Parts of Internet Could Disappear Amid FBI Server Shutdown

In late 2011 the Federal Bureau of Investigation (FBI) set up a bunch of secure servers to replace the ones created by seven individuals that were arrested for internet fraud. According to a statement by the FBI at the time of the arrests, "The dismantling of the defendants' rogue DNS servers - to which millions of computers worldwide had been redirected - would potentially have caused all of those computers, for all practical purposes, to lose access to websites."

Any company in the world that had a website hosted on one of those servers had only 120 days to knock out all the malware known as DNSChanger Trojan before the servers would be shut down by the FBI. Well, those 120 days of grace have almost run their course and any site that doesn't or hasn't cleaned out the malware could see their website erased from the internet entirely come March 8. If this happens, then we could also very well see a sizable piece of the internet disappear on that day as well.

Brian Krebs, a security expert, has claimed that nearly half of the world's Fortune 500 companies and personal computers at almost 50% of all federal government agencies still have the malware on their networks. If that is true, then there are a lot of companies, important ones, that will lose their websites and access to them in just a couple of weeks.

According to President and Chief Technology Officer for Internet Identity, "Yes, there are challenges with removing this malware, but you would think people would want to get this cleaned up. This malware was sometimes bundled with other stuff, but it also turns off antivirus software on the infected machines and blocks them from getting any security updates from Microsoft."

Source: Mashable - FBI's Looming Server Shutdown Could Leave Chinks of the Internet Dark

Find out what is going on in the Tech Army World.



What are the Top 10 Money Making Missions?

What other companies have joined and what do they do?

How do I join the
Tech Army Organization ?

Apache Releases v2.2.22 for Apache HTTP Server

The release of Apache HTTP Server v2.2.22 has just been announced by both the Apache Software Foundation and the Apache HTTP Server Project. The Apache HTTP Server Project has stated that this release is definitely the best version of Apache HTTP Server released so far and is encouraging all of its users to to upgrade as soon as possible.

Version 2.2.22 of Apache HTTP Server 2.2.22 is mainly an update that fixes security issues and bugs. However, there are a number of significant security fixes that are included in v2.2.22. These include:

• Reject requests when the request-URL doesn't match HTTP specification.


• Fix integer overflow in ap_pregsaub().


• Resolve additional cases of URL rewriting with ProxyPassMatch or RewriteRule.


• Fix segfault when the '%{cookiename}C' log format string is in use and a client sends a nameles, valueless cookiee, causing a DoS.


• Fix scoreboard issue which could allow an unprivileged child process to cause the parent process to crash and shutdown in stead of terminating cleanly.


• Fixed an issue in error responses that could expose "httpOnly" cookies when no custom ErrorDocument is specified for status code 400.

Version 2.2.22 of Apache HTTP Server is currently available for download if you want it. The CHANGES_2.2 file, which is found on the download page, has the entire list of everything that is changed in v2.2.22 and a condensed list, known as CHANGES_2.2.22, includes only those changes since the prior release of v2.2. If you want to, you can also view an entire summary of all the security vulnerabilities addressed in this release, as well as earlier releases.

The summary includes version 1.4.5 of Apache Portable Runtime (APR) as well as APR Utility Library (APR-util) version 1.4.2, which is also paired with the tar and zip distributions. The Apache Portable Runtime libraries libapr and libaprutil, as well as Win32, libapriconv v.1.2.1, must all be updated for binary compatibility and to address a lot of known security and platform bugs.

Whenever you do decide to upgrade or install v2.2.22, keep in mind that if you are going to be using Apache HTTP Server with a threaded MPM other than the Prefork MPM, you need to ensure that all modules you will be using, as well as their libraries, are thread-safe.

Source: Connectwww.com - Apache HTTP Server 2.2.22 Released
Server Watch - Apache HTTP Server 2.2.22 Released

Find out what is going on in the Tech Army World.



What are the Top 10 Money Making Missions?

What other companies have joined and what do they do?

How do I join the
Tech Army Organization ?

Vulnerability in X Server Allows the Unlocking of Computer

A very interesting, and potentially very harmful, vulnerability has been discovered in X.orgs's X Server that allows users to gain access to a locked computer. By pressing the Ctrl key, Alt key and * key simultaneously one can disable a user's screensaver and unlock the computer, a glitch discovered by French blogger "Gu1". The technique has already been verified to work on versions 1.11 and higher of X.org's X Server.

According to Gu1, the vulnerability is caused by something known as the "AllowClosedownGrabs" debug option. If this debug option is activated, pressing that key combination will cause any processes that calculate mouse or keyboard inputs to shut down. In the case of the key inputs above, the computer's screensaver, which usually prevents a locked computer from being accessed, is disabled.

Gu1 also says that this debug option had existed up until 2008, though at that time it was disabled by default and well-documented. It has also been mentioned that the developers explicitly pointed out the potential security problems that may arise when this is used in combination with screensavers. In addition to that, developers were able to use an API to disallow the function for their processes.

The function was re-introduced last year though was enabled by default and was not clearly documented and not easily configurable according to Gu1. Developer at X.org Peter Hutterer stated, "This was caused by a miscommunication within the development team." After the function was re-introduced, developers failed in removing the keyboard combination from the default keymap.

Gu1 also mentioned that any Linux distributions that use version X Server v1.11 are vulnerable and added that he was able to reproduce the problem with Debian and GNOME 3 and even with Arch Linux and GNOME 3 and Slock and Slimlock. It is also reported that KDE can also be unlocked this way.

Source: The H - X.org server allows anyone to unlock computer

Power Point Projectors
Most business class projectors will do a good job displaying your PowerPoint presentation. If you have a small presentation group, a 2000 lumen LCD projector will be able to produce a nice and clear picture. For larger audiences you should consider a 5000 lumen LCD projector.

New Denial of Service Attack Takes Its Time on Your Server

On Thursday a researcher published a proof-of-concept code that takes a new look on the slow HTTP Denial-of-Service (DoS) attack by simply dragging out the whole process of reading the server's response and, eventually, overwhelming it. Senior Software Engineer at Qualys Sergey Shekyan also added this modified Denial-of-Service attack, which he dubs a Slow Read attack, to his Slowhttptest tool.

As far as the attack goes, Slow Read basically sends a legitimate HTTP request and then takes an excruciatingly long time reading the response. By doing so, the Slow Read attack keeps as many open connections as possible and eventually causes a Denial-of-Service attack.

The Slowhttptest attack tool developed by Shekyan was inspired by related open-source tools Slowloris and OWASP's Slow HTTP Post. Slowloris keeps connections open by sending partial HTTP requests and then sends headers at regular intervals in order to prevent the sockets from closing.

OWASP's Slow HTTP Post Distributed Denial-of-Service (DDoS) tool simulates an attack using POST headers that have a legitimate content-length field. This allows a web server to know just how much data is arriving. Once the headers are delivered, the POST message body is transmitted slowly and gridlocks the connection, as well as the server resources.

Slow HTTP attacks are becoming increasingly more popular, especially among hackers, as a way to quietly insert a Denial-of-Service attack due to the fact that these hacks are relatively simple to perform, require minimal computing resources and are often hard to detect until it is too late.

Source: InformationWeek - New Denial of Service Attack Cripples Servers Slowly

Rack-Mount Server rentals are ideal if your company needs an extra storage unit for company information while you are testing various types of storage solutions.

Whether you need a short-term rental or a long-term lease, we have the right kind of server for your needs.

Beta Testing Begins for Red Hat Enterprise Linux 5.8

Linux vendor Red Hat is fancying itself up with a newer platform but is by no means hanging its older customers out to dry. The company is currently in the process of testing the Red Hat Enterprise Linux 5.8 release, which will provide customers with updates to the platform.

Red Hat first launched Red Hat Enterprise Linux 5 in 2007 and in the latter part of 2010 released Red Hat Linux Enterprise 6, which provided the next generation of enterprise Linux features. Red Hat Enterprise Linux was also recently updated to Red Hat Enterprise Linux 6.2, which gave new control and storage features. The upcoming release of Red Hat Enterprise Linux 5.8, which is now in beta testing, will be getting its own set of updates, though resource control won't be among them.

The resource control functionality found in Red Hat Enterprise Linux 6.2 is from the cgroups feature, which is also not present in the Red Hat Enterprise Linux 5.x series. According to Vice President of Linux Engineering at Red Hat Tim Burke, "cgroups was extremely invasive so you'll never see that in Red Hat Enterprise Linux 5. We continue to do minor feature enhancements in Red Hat Enterprise Linux 5." Burke also added that the minor feature enhancements added to v5 must not be invasive or overly risky and that there is also the potential for additional hardware enablement in Red Hat Enterprise Linux 5.

Even though cgroups isn't going to be in RHEL 5.8, other types of enterprise controls are. Some of the new features support Power Management Quality of Service (QoS), a feature that provides power savings to enterprise via automated scheduling based on QoS policies. In addition to that, there is something known as "iotop" support. This is said to provide monitoring for I/O from a process perspective that will be helpful in troubleshooting performance issues.

According to Burke, "RHEL 5 is still getting development features so it's definitely not the end of the road for RHEL 5. Remember we have a 10-year product lifecycle. At this point RHEL 5 is only four years old, so we still have a long runway left for RHEL 5."

Source: Server Watch - Red Hat Enterprise Linux 5.8 Enters Testing

A Copier Rental is a quick way to mass produce important documents for potential customers at an event or conference. Renting office equipment is simple and easy and it can also save you loads of time and money. Rentacomputer.com has been offering copier rentals to more than 1000 cities worldwide for over 20 years.

Battlefield 3's PC Server Browser Gets Updated

One thing that PC gaming has always had over console gaming (at least in terms of multiplayer) was the ability to buy your on server to host your favorite games online. In addition to that, you also had the ability to join any server you could find, dramatically increasing the chances of you finding a game. Battlefield 3 brought a little of this functionality to consoles upon its release, though the PC still does it better in my opinion. However, it appears as if PC gamers will have even more to brag about as DICE has made a plethora of "super charged" improvements to the Server Browser for the PC version of Battlefield 3.

The full list of all the changes is as follows:

Filter by Country - This allows you to search for servers by country (obviously). This is highly useful for any gamer looking to play with gamers from all corners of the earth or want to play on the server of your favorite country.

Server Queuing - This is sure to make a lot of gamers happy. Server queuing allows you to be added to a waiting queue if the server you want to play on is full. This is good if you are trying to play a specific map, game mode or with specific players.

New Navigation Icons - New quick links are available that take you directly to some of the more popular areas of Battlelog as well as easy access to things like stats and dog tags.

Easier Server Joining for Parties - The whole process of joining a server with a party of friends has been improved. The update allows everybody in your party to connect to the server asynchronously, without having to wait for your team to ready up.

Battle Report Sharing - You now have the ability to share your favorite battle reports on Facebook, Twitter and Google+, letting all your friends know just how much of a boss you really are (or aren't) at the game.

Improved Server Browser - The server browser has now been equipped with more search options like Kill Cam, Friendly Fire and 3D Spotting. This is sure to make finding specific things in a game much faster and easier.

That's the run-down of all the new features in DICE's update to the Battlefield 3 PC Server Browser system. Hopefully this helps make finding games, servers and parties a lot simpler. Battlefield 3 fans should also keep an eye out for the game's first set of DLC, "Back to Karkand", set to drop on December 13th. Owners of the Limited Edition game will already have free access to the DLC with everybody else having to pay for it.

Source: ComputerAndVideoGames.com - Battlefield 3 PC Server Browsers gets 'super charged' update

SMBnow.com is news of, for and by SMBs!
SMBnow.com... The Small & Medium Business Magazine!

Intel Debuts Pentium 350 Chip for Low-End Servers

Intel, the most widely renowned and largest computer chip manufacturer on the planet, has just introduced a brand new, low-power Pentium 350 processor which is specifically aimed at low-end servers. The company had talked previously about its intentions to move into the low-end server market by producing "server versions" of the Atom processor which would support technologies like ECC memory.

However, Intel has taken that idea and done something that simply has most tech industry professionals scratching their heads. Intel has gone ahead and jumped right into the market, though with a Pentium branded processor instead of an Atom. The processor the company has decided to use? The dual-core 1.2GHz Pentium 350.

Even though the Pentium brand from Intel is extremely well known, the company has relegated it to cut down processors, effectively taking the place of the company's Celeron processors. Regardless, the Pentium 350 supports Hyperthreading and, most importantly, has a thermal design power (TDP) of only 15W.

What makes the Intel Pentium 350 processor a server-oriented chip is the complete lack of an on-chip GPU and support for ECC memory with the memory controller supporting two channels. In addition to that, there is support for Intel's Vpro virtualization technology, presumably meaning that the Pentium 350 chip was designed for very specific and traditional workloads.

The Xeon range of processors from Intel currently dominates the commodity server market, though the company needs to start producing lower power chips to compete with ARM-based servers in the future. It was expected that Chipzilla would serve the low-end server market with an Atom processor, but for now the 15W Pentium chip will have to take its place until 22nm Atom chips begin coming off of Intel's production lines sometime next year.

Source: The Inquirer - Intel outs 15W Pentium 350 chip for servers

Computers, Desktops, Laptops, Servers and the latest in Portable Tablet PCs are available from your computer rental company, Rentacomputer.com.

Talk to a Rentacomputer.com Tech Travel Agent Today!
Call Toll free 800-736-8772.