http://forums.amugonline.org/index.php http://forums.amugonline.org/index.php?topic=1012.msg3534#msg3534
Tom Baley
_______________________________________ ______

Attacks likely against unpatched Mac OS Samba bug
Gregg Keizer
 
July 27, 2007 (Computerworld) Symantec Corp. this week warned Mac OS X users that the addition of an exploit to the Metasploit hacking framework had boosted the threat posed by an unpatched bug in Samba, the open-source file- and print-sharing software included with the Apple operating system.
Although the vulnerability was disclosed May 14 and patched that same day by the Samba community, Apple has not updated Mac OS X with a fix, said Symantec's Alfred Huger, vice president of engineering with the security company's response group.
"This is significant exposure for Mac OS X users," said Huger. "Samba is used in virtually every mixed environment where there are Macs and PCs, and the threat profile is much higher now that an exploit has been added to Metasploit."
Samba, which is also used by most Linux distributions to file- and print-sharing with Windows systems, is turned on in Mac OS X when users activate the Windows Sharing feature.
This month, a trio of Brazilian researchers who collaborate as Rise Security released Mac OS X attack code for the Samba vulnerability. According to Symantec, the Rise code is "almost identical" to what the company's security team discovered in late May.
More important, said Huger, is that Rise also contributed their code to Metasploit, an open-source platform for creating, testing and launching exploit code. "Once we see something in Metasploit, we know it's likely we'll see it used in attacks," he said, as he explained why Symantec had amped its earlier warning. "Every Unix-based break-in that's not handcrafted, in other words, not with the attacker sitting at the keyboard during the attack, is made with ...]]> http://forums.amugonline.org/index.php?action=post;topic=1012.0 Fri, 27 Jul 2007 22:34:02 GMT http://forums.amugonline.org/index.php?topic=1012.msg3534#msg3534 http://forums.amugonline.org/index.php?topic=244.msg953#msg953 http://forums.amugonline.org/index.php?action=post;topic=244.0 Thu, 16 Feb 2006 14:35:48 GMT http://forums.amugonline.org/index.php?topic=244.msg953#msg953 http://forums.amugonline.org/index.php?topic=244.msg948#msg948
I'm deffinitely going to give this a try. Thanks for the tip Royce!]]> http://forums.amugonline.org/index.php?action=post;topic=244.0 Wed, 15 Feb 2006 22:29:21 GMT http://forums.amugonline.org/index.php?topic=244.msg948#msg948 http://forums.amugonline.org/index.php?topic=244.msg947#msg947 http://forums.amugonline.org/index.php?action=post;topic=244.0 Wed, 15 Feb 2006 22:21:56 GMT http://forums.amugonline.org/index.php?topic=244.msg947#msg947 http://forums.amugonline.org/index.php?topic=244.msg946#msg946 www.dvdovernight.com. Sounds like they're similar to NetFlicks and BlockBuster's mail-delivery movie service (which is what I was referring to in my last post). I'll look at their variety, could be a viable alternative.]]> http://forums.amugonline.org/index.php?action=post;topic=244.0 Wed, 15 Feb 2006 22:06:35 GMT http://forums.amugonline.org/index.php?topic=244.msg946#msg946