Wi-Fi Fingerprints — the End of MAC Spoofing? from Slashdot.

Wireless devices can be identified by variations in their radio signaling, known as their ‘transceiverprint,’ according to research reported in Techworld. The Canadian researcher, Jeyanthi Hall, related the prints to MAC addresses and got a positive ID for devices connecting to a Wi-Fi network, claiming 95% success with no false positives. Once they work out how to do this without a dedicated signal analyzer and neural network processing, it’s the end of MAC spoofing on wireless networks.

Interesting comments ;-) nweaver:

Cool hack, but who cares. With proper authentication (eg, WPA), you don’t need to worry about MAC spoofing as the packets won’t authenticate right to the access point.

Bender0×7D1:

You are forgetting the insider threat. I might have the WPA key because I am an employee with my own laptop. However, if I spoof your MAC, then it looks like you are the one surfing (or porn sites) all day and not me. Encryption is good, but it doesn’t solve every security problem.

Popularity: 15% [?]

Linux Per-Process Syscall Hooking, by Pluf.

This document describes a new syscall hooking technique for Linux systems and exposes how it can be implemented as part of a virus or a backdoor in order to take full control over an userland application.

Although there are some well-known methods for hooking functions, they are mostly based on the ELF format itself.

This technique is focused on thoses pieces of code that are externally called by the main program and invoke a system call or system service.

A simple implementation of this hooking mechanism has been developed as a result of the research and it is included with the article.

This code provided does not have all the features you wish but includes the required ones, is not a real backdoor but a simple proof of concept, perfect to write your own one.

Popularity: 31% [?]

Mozilla SeaMonkey 1.1a Branch builds (20060905)

• [FX] P3 build (7.6 MB)
• [FX] P2 build (7.6 MB)
• [FX] P1 build (7.6 MB)

Sepecial Check-in

• SeaMonkey 1.1 Alpha Branch

Known Issues

• N/A

1. checkout finish: Tue Sep 5 02:57:14 PDT (UTC -0700) 2006
2. All Chech-in from last build
3. my vs7.1-BonEcho patch
4. UAO of zh_TW.Big5 Unicode Fix
5. P0/P1/P2/P3 all build with VC7.1
6. P0 build build with /GAL7 arch:SSE and mmoy’s SSE patches, for Athlon XP, and Duron 1.1 GHz+
7. P1 build build with /GAL6 and mmoy’s MMX patches, for Generic CPU
8. P2 build build with /GAL6 arch:SSE and mmoy’s SSE patches, for Pentium III ,Celeron 500+
9. P3 build build with /GAL7 arch:SSE2 and mmoy’s SSE2 patches, for AMD Athlon 64, AMD Sempron, Pentium 4, Pentium M, and Celeron 1.7 GHz+

Popularity: 7% [?]

Recently, I’m surveying how to deploy Mozilla Firefox/Thunderbird with it’s update channel, but it’s very hard to use for un-official builders like me.

Generally speaking, Firefox will try to send HTTP request to mozilla official site with some client information. For example, a nightly BonEcho will try to get document from this URL.

AS you see, Firefox try to send some information like Firefox version, host architecture, host OS version and so on, and to get server response through SSL (in fact, it’s TLSv1). Of course, you can use any browser to see what the corresponding response is by this URL.

Then Firefox can get type “complete” of patch tag, fetching the .mar file at mozilla official FTP site, and performing update procedure.

Everything seems great, doesn’t it? Not exactly. It means that the Firefox updater program only support .mar file format, not gz, bzip2 format — the common compression we’ve known. Consequently I must have enough knowledge to know how to pack .mar archive as well.

Hence, I create a project called mar hosting on Google Code (Brief introduction on ijliao’s blog). I hope these simple tool s could create, extract, and view the mozilla archive more easy.

Popularity: 22% [?]

Mozilla Firefox 2.0b2 Branch builds (20060904)

• [FX] P3 build (7.1 MB)
• [FX] P2 build (7.1 MB)
• [FX] P1 build (7.1 MB)

Sepecial Check-in

• Firefox 2.0 Beta 2 Branch
• Reduce memory usage on minimize by setting config.trim_on_minimize
• Accessibility enabled like official builds to support GeckoTIP
• Stop packing Lite version

Known Issues

• N/A

1. checkout finish: Mon Sep 4 02:09:27 PDT (UTC -0700) 2006
2. All Chech-in, FX Chech-in from last build
3. my vs7.1-BonEcho patch
4. my tweaks profile patch
5. Adobe Flash Player (9.0.16.0)
6. Used branding artwork by JairoB
7. UAO of zh_TW.Big5 Unicode Fix
8. P0/P1/P2/P3 all build with VC7.1
9. P0 build build with /GAL7 arch:SSE and mmoy’s SSE patches, for Athlon XP, and Duron 1.1 GHz+
10. P1 build build with /GAL6 and mmoy’s MMX patches, for Generic CPU
11. P2 build build with /GAL6 arch:SSE and mmoy’s SSE patches, for Pentium III ,Celeron 500+
12. P3 build build with /GAL7 arch:SSE2 and mmoy’s SSE2 patches, for AMD Athlon 64, AMD Sempron, Pentium 4, Pentium M, and Celeron 1.7 GHz+

Popularity: 8% [?]