Security company Secunia, has found another serious security flaw in Internet Explorer that can be used by nasty types in cross site scripting attacks. The new flaw effects all versions of IE6 including both SP1 and SP2 patched versions. The answer to the problem, is to disable active scripting in Internet Explorer until a patch is created. Unfortunately Windows update won’t work without active scripting, and neither will a good many other sites.

Read the rest of this entry »

MicroSoft has released a patch for a bug in XP SP2 systems where in some instances the firewall will consider the entire Internet as part of an internal network, and trust it as such. The patch was released quietly without the fanfare of normal releases. The flaw effects XP Home Edition SP2, XP Pro SP2, XP Tablet PC Edition 2005 and XP Media Center Edition SP2. And these guys really want people to buy security products from them?

In other news, they have bought an anti-spyware company called Giant, and there are rumours that they will soon release an enterprise class anti-spyware and anti-virus product. The question remains though, will companies buy protection from the company that makes the software that requires such protection in the first place? After all, let’s face it, Microsoft doesn’t have a particularly good security reputation.

Franki

The PHP development team have suggested that everyone immediately upgrade to PHP 4.3.10 due to a number of very serious flaws in previous versions that can result in your server being “owned”.

Expect most Linux distro’s to release patched versions of PHP in the coming days. If your using a Windows server you’ll have to dig up an updated version yourself, using Windows, you’ve already put yourself at a security disadvantage, so you really should make this a priority.

Franki

One of the things that for some strange reason seems to impress programmers is writing a program that achieves a specific goal in as few lines of code as possible. To that end, a gentleman by the name of Matthew Skala has written a peer to peer file sharing program in just 9 lines of Perl code.

The idea of this and another such program written in 15 lines of Python is to demonstrate that there is no real way the movie and record companies can stop peer to peer file trading using litigation, because any moderately accomplished programmer can knock one up themselves.

Read the rest of this entry »

I’ve been a long-time supporter of upgradeable video cards in laptops for some time. The days of buying a several thousand dollar machine every year or two should be at an end. I started an online petition some time back to encourage manufacturers to do the right thing.

Although Dell offered the XPS and 9100 systems not long ago, which do provide a single video upgrade, they are not true upgradeable laptops because it is entirely up to Dell to decide what you should be able to upgrade to, and we know they would prefer you just bought another laptop.

A Canadian company called Eurocom has just released a PCI express MXM architecture desktop replacement laptop, MXM is an Nvidia technology that provides a similar function to laptops that a normal AGP or PCIE slot does in a desktop machine, an interchangeable video adaptor system.

Read the rest of this entry »

Adobe has just patched two bugs in Acrobat reader that could allow a malicious type to take over your computer. You could be affected just be getting a PDF in an email, or by following a link in an email to a PDF file online.

Read the rest of this entry »

While taking a wander around the Firefox extensions site, I came across a new one I just had to try. It is called “FireFTP” and it is a fully featured FTP client that runs from within Firefox, it has a similar layout to all stand alone FTP clients in that you have a pane on the left displaying files local to your PC, and a pane on the right displaying files on the remote server, so anyone familiar with any FTP client will have no problem using this one.

My old suggestion for a free FTP client was SmartFTP, but after using this for a while, its simplicity and the fact that it’s a tiny download (only 55kb) makes it the most compelling free FTP client I have seen thus far.

Read the rest of this entry »