Fix Leopard’s ARDagent Flaw

June 25, 2008

Now that there is code in the wild that exploits ARDagent to get root access, I figured it was time to whip up a simple script to help close the issue. To explain, the reason that ARDagent is allowed to run code as root without first authenticating is because of the SUID bit.

[Read more]

Filed Under Training · Leave a Comment

Building a Documentation Wiki

May 24, 2008

The idea here is to build a documentation wiki environment that is structured enough to handle changes to the system from both the bottom-up and top-down. Using templates and a little ingenuity, we can achieve this with mediawiki.
[Read more]

Filed Under Training · Leave a Comment

ChicagoCon 2008

May 12, 2008

ChicagoCon 2008 is starting this week. I have a talk at 3pm Saturday titled: Conquests of a Penetration Tester. More information to come.

Filed Under Social, Training · Leave a Comment

Recent Posts

Recent Comments
- steve: You might know something about that, now don’t you :-p
- Travis L: Power outages are a thing of the past until someone accidently shuts down the box. *whistles innocently*
- steve: @shyaam We don’t have an immediate need anymore for new hardware, however we won’t turn it down....
- shyaam: Are you guys still looking for hardware? contact me at my email and I will give you more info…
- shyaam: Cute pics…

Categories
- Personal
- Social
- Software
- Training
- Uncategorized
- Website
Archives

Links
Meta
- Log in
- WordPress
- XHTML

Fix Leopard’s ARDagent Flaw

Building a Documentation Wiki

ChicagoCon 2008

eNews & Updates

Advertisements

Recent Posts

Recent Comments

Categories

Archives

Links

Meta