Hidden Threat: Alternate Data Streams
Hmm. This is quite interesting. Under any Windows machine with an NTFS disk, you can hide applications inside other files:
C:> type nasty.exe > plain.txt:nasty.exe
You can then run this command with:
C:> start plain.txt:nasty.exe
Now, this might not seem like much, but this is virtually undetectable. You can add any file to another file, and even exerienced sysadmins probably won’t find it!
An even better method of getting a random (ascii) password:
$ head /dev/urandom | strings -n 5 | sed 'N;s/$//;s/\n//g;s/\n//g' | sed 'N;s/$//;s/\n//g' | head -n 1
(All on one line, naturally).
I had to do the two seds to make it work properly. It would have been nicer if this combined all of the lines, and then I could just trim as many chars as I wanted, but this was tricky. The head -n 1 discards any lines other than the first.
Thu 4th Jan 2007
Texas environmental officials have delayed a proposed ban of biodiesel fuel in the state to allow further studying of the emissions of biodiesel blends.
Really? And the oil companies let them delay the ban?
The skeptic might say that Texas regulators passed a law that exploits the one negative aspect of biodiesel to protect the oil industry in that state.
You don’t say.
Thu 4th Jan 2007
UK pair’s tickets caught behind - National - theage.com.au
… But when they arrived in Sydney yesterday morning they were told their luggage, in which the cricket tickets were packed, was still in England and would take three days to get here.
So let me get this straight. They didn’t carry their tickets in their hand luggage? That’s just plain stupid! It’s not like tickets are particularly bulky even!
Whenever I take teams touring, they always pack all of the stuff they need for playing in their hand luggage, just in case the airline loses their checked stuff. And it’s a bit harder fitting playing gear and boots into hand luggage than some tickets in a small folder.
They deserve to miss the match.
