Threat Level: green Handler on Duty: Manuel Pelaez

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Firefox 1.0.4; DNSSEC Tools; Phisher's benefit use Google link; Viewing Chat Logs; Web Browser Forensics; Gecko Based Browers HTTP Authentication Prompt Vulnerability

Published: 2005-05-12
Last Updated: 2005-05-13 02:17:01 UTC
by Kevin Hong (Version: 1)
0 comment(s)

Firefox 1.0.4 Released.



Firefox 1.0.4 released with fixed remote code execution of Javascript and DHTML errors.





For more information http://www.mozilla.org/products/firefox/releases/1.0.4.html






DNSSEC Tools.


The Project released their fist alpha version. Following theor web site, the project is helping ease the deployment of DNSSEC related technologies.






What benefits use Google link for Phisher.


We've seen the phisher use Google link when they send phishing scam. We thought the benefits are free redirect and url filter avoidance. Whatelse phisher have benefits? If you have any information or idea, please use our contact form at
http://isc.sans.org/contact.php to send them to use.



Comments from Jozef Hatala, It prevents SpamCop from filing a complaint with the actual ISP hosting the phisher's website.


Viewing Chat Logs.



We were asked today to assist a concerned parent in finding chat logs on a child's computer. We believe that many of our readers may already be doing this and solicit your ideas and comments. We plan to publish a short (two to three pages) guide for parents and school administrators on how to look for chat logs, and are looking for the specific locations of AIM, ICQ, MSN, etc. chat clients plus any other tips that you might have to offer. Use our contact form at
http://isc.sans.org/contact.php to send them to us.



Here are some of chat log location.



MSN Messenger 7.0 : C:\Documents and Settings\<windows login>\My Documents\My Received Files\<IM handle>\History



Yahoo Messenger 6.0 : C:\Program Files\Yahoo!\Messenger\Profiles\<IM handle>\Archive\Messages



AOL Messenger : C:\program files\users\default\log\AIM\Query



Miranda Messenger :C:\Program Files\Miranda IM\Logs



Web Browser Forensics.


The securityfoucus update Web Browser Forensics article. , the document introduce tools and techniques to reconstruct files cached by Mozill Firebox browsers. The one of tool called is support Cache View for Netscape Navigator, Mozilla, Opera and IE caches.






Gecko Based Browers HTTP Authentication Prompt Vulnerability.



http://www.securiteam.com/securitynews/5RP0C0AFPA.html








----------------------------------------------------


Handler on Duty

Kevin Hong (khong-at-kisa.or.kr)
Keywords:
0 comment(s)
Diary Archives