Saturday, January 28, 2006

Evolution XP

I hav started writing for http://www.softwareandtools.com/ on operating systems
optimizations, tweaks, etc it is aimed @ presenting best optimization techniques, tools and tweaks to make ur os run better and faster.

ps: u will hav to bear with tejas as he’s a bit ad-addict.

Wednesday, January 11, 2006

Have you got spam from yourself?

Its every domain's owners nightmare forging ur domains for spams and for once there is not much we can do. worms or virii - 101 ways to fix it. but wat abt corrupt’d spammers brains. these idiots (for lack of a worse word to use) are no better and lot worse than virus writers as much as i hate to say virus writers are probably better than spammers. spammers are cheaters, deceivers whose mindset is a lot different that us humans :-) why am i so angry ? well its a beautiful wednesday afternoon and i notice abt 90 mails / hr pouring in to my spambox guess wat? they are all replies to emails spoofed as my from my domain. makes u wonder how many servers cant detect a mail's origin? msn, gmail, yahoo do a gud job throwin these into spambox wat abt 1000 of mail servers out there ? if i had put up a mailserver to this domain ? the replies mails itself wud hav made this site go down - bandwidth! well wat can we do ? we hav to rely on our email systems identify that these mails are spoofs. but not all servers are well equipped to do so. why ? many of private instutites, offices and organisations including the famous one are lazy to just install anythin as there mailserver wen the situation worsen’s well we always got one to blame (spammers).

Every automated reply =>(implies) that the recipent server thinks u are from an original location and not a spam. and thats wat spammers rely on. well u might say " dont expect me to buy an high price enterprise level package! " well as true is that fact so is the fact that there are 100’s of mailserver softwares out there with gud antispam technology.
Admins dont be lazy, use a better mail server with good antispam servers so that i dont fill my spambox. Now, Other issue’s here are person's who's email or domain is used for spam and one who receives them.
no help for ppl who post there email address on open boards for bots to copy now here’s the funny part all the people in the address book of the careless person also gets spam’d if that person uses an email thats not eqiupped with antispm and antivirus.

its not absolute. worst case senerio wat to do ? Now how to get domains safe ?!? thats where OpenSPF comes into play founded by a person who has been bugged by spammers using his domain name to send forged emails. SPF Stands for Senders Policy Framework u can specify ur domain details n specifics and lets u create a spf record for ur domain. SPF fights return-path address forgery and makes it easier to identify spoofs.

Domain owners identify sending mail servers in DNS. SMTP receivers verify the envelope sender address against this information, and can distinguish authentic messages from forgeries before any message data is transmitted.

goto site + How it works

Tuesday, January 10, 2006

Sony BMG Copy Protection ?!?

Its all over the news but still many ppl ask me wat the story so i decided to just post in simple words wat is the story so that i can just tell everyone to read my blog ;) frankly everyone shd be knowing this by now for those who dont read this:

sony released its cds with its new copy protection software (xcp). while the cds played normally on cd players if u wanted to play them on your systems u wud hav to install sony media player bundled on the cd. this installation included the copyprotection software therby preventing reading of music content on cd by any other software other than its native player this is done by rewritin few functions of os. in order for it to do this the software behaved like a rootkit ( a well built rootkit ) its function to prevent any access to folders whose name begins with $sys$ the copy protection software hides itself in the same and chks every cd for copy protection before it gives control to the software u are using to access it.

few @ sony thought this was preety ingenious but they made a basic flaw to see if there software acts as doorway to hackers or virus writers ?!? we knw many worms are designed to dump itself in system32 folder using %system32% in path. now this is worse the worm can be designed to create a directory with the $sys$ prefix anywher and ur os will be blind to notice it as it is concealed by sony’s copy protection got the point !

So thats the whole story! wat happend in the end ? sony recalled its cds “millions” Not before the news was out!, Not before millions of os had installed this! (some 50+ albums sold with this copyprotection) so imagine everyone who bought them were venurable! and worse is yet to come: Not before a worm’s release! there was a worm out within a week of this matter in news headlines. Now get this sony was approached by f-secure guys with this threat long long back wat did sony do ? Ignored ! everyone payed the price rest is history!

want to knw if there was any funny side to the story:
then imagine the mountains of cds in sony’s gowdons lol.
so any new office policies :: dont play music cds he he he kiddin…

so any gud guys ?!? yes f-secure of course! instead of announcing to press that wud add another star on f-secure’s collar the company contacted sony with the problem and dint leak fearing a mass systems infection.

ps: i dont think anyone can be more simple :)
cheers.