The perpetual Flash problem with Ubuntu

Posted November 6, 2010 at 2:46 pm in General

If any of you have recently updated your Ubuntu packages, you may have found a previous working instance of Adobe Flash player to now be broken. This problem seems to have occurred with 32 and 64-bit versions.

The solution that worked for my system was to run the following command:

sudo dpkg --configure -a

You’ll see a bunch of packages being downloaded/updated/etc. In particular you’ll notice the following:

2010-11-06 15:34:54 (1007 KB/s) - `./adobe-flashplugin_10.1.102.64.orig.tar.gz' saved [4970105/4970105]

Download done.
Flash Plugin installed.

Restart your web browser and Flash should once again be working.

Read More | Comment

PHP Profile Registration Script

Posted July 12, 2010 at 2:46 pm in Programming

PHP Profile Registration ScriptI tried my hand at coding a PHP registration script that a user would be able to use to register a profile for a site. My goal was to write a script that enforced a strict registration policy, focusing on enforcing a secure password and reducing the possibility of a fake email address.                 

The policy I created focused on:

  • A unique user name
  • A secure password using a minium of 8 characters in a combination of upper case, lower case, numbers (0-9), and special characters (! @ # $ % &)
  • Your first and last name
  • An e-mail address
  • Your gender

Read More | Comment

Trying my hand at tabnabbing

Posted June 19, 2010 at 10:59 pm in Phishing, Privacy

I recently learned about tabnabbing/tabgrabbing and decided to give it a try for myself. If you are unaware of what tabnabbing/tabgrabbing is then I suggest you point your browser to http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/ for more detailed information regarding the attack.

The idea behind this attack is to deceive the user into believing they have left open a browser tab that has expired credentials in the hope that they’ll attempt to reauthenticate themselves so we’re able to steal their credentials. It’s important to note that the user must not have an expired session or have logged out from the site we are attempting to steal credentials from. The gist of this attack is that the user submits their credentials, we steal them, and then redirect them to the site they were attempting to access in the first place. In order to do this we’ll need someplace to store these valuable credentials so the first thing I did was setup a MySQL database to house them.

Read More | Comment

Page 1 of 1512345...LAST