Sunday, December 28, 2008

Why the Latest IE Flaw Proves Linux Got it Right From the Start

"While that doesn't tell us much, the knowledge base article (or "KB") 960714 referenced does spill the beans.

"Fundamentally, it was discovered that program code -- of a malicious person’s construction -- be executed on your computer, if a user views a specially crafted web page with IE.

"In particular, a rogue script can allocate a block of memory (an array) then apparently release it without updating the array's length, meaning that the block of memory still remains preserved.

"Then, if data binding is enabled (which it is, by default), a rogue web page can take advantage of an incorrect handling of certain XML tags within IE to cause the browser to pass control to the supposedly free memory location."

More here

Thursday, December 25, 2008

The 12 Days of Christmas (EFF-style).

Friday, December 19, 2008

Blagojevich Sells More Stuff!

Sunday, December 07, 2008

IBM Virtual Desktop Bundles Lotus & Ubuntu to Freeze Out Microsoft.

IBM teams with Ubuntu provider Canonical and virtual desktop software maker Virtual Bridges on a bundle that lets systems administrators deliver open-source Linux and Lotus messaging and collaboration software to desktops and workstations across remote offices. Such virtualization deployments, IBM claims, enables great IT infrastructure savings for cost-conscious enterprises.

Link: Click Here