Archive for December, 2009

Omegle – Talk to Strangers

Wednesday, December 30th, 2009

Omegle is awesome, you can bait^Wtalk to strangers:

 

You're now chatting with a random stranger. Say hi!
Stranger: heyy
You: Hi!
Stranger: asl?
You: 19/f/London, you?
Stranger: 18 m usa
Stranger: r u hott?
You: are you?
Stranger: yaa
You: can you prove it?
Stranger: ill send u a pic if u send me a pic of u first
You: maybe later, wanna cyber?
Stranger: ya sure
Stranger: first how big r ur tits?
You: Awesome, just let me put on my cloak and wizard hat first!
You have disconnected.

AGWA de Bolivia

Monday, December 28th, 2009

is dangerously nice…

 Sean Shoud Die

lolcat phrase fridge magnets

Sunday, December 27th, 2009

I have to admit that one of the most awesome things that I’ve seen pass hands (ish) this Christmas is the ThinkGeek LOLMagnetz.

My cousin’s husband Jim came up with this:

LOLMagnetz Haikoo Jim Cameron

\o/

FreeBSD Local Root Expolit – 2009-11-30

Tuesday, December 1st, 2009

A local root exploit was discovered and pasted on Full Disclosure (link).

caffeine was vulnerable:

[andy@caffeine ~/root]$ sh exploit.sh
exploit.sh FreeBSD local r00t zeroday
by Kingcope
November 2009
env.c: In function ‘main':
env.c:5: warning: incompatible implicit declaration of built-in function ‘malloc’
env.c:9: warning: incompatible implicit declaration of built-in function ‘strcpy’
env.c:11: warning: incompatible implicit declaration of built-in function ‘execl’
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
ALEX-ALEX
#
# whoami
root
# usage: ping [-AaDdfnoQqRrv] [-c count] [-G sweepmaxsize] [-g sweepminsize]
[-h sweepincrsize] [-i wait] [-l preload] [-M mask | time] [-m ttl]
[-P policy] [-p pattern] [-S src_addr] [-s packetsize] [-t timeout]
[-W waittime] [-z tos] host
ping [-AaDdfLnoQqRrv] [-c count] [-I iface] [-i wait] [-l preload]
[-M mask | time] [-m ttl] [-P policy] [-p pattern] [-S src_addr]
[-s packetsize] [-T ttl] [-t timeout] [-W waittime]
[-z tos] mcast-group

A patch has been released to the FreeBSD Mailing List (link), and after patching /usr/src/libexec/rtld-elf/rtld.c, caffeine is now safe:

[andy@caffeine ~/root]$ sh exploit.sh
env env.c exploit.sh program.c program.o w00t.so.1.0 FreeBSD local r00t zeroday
by Kingcope
November 2009
env.c: In function ‘main':
env.c:5: warning: incompatible implicit declaration of built-in function ‘malloc’
env.c:9: warning: incompatible implicit declaration of built-in function ‘strcpy’
env.c:11: warning: incompatible implicit declaration of built-in function ‘execl’
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; aborting

Happy Mailman Day!

Tuesday, December 1st, 2009

Today is Mailman Day.

In fact, the first of the month, every month is! I hope you enjoy your mailing list reminders:

This is a reminder, sent out once a month, about your
lists.example.com mailing list memberships.  It includes your
subscription info and how to use it to change it or unsubscribe from a
list.