wonder if someone is preventing people from getting to the website. I'll update when I have more information.

Post a Comment | in

2009,

AlwaysVPN,

CBS,

Connect,

Good,

Google,

Hulu,

LOG,

NBC,

Net Neutrality,

OpenVPN,

Review,

Sites,

Tech-linkblog,

ThePiratebay,

UPS,

Update,

VPN,

Wiki,

ad2,

first,

going,

local isp,

modem,

place,

problem,

quite some time,

say,

something,

tnt tv

Wednesday

Dec172008

Digital Convert boxes for Feburary 17, 2008

Author:

Paul Sylvester | Date:

Wednesday, December 17, 2008 at 8:09PM |

Permalink

It being close to the change over, I'd figure I'd show you some of them and talk about them. To better help people make up there minds on what might be there choice of a Digital Converter Box. This is to help people get the most out of there products.

The Specs for this Converter is:

Zenith DTT901 Digital TV Tuner Converter Box

Digital TV Tuner Coverter Box

Analog Pass-Through for Low-Power TV Stations broadcasts

On-Screen Program Information with Remote Control

Simple Connection to TV with supplied RF Cable

Parental Control to Manage TV Programs and advanced Closed Captioning

$59.95 Free Shipping

It could be on sale so check the link for more price options. I also found this one that is a little more expensive but supposed to be better:
GE 23333 Digital to Analog TV Converter Box

Smart Antenna Interface

Simple Setup

Analog Pass Through

Dolby(R) Digital Sound

Receives Over-Air Hdtv Signals

$76.99 Free Shipping

These are just some of the ones that I saw online to encourage people to get ready for the change over. If you're not you need to act quickly because it will come in the next few months. You will need this if your are using an antenna and have no other way to watch shows over the air. This will only work where there is a signal. If you want to see what digital channels you have in your area please check Antenna Web. There they will tell you if you have any local channels in your area.

Post a Comment | in

2008,

Analog,

BOX,

Closed,

Dolby,

Free,

HDTV,

Help,

Low,

Manage,

On,

Online,

Over,

Pass,

Remote,

Simple,

Smart,

Tuner,

air,

analog tv,

area,

broadcasts,

cable,

change,

check,

choice,

close,

power,

price,

sale,

screen,

setup,

smart antenna,

sound,

talk,

tv stations,

way,

zenith

Friday

Dec052008

Are you patched, Secunia Says NO

Author:

Paul Sylvester | Date:

Friday, December 5, 2008 at 9:03AM |

Permalink

Think you've got nothing to worry about, according to Secunia 98% of computers are not fully patched and are vulnerable to some kinda of attack. [ad#digg-right]So I wanted to talk about this a little and give you a few good ways to make sure you are patched. There are several ways to get your system up to almost 100%.

[ad#ad2-left]Some things to do is make sure you have your Windows systems updated. This is easy to make sure, if you have an internet connection you can just check for updates. If you don't know how to do it, it is quite simple, Just go here. If you have Windows Vista all you have to do is hit Start and type in the search box "Windows Update" and hit Enter and you will be taken to the update page.

If you have a system that is off of the Net you could use the Clone of Autopatcher Program to do it for you. You also need to update all your secondary programs such as Audacity, Open Office, and other programs that you use weekly.

[ad#ad2-right]If you don't know what you need to update sometimes just having a program check for you can make a really good difference. The one that I like to use is Appsnap and it actually searches you computer to see what might need to be updated. I also suggest for the final suggestion is check out my Anti-Virus and Anit-Spyware Resources and make sure you have a firewall and anti-virus software. This will greatly reduce your chances of getting a virus but that isn't all you have to be careful on what you click on read this article on Some Important programs to prevent yourself from having viruses and Malware!! Read that carefully to better understand how you can protect yourself in the future.

Post a Comment | in

AT&T,

Anit,

Anti,

Appsnap,

Auto,

Autopatcher,

BOX,

Better,

Chances,

Clone,

Computer,

Connect,

Don,

EST,

Easy,

Event,

Firewall,

Full,

GE,

Good,

How-to,

Ina,

Left,

Might,

Office,

Open,

Open Office,

Other,

Programs,

Read,

Real,

Secunia,

Security,

Software,

Spy,

US,

Update,

Updated,

Use,

Virus,

Vista,

Wal,

Ways,

Will,

Window,

ad2,

attack,

chance,

check,

click,

future,

kind,

kinda,

lavasoft.com,

lt,

ninja day,

page,

personal software inspector,

program,

ru,

say,

search,

secunia personal software inspector,

secunia psi,

self,

source,

span,

start,

system,

talk,

thing,

time,

type,

ua,

viruses,

week,

windows systems

Monday

Dec012008

Vista To release Service Pack 2 in April 2009

Author:

Paul Sylvester | Date:

Monday, December 1, 2008 at 8:41AM |

Permalink

[ad#digg-right] Some sources are reporting that Vista SP2 will be out in April. According to Engadget they claim TechARP is a bunch of Malaysian Kids that like to boast about how they broke the Vista SP1 and XP SP3 release schedules to the world. They claim though that Vista Release candidate is to be out around February.Microsoft has indicated that this SP3 will include Windows Search 4, Bluetooth 2.1 wireless support, faster resume from sleep when a wireless connection has been broken and support for Blu-ray. I personally think it will include some of Windows 7 features to better get people accustomed to Windows 7 when they come out.

[ad#ad2-left]Although this is speculation and no hard evidence I think it has some merit due to the fact that Microsoft has admitted in the past that Vista was a big Letdown. I don't think they can any more to damage than they have already done. If anything Windows 7 will be a easy Success if they pull it off in the right way!!! Although with WIndows 7 be leaked online there is no telling what will happen. I am sure what ever happens will be interesting to say the least!!!

1 Comment | in

App,

April,

Better,

Blu-ray,

Blue,

Bluetooth,

CAT,

Connect,

Custom,

Damage,

Don,

Down,

EA,

EST,

Easy,

Engadget,

February,

GE,

Kids,

Leaked,

Left,

Micro,

Online,

Ray,

SP3,

US,

Vice,

Vista,

WIndows,

Will,

Win,

Window,

XP,

Xp Sp3,

anything,

bunch,

com,

connection,

due,

fact,

feature,

hard evidence,

kid,

leak,

lt,

merit,

nyt,

pack,

past,

people,

person,

release schedules,

report,

resume,

right,

ru,

schedule,

search,

service pack 2,

sleep,

sp2,

ua,

way,

world

Saturday

Nov012008

Time to Change your clocks.

Author:

Paul Sylvester | Date:

Saturday, November 1, 2008 at 1:41PM |

Permalink

Time to change those clocks of ours

[ad#ad2-right]Having been looking at one of my old clocks that would automatically change for Daylight Savings Time, I've had to keep reminding myself that it is an hour off. Starting tonight at 2 PM, it will be right. So I thought I would help people keep there computer clocks up to date by suggesting some good programs to us to keep your system having the right time. So people know what dates are being affected according to the Greenwichmeantime they say this:

Beginning in 2007, Daylight Saving Time is extended one month and the schedule for the states of the United States that adopt daylight saving time will be:

2 a.m. on the Second Sunday in March
to
2 a.m. on the First Sunday of November.

So that saying goes it "Fall back, Spring Forward" So now here are some great programs to better help you get your computer clock up to snuff:

[ad#ad2-left]
Worldtimeclock Atomic Clock Sync Program - It is a free program for you to use with your Windows. Although you have to make sure your selected the right timezone once it is installed all you will need in an internet connection to sync your windows time with the atomic clock.

PC Atomic Sync - It is an atomic clock synchronizer with some useful features (time offset, synchronize periods, etc.). The main idea of the program is to synchronize your PC's clock in the most reliable and resource-saving way.

These programs will help keep your system from having the wrong time. Don't forget to install the Microsoft updates(Window XP and Server 2003) to fix your operating system with the new Daylight Savings Time dates.

1 Comment | in

Anti,

Atomic,

Auto,

Back,

Begin,

Clock,

Computer,

Daylight,

Don,

Fall,

Fix,

Forward,

Free,

ICal,

IDE,

Install,

Internet,

Make,

March,

US,

Will,

Window,

XP,

com,

date,

day,

daylight saving time,

daylight savings time,

end,

first,

greenwichmeantime,

hour,

idea,

internet connection,

lt,

mean,

meantime,

microsoft updates,

month,

need,

new daylight savings time,

program,

right time,

second sunday,

source,

states of the united states,

system,

thos,

world,

Tuesday

Sep022008

Bandwidth Tools For Monitoring your bandwidth

Author:

Paul Sylvester | Date:

Tuesday, September 2, 2008 at 12:11PM |

Permalink

<<See Previous Post

So I've done some looking around for bandwidth programs. So here's what I found so far. The programs I've got listed are not test and are therefore your responsible for any and all use of the programs.

[ad]

FreeMeter Bandwidth Monitor For Windows - Monitor network bandwidth (C#.NET 2k/XP+). Desktop and Systray graph. Configurable connection speed, update interval, color, transparency. Monitor any or all network interfaces. Ping/Trace/UPnP utilities. Email notifier (POP/IMAP). Requires .NET 2.0.

Pipelog - Windows Bandwidth Meter -- Pipelog is a Windows bandwidth meter that gives live statistics of accumulated bandwidth usage. It is written in C# and runs on the .NET Framework.

Windows Service Monitor -- Monitor and automatically restart Windows Services with this small Win32 command line utility. Windows Service Monitor (WinSMon) can monitor several services, restart services that stop/fail and limit the number of restart times.

iptotal -- iptotal is an IP traffic monitor. It listens to a network interface in non-promiscuous mode, and measures IP bandwidth usage. After the specified number of seconds, the average throughput is printed at total, input and output usage.

Bandwidth Vista 1.0.0.8 -- Bandwidth Vista is modern, informative and intuitive to use. Whether you are looking for network problems or simply want to check the speed of your Internet connection Bandwidth Vista is for you. Bandwidth Vista monitors all your connected interfaces at once and holds a history of transfers, which can be viewed down to the minute. This dynamic application also indicates the countries of remote computers con.

Bandwidth Monitor 2 -- An ideal tool for the bandwidth conscious, Bandwidth Monitor enables you to keep a close eye on the amount of bandwidth accumulated over the current hour, day, week, month, or even year! Advanced logging tools make it easy to view your bandwidth usage and make alterations to bandwidth logs. Clean up old data at the touch of a button, and import your bandwidth data from our predecessor Bandwidth Monitor 1.0. Version 2 adds Vista compatibility.

Axence NetTools 3.2 -- NetWatch - network monitoring with e-mail alerting, real-time & historical charts of response time & packet lost. WinTools lists exhaustive system information from Windows computers: running processes & services, registry, event log, disk, memory & CPU information. Port scanner checks for all open ports and running services.

BitMeter 3.5.7 -- BitMeter 2 is a bandwidth meter, it allows you to visually monitor your Internet connection by displaying a scrolling graph that shows your upload and download speed over time. Features include: Graphical and numerical displays of historical data, Web interface, alerts, stopwatch, calculator, transparent/float/click-through modes, 36-page help file, audio notifications, configurable color-schemes and many other options. Version 3.5.7 offers minor fixes and feature enhancements.

[ad]

These are just a few that I could find to better keep track of your bandwidth. These haven't been tested but should get your started in the right directions. If you have any good suggestions by all means let me know!!