http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2013-06-28 15:01:25 - A Glitch in Code Takes Nine Department : Windows 7 32 bit One fine day GPG4Win s mistress Kleopatra stopped showing public keys of people I could not encrypt files anymore because of missing public keys I gently nudged MsKleo to import certificates But at the end of the import, MsKleo purrs with message processed 0, imported 0 Certificates are not imported Gaah Time to http://www.secuobs.com/revue/news/454391.shtmlhttp://www.secuobs.com/revue/news/454391.shtml Secuobs.com : 2010-05-25 07:37:10 - A Glitch in Code Takes Nine Department - The amazing mathematical gamester Martin Gardner passed away May his soul rest in puzzles Filed under Uncategorized http://www.secuobs.com/revue/news/225270.shtmlhttp://www.secuobs.com/revue/news/225270.shtml Secuobs.com : 2009-12-09 18:01:00 - A Glitch in Code Takes Nine Department - I was trying to parse a certificate in VBScript and found that CAPICOM is returning true for call CertificateKeyUsageIsDecipherOnlyEnabled But in my certificate the DER BITSTRING is set to B1 10110001 This means Decipher Only bit is not set and should not be considered actual DER coding is like this 030200b1 For a NamedBitString unused unset trailing http://www.secuobs.com/revue/news/170237.shtmlhttp://www.secuobs.com/revue/news/170237.shtml Secuobs.com : 2009-09-25 12:45:59 - A Glitch in Code Takes Nine Department - This is cool Microsoft is releasing some of their internal tools used in Secure Development Lifecycle for free You can download them at SDL tools Update Damn BinScope requires NET 35 framework So Win2000 is ruled out Unfortunately we are still using Windows 2000 at office Posted in Tools http://www.secuobs.com/revue/news/144403.shtmlhttp://www.secuobs.com/revue/news/144403.shtml Secuobs.com : 2009-07-01 16:19:05 - A Glitch in Code Takes Nine Department - I have clearcase 7012 on Win2k OS When I built a project using VisualStudio NET 2003, files are created in output “Release” directorywhich gets created under the vob In this folder one particular file“vc70idb” started creating problems During further builds, VS is notable to delete this file to overwrite My first reaction http://www.secuobs.com/revue/news/115847.shtmlhttp://www.secuobs.com/revue/news/115847.shtml Secuobs.com : 2009-06-25 10:06:58 - A Glitch in Code Takes Nine Department - Posted in Uncategorizedhttp://www.secuobs.com/revue/news/113537.shtmlhttp://www.secuobs.com/revue/news/113537.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - It was a marathon A week of Dr Debugalov’s debugging tales’ cartoonshas ended My free time last week is over and I’ll be developing anddebugging in a new project It does not mean there will be no morecartoons I’ll more or less sketch a cartoon-a-day It is littletime-consuming to http://www.secuobs.com/revue/news/103860.shtmlhttp://www.secuobs.com/revue/news/103860.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - Before doing any kind of tracing, especially tracing combined with ‘z’command in WinDbg, make sure you have step_filter set appropriatelyOtherwise the debugger will not give chance to debug since with everystep all open dbg windows have to be updated and you don’t want to endup tracing deep inside core dlls like http://www.secuobs.com/revue/news/103859.shtmlhttp://www.secuobs.com/revue/news/103859.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - Found this interesting article “Anatomy of a malware scam” by Jesper fromhis post WordPress Akismet does a good job of identifying suchtrackbacks and comments and block them as spam If you go through thelist of spam identified by WordPress, you’ll definitely come acrosswhat Jesper explains in the article This article is a http://www.secuobs.com/revue/news/103858.shtmlhttp://www.secuobs.com/revue/news/103858.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - I had the chance to debug into CGroupPolicyObject::New method inGPEditdll since the call is failing My finding is that if a thread’sSecurity Impersonation Level is anything other than Anonymous, thecall will fail SecurityAnonymous, SecurityIdentification,SecurityImpersonation, SecurityDelegation The reason is that the codein this method is as follows this is my code guessed fromdisassembly: HTOKEN hToken http://www.secuobs.com/revue/news/103857.shtmlhttp://www.secuobs.com/revue/news/103857.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - “Diamonds are forever but bugs are an error” Posted in bugshttp://www.secuobs.com/revue/news/103856.shtmlhttp://www.secuobs.com/revue/news/103856.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - WHDC site announced new WinDbg release 6103233http://msdlmicrosoftcom/download/symbols/debuggers/dbg_x86_6103233msiPosted in Debugginghttp://www.secuobs.com/revue/news/103855.shtmlhttp://www.secuobs.com/revue/news/103855.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - Here is simple batch file to store symbols of released versions of yourproduct Symstoreexe is used from Debugging Tools I use thisregularly to save debugging symbols of our product locally instructured manner set BUILDNUM=%1 “C:Program FilesDebugging Toolsfor Windowssymstoreexe” add /r /f“*pdb” /s\ /t “My Product Name” /v “Build%BUILDNUM%” Developers can then http://www.secuobs.com/revue/news/103854.shtmlhttp://www.secuobs.com/revue/news/103854.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - As explained by Volker von Einem here, WinDbg 670050 is special in thesense it has CLR debugging support Microsoft erred and released thisversion which is actually internal release It is not available fordownload anymore and those who have kept copies are lucky Worststill, MS never intends to release this CLR support http://www.secuobs.com/revue/news/103853.shtmlhttp://www.secuobs.com/revue/news/103853.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - get it from WHDC Or wwwwindbgorg for quick links Posted inUncategorizedhttp://www.secuobs.com/revue/news/103852.shtmlhttp://www.secuobs.com/revue/news/103852.shtml Secuobs.com : 2009-05-31 16:57:33 - A Glitch in Code Takes Nine Department - Interesting article on rootkit overview can be found at SecurityFocusPosted in Uncategorizedhttp://www.secuobs.com/revue/news/103851.shtmlhttp://www.secuobs.com/revue/news/103851.shtml