Posts by Daniel du Preez

I for one...

...am disappointed at the lack of NSFW content in this article, given the nice red NSFW tag.

Erm..

Didn't Bill Gates actually say "Sometime in the next year or so we will have a new version." ? That just means there'll be a version.. an alpha/beta most probably, which leaves a year for testing.. which let's them release in 2010.. exactly in line with the "party line".

Surely this is a touch overblown

I mean, for this kind of attack to be successful a malware author would need access to the source code of a safe application (to do the required additions to it) as well as this evil application.

If the bad guys have the ability to add code to your trusted apps then you're screwed anyway.

Quicktime? Who uses Quicktime?

There's Quicktime Alternative for playing all those quicktime format files.

http://www.free-codecs.com/download/QuickTime_Alternative.htm

No idea if this is vulnerable to the same exploit but I doubt it.

RE: Old Viruses

I had the Stoned virus on a 20Mb Hdd on an IBM XT. 1Gb drives were but the stuff of dreams back then

RE: A Sad week for Linux

This isn't anything to do with Linux's security. The main python CGI script is coded badly. It's the usual mistake of implicitly trusting the outside world rather than mistrusting it.

This could have happened on any OS, with any Architecture, as long as it had the python libraries installed (hooray for Platform agnostic languages). At least they had the foresight to react instantly to the bug report and didn't try and cover it up or ignore it.