[NO-INSTALL.COM] - Portal for Portability
Welcome to no-install.com! The one and only portal for portability. Here you will find software applications like Firefox Webbrowser, Thunderbird Email, Trillian instant messenger, Abiword word processor and many more that you can run from just about any removable media such as USB, CD-ROM, Compact Flash, Memory Stick, etc with little to no installation required. This means you do not need to install the applications on your computers local hard drive but instead, take it with you wherever you go saving your preferences and files no matter what computer your on.
Symantec: Mac OS X a hacker target - silicon.com
Symantec: Mac OS X a hacker target
March 21 2005
by Munir Kotadia
“The Macintosh operating system has not always been a safe haven from malicious code…”
Security vendor Symantec is warning that Apple’s OS X operating system is increasingly becoming a target for hackers and malware authors.
LAWTECH GURU BLOG by Jeff Beard: (Free) Wireless Internet Via Your 3G Cell Phone
Wi-Fi broadband is really great, isn’t it? Except when there’s not a hotspot around when you need one. Or when you find it, but can’t get on. What do you do on commuter trains? I’ve recently revisited another road warrior option worth consideration, now that third-generation 3G networks are more widely available:
A number of newer cell phones are 3G-capable, meaning they can transfer data at broadband speeds. Having faster-than-dial-up Internet access in increasingly larger cell phone coverage areas is key. If you’re reasonably tech savvy, your cell phone can become a USB modem.
Apple blocks iTunes hack | News.blog | CNET News.com
Apple Computer says it has closed the hole that let people buy iTunes songs without any copy-protection technology attached. According to the company, anybody who wants to buy music from the store now will have to upgrade at least to the 4.7 version of iTunes.
oxid.it
Cain & Abel v2.67 released Fixed two buffer overflow conditions in IKE-PSK and HTTP sniffer filters. Many thanks to Gary Oleary-Steele and Rafal ^^MAg^^ Kwasny for the bug reports. Also fixed several heap overflow bugs in POP3, SMTP, IMAP, NNTP and TDS sniffer filters.
SAN FRANCISCO/FRANKFURT, Germany, March 21 (Reuters) - German chipmaker Infineon ((IFXGn.DE)) and U.S. technology licensing company Rambus (RMBS,Trade) said on Monday that they have agreed to settle their patent disputes and Infineon will pay Rambus royalties, sending Rambus shares shares up 30 percent.
The companies, which have sued and counter-sued each other since 2000 in a legal case involving claims over Rambus patents stretching back to the early 1990s, said they had agreed to the immediate dismissal of all pending litigation and have released each other from all existing legal claims, Infineon said.
Rambus, based in Los Altos, California, has been seeking billions of dollars in royalty payments from the global chip industry over the past decade to cover patents that it asserts are used in standard computer memory chips.
Separately, Rambus said first-quarter revenue would be below its prior expectations amid higher-than-expected litigation costs.
But shares of the volatile stock, which have traded largely on litigation outcomes in recent years, rallied 30 percent, or $4, to $17.10, as investors looked past the lower quarterly revenue to future license fees Rambus stands to gain,
The deal calls for Infineon to pay a quarterly license fee of $5.85 million from November 2005 for two years, and may make additional quarterly payments thereafter that could add up to as much as $100 million under certain conditions, they said.
The Infineon settlement comes three weeks after a U.S. federal judge dismissed Rambus’ patent infringement claims against Infineon, which Rambus executives said set the stage for the settlement.
“We are satisfied with these terms,” Rambus Chief Executive Harold Hughes told analysts and reporters during a conference call. “We also believe that they are in the best interest of our shareholders.”
Analyst Ingo Queiser of Kepler Equities in Frankfurt said the that the deal was “very favorable for Infineon” as the company now stands to pay a maximum of some 110 million euros. Infineon had risked paying 150 million to 200 million euros per year, he said.
Shares in Infineon rose 0.6 percent by midday, outperforming the flat German blue-chip index DAX ((.GDAXI)).
Rambus had forecast in January that it expected first-quarter revenue to be in the range of $38 million to $42 million and total spending to be between $30 million and $34 million. Instead, Rambus said on Monday that it expected first-quarter expenses of $33 million to $36 million.
Analysts had been looking for current quarter revenue, on average, of $39.7 million, according to a survey by Reuters Estimates.
“The guidance is fairly self-explanatory,” Rambus Chief Financial Officer Bob Eulau said during the call, adding that the results were “solely” due to higher litigation costs.
But Hughes warned investors that they should not use the terms of the settlement with Infineon to extrapolate the terms of future legal settlements Rambus might reach with other companies with which it remains locked in litigation.
He specifically said it sets no precedent with regard to Rambus’ litigation versus Hynix Semiconductor Inc. ((000660.KS)) of Korea or Micron Technology Inc. (MU,Trade) of the United States.
Half of viruses written for criminal gain - Computing
A report by IT security firm Symantec shows that 54 per cent of the most common malware samples discovered in the last six months were written by criminals to extort money and steal identities.
Availability and description of the File Checksum Integrity Verifier utility
If you are going to make your own GhostBuster as outlined as discussed here, then probably best not to use “dir /a /s” but to use some type of secure hash instead.
A good alternative might be to use Microsofts ‘File Checksum Integrity Verifier’ utility (FCIV), an unsupported command-line utility that computes MD5 or SHA1 cryptographic hashes for files.
For Details See:
Availability and description of the File Checksum Integrity Verifier utility Article ID : 841290 Last Review : June 14, 2004 Revision : 1.0 File Checksum Integrity Verifier http://support.microsoft.com/?kbid=841290
Trustworthy Computing Security Development Lifecycle
Abstract: This paper discusses the Trustworthy Computing Security Development Lifecycle (or SDL), a process that Microsoft has adopted for the development of software that needs to withstand malicious attack. The process encompasses the addition of a series of security-focused activities and deliverables to each of the phases of Microsoft’s software development process. These activities and deliverables include the development of threat models during software design, the use of static analysis code-scanning tools during implementation, and the conduct of code reviews and security testing during a focused “security push”. Before software subject to the SDL can be released, it must undergo a Final Security Review by a team independent from its development group. When compared to software that has not been subject to the SDL, software that has undergone the SDL has experienced a significantly reduced rate of external discovery of security vulnerabilities. This paper describes the SDL and discusses experience with its implementation across Microsoft software. (19 printed pages)