Kissing You

layan lagu di cuti sekolah.. ohohoho kissing u my love..

mee hailam kembang~

HAII..lame aku xupdate blog ini.. today,hari yg penat..aku handle dapo..ma aku xsehat.. so,ikut suka aku la nak masak ape..hahaha

lunch td,aku masak daging kicap.. tp bukan nak cite yg lunch td,tp yg dinner..

dinner aku wat mee hailam.. macam xjadi,tp rase hailam itu totap ado..hahaha

yg boleh kembang mee tu sbb aku rebus terlalu lama and lupa nak sejatkan..dats y le jadi kembang.. so,aku makan cket je td sbb muak.. hahahaha

ma cakap sedap..mawi makan abes siap tmbh2 lagi..so,lega la cket ati ini..huhu

esok hari yg bz jugak sbb ma cakap dia nk gi klinik..selsema tu..tp kan,selsema xde ubat..huhu

barca win against united

and im really2 upset.. myb united kalah sbb xkai jersi no 1 kot? pape pon,taniah la kat barca.. 2:0.. kenduri sakan le korg..

dengan ini,aku dengan ati tius nye,ingin menidurkan diri ku yg lara ini..sangat murih,kuciwa..

Adobe Flash Player Multiple Vulnerabilities

SECUNIA ID : SA34012
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
CVE-ID : CVE-2009-0519 , CVE-2009-0520 , CVE-2009-0521 , CVE-2009-0522
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
RELEASED DATE : 25 FEB 2009

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
CRITICALITY : Highly Critical
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SOLUTION STATUS : VENDOR PATCH
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SOFTWARE :

• 
  
• 
  
• 
  
• 
  
• 
  

• Adobe AIR 1.x
• Adobe Flash CS3
• Adobe Flash CS4
• Adobe Flash Player 10.x
• Adobe Flash Player 9.x
• Adobe Flex 3.x

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
WHERE : From remote
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
IMPACT :

System access

This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.

Exposure of sensitive information

Vulnerabilities where documents or credentials are leaked or can be revealed either locally or from remote.

Privilege escalation

This covers vulnerabilities where a user is able to conduct certain tasks with the privileges of other users or administrative users.

This typically includes cases where a local user on a client or server system can gain access to the administrator or root account thus taking full control of the system.

Security Bypass

This covers vulnerabilities or security issues where malicious users or people can bypass certain security mechanisms of the application.

The actual impact varies significantly depending on the design and purpose of the affected application.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

DESCRIPTION :

Some vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious, local users to disclose sensitive information and potentially gain escalated privileges, and by malicious people to bypass certain security restrictions, disclose potentially sensitive information, and compromise a user's system.

1) An error when processing multiple references to an unspecified object can be exploited to dereference freed memory via a specially crafted SWF file.

Successful exploitation allows execution of arbitrary code.

2) An input validation error in the processing of SWF files can be exploited to cause a crash and potentially execute arbitrary code.

3) An error when displaying the mouse pointer on Windows can be exploited to potentially conduct "Clickjacking" attacks.

4) An error in the Linux Flash Player binary can be exploited to disclose sensitive information and potentially gain escalated privileges.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

SOLUTION :

Apply vendor updates.

Flash Player 9.x:
Update to version 9.0.159.0.
http://www.adobe.com/go/kb406791

Flash Player 10.0.12.36 and prior:
Update to version 10.0.22.87.
http://www.adobe.com/go/getflash

Flash Player 10.0.12.36 and prior (network distribution):
Update to version 10.0.22.87.
http://www.adobe.com/licensing/distribution

Flash Player 10.0.15.3 and prior for Linux:
Update to version 10.0.22.87.
http://www.adobe.com/go/getflash

AIR 1.5:
Update to version 1.5.1.
http://get.adobe.com/air

Flash CS4 Professional:
Update to version 10.0.22.87.
http://www.adobe.com/support/flashplayer/downloads.html#fp10

Flash CS3 Professional:
Update to version 9.0.159.0.
http://www.adobe.com/support/flashplayer/downloads.html#fp9

Flex 3:
Update to version 10.0.22.87.
http://www.adobe.com/support/flashplayer/downloads.html#fp9

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
REPORTED BY :

1) Javier Vicente Vallejo, reported via iDefense
2) The vendor credits Roee Hay from IBM Rational Application Security.
3) The vendor credits Eduardo Vela.
4) The vendor credits Josh Bressers of Red Hat and Tavis Ormandy of the Google Security Team.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ORIGINAL ADVISORY :

Adobe:
http://www.adobe.com/support/security/bulletins/apsb09-01.html

iDefense:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=773

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
TAKEN FROM : http://www.viruslist.com/en/advisories/34012
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

berita buruk untuk pengguna tmnet

wondering,betul ke tidak..kami nak kepastian!!

Bermula dari bulan MEI 2009, TMnet Streamyx telah menyempitkan jalur lebarnya. Semua nombor IP terlibat. Hanya nombor IP yang bermula dengan 60.48.XXX.XXX sahaja yang berkelajuan seperti biasa.

Jika anda menggunakan router bagi mendail nombor ini, anda memerlukan paling kurang 10 minit (itu pun jika anda bernasib baik).

Mengikut sumber-sumber yang boleh dipercayai, TMnet Streamyx melakukan ini semua bagi menghadkan penggunaan Internet di kalangan orang biasa agar mereka kembali kepada media lama iaitulah TV dan radio (yang semua orang tahu ia dipantau oleh kerajaan).

Media baru seperti SMS, MMS dan Internet dilaporkan telah menggugat keuntungan syarikat siaran televisyen besar seperti Media Prima dan juga menggugat politik Barisan Nasional. Mereka semakin kehilangan penonton dan juga para pengiklan yang menjadi tunjang syarikat mereka. Kerajaan Barisan Nasional pula semakin kehilangan para penyokong. Jika anda tidak percaya, sila rujuk video di bawah:-

tekan sini:

Lantaran dari itu, janganlah anda hairan mengapa talian 1-300 TMnet Streamyx sering sibuk. Mereka dihujani dengan aduan sama dan tiada apa yang boleh pekerja mereka lakukan.

Mereka hanya menjalankan tugas. Mereka ibarat polis yang menerima arahan daripada Perdana Menteri. TMnet juga terpaksa menggaji pekerja yang bodoh dan jujur bagi menjayakan projek kotor kerajaan ini. Ini juga, telah mengakibatkan bilangan pekerja mereka menjadi sedikit sehingga membuatkan anda terpaksa menunggu lama, menanti skrip klasik yang tersusun dari kakitangan TMnet ini.

Ramai kakitangan yang berpengalaman di TMnet telah berhenti dan ada yang bekerja dengan syarikat jalur lebar yang lain, di dalam dan di luar negara.

Johan Jaafar selaku orang nombor satu Media Prima yang baru, jelas sekali kekurangan idea bagaimana untuk memenangi hati penonton dan pengiklan serta mengelak bersekongkol dengan kerajaan Barisan Nasional.

Sekatan sistematik yang tersembunyi ke atas Internet kita ini, bukan sahaja menyusahkan para penulis blog, tetapi juga syarikat kecil dan besar yang berasaskan Internet. Jika syarikat anda selalu menggunakan Internet bagi tujuan emel atau pun sebagai alat komunikasi (Skype, MSN, YM dan lain-lain) syarikat anda juga akan turut berada di dalam masalah yang sama.

Harap maklum.

taken from : hanief.blogspot.com

How to Detect a Hacker Attack

"How do you know when a hacker is knocking at your door? Some basic tips on detecting and preventing hacker attacks. "

Most computer vulnerabilities can be exploited in a variety of ways. Hacker attacks may use a single specific exploit, several exploits at the same time, a misconfiguration in one of the system components or even a backdoor from an earlier attack.

Due to this, detecting hacker attacks is not an easy task, especially for an inexperienced user. This article gives a few basic guidelines to help you figure out either if your machine is under attack or if the security of your system has been compromised. Keep in mind just like with viruses, there is no 100% guarantee you will detect a hacker attack this way. However, there's a good chance that if your system has been hacked, it will display one or more of the following behaviours.

Windows machines:

• Suspiciously high outgoing network traffic. If you are on a dial-up account or using ADSL and notice an unusually high volume of outgoing network (traffic especially when you computer is idle or not necessarily uploading data), then it is possible that your computer has been compromised. Your computer may be being used either to send spam or by a network worm which is replicating and sending copies of itself. For cable connections, this is less relevant - it is quite common to have the same amount of outgoing traffic as incoming traffic even if you are doing nothing more than browsing sites or downloading data from the Internet.

• Increased disk activity or suspicious looking files in the root directories of any drives. After hacking into a system, many hackers run a massive scan for any interesting documents or files containing passwords or logins for bank or epayment accounts such as PayPal. Similarly, some worms search the disk for files containing email addresses to use for propagation. If you notice major disk activity even when the system is idle in conjunction with suspiciously named files in common folders, this may be an indication of a system hack or malware infection.

• Large number of packets which come from a single address being stopped by a personal firewall. After locating a target (eg. a company's IP range or a pool of home cable users) hackers usually run automated probing tools which try to use various exploits to break into the system. If you run a personal firewall (a fundamental element in protecting against hacker attacks) and notice an unusually high number of stopped packets coming from the same address then this is a good indication that your machine is under attack. The good news is that if your personal firewall is reporting these attacks, you are probably safe. However, depending on how many services you expose to the Internet, the personal firewall may fail to protect you against an attack directed at a specific FTP service running on your system which has been made accessible to all. In this case, the solution is to block the offending IP temporarily until the connection attempts stop. Many personal firewalls and IDSs have such a feature built in.

• Your resident antivirus suddenly starts reporting that backdoors or trojans have been detected, even if you have not done anything out of the ordinary. Although hacker attacks can be complex and innovative, many rely on known trojans or backdoors to gain full access to a compromised system. If the resident component of your antivirus is detecting and reporting such malware, this may be an indication that your system can be accessed from outside.

Unix machines:

• Suspiciously named files in the /tmp folder. Many exploits in the Unix world rely on creating temporary files in the /tmp standard folder which are not always deleted after the system hack. The same is true for some worms known to infect Unix systems; they recompile themselves in the /tmp folder and use it as 'home'.

• Modified system binaries such as 'login', 'telnet', 'ftp', 'finger' or more complex daemons, 'sshd', 'ftpd' and the like. After breaking into a system, a hacker usually attempts to secure access by planting a backdoor in one of the daemons with direct access from the Internet, or by modifying standard system utilities which are used to connect to other systems. The modified binaries are usually part of a rootkit and generally, are 'stealthed' against direct simple inspection. In all cases, it is a good idea to maintain a database of checksums for every system utility and periodically verify them with the system offline, in single user mode.

• Modified /etc/passwd, /etc/shadow, or other system files in the /etc folder. Sometimes hacker attacks may add a new user in /etc/passwd which can be remotely logged in a later date. Look for any suspicious usernames in the password file and monitor all additions, especially on a multi-user system.

• Suspicious services added to /etc/services. Opening a backdoor in a Unix system is sometimes a matter of adding two text lines. This is accomplished by modifying /etc/services as well as /etc/ined.conf. Closely monitor these two files for any additions which may indicate a backdoor bound to an unused or suspicious port.

source

BOBOK KOKSEY

selamat hari telekomunikasi dan informasi masyarakat sedunia! berkomunikasilah dengan keluarga dan teman tersayang hari ini.

ok lah..aku sebenarnya xpuas ati ngan lecture aku..bia la baru pas ari guru,btw,hari ni bukan hari guru..so,baru hari ni aku tulis,xnak kasi guru2 tersinggung la..haha

ok,lecture aku ni kan,dulu b4 midsem,dia da kasi assgment tuk final..alih2 latest nye pulak,dia kasi lagi 2 assgment tu minggu lepas.. haiss.. dah a minggu ni OSPE.. korg tau x? dia sambung master,so dia nye assgment kat dia nye U tu,dia suh kami budak2 ni buat.. xkan la assgment kami kene translate jer? xlogik kan?

kami punye la xmenang tgn,nak cope ngan OSPE and final seminggu after OSPE,mmg padat sgt jadual..igt kami ni koli batak anda ker?

bukannye aku xrespek cekgu,mak aku pon cekgu gak..aku xde nk hina cekgu2 pom.. tp, agk2 la..jgn la mempergunakan student tuk kepentingan sendiri.. nk ckp sal law,boleh..xde masalah.. kami student2 ni xde kuasa autonomi tuk memilih taw..ag satu,ini dah melanggar syarat2 perjanjian antara lecture ngan kolej iaitu mencampuri urusan peribadi dengan urusan kolej. hah! amik..jgn ajar kami undang2 saja,puan..kami juga skrg dah celik mata ttg perundangan..

tp xpe la puan,kami redha sbb ini kan tuk kebaikan kami jugak kan? kami nk dapat dip sedangkan puan kan da nk dapat master..master tuuu..kami dip pon xlepas2 ag ni..

smg cekgu itu lulus dengan jayanya dia pny master diatas usaha org laen. amin.

HEROES part 1 : Ami Bishop

Ami Bishop: sociopath

watak asal nye ialah Elle Bishop. dia ni ade conflict identity.. kekadang dia baik,kekadang dia jahat..dia xsedar ape yg dia wat tu,tp mmg considered as jahat, dan boleh membahayakan org len.. hehe..

plot dia ade la kaitan ngan jahat+baik,tp ini aku pny script,so xya la korg susa2 nk cakap ini salah,itu salah,xsama dalam series HEROES bla3..aku cuma amek main point je ni.. hihihi

sit back,relax, and enjoy our show~~

nntkan part 2 dimana claire bennet terjun bangunan pulak~~

da da~~~~~~~

may

Assalamualaikum.sori gngu. Juz nk inform pasal bln mei yg dpenuhi hari2 yg gmbira ini
(hr ibu,bapa,guru,buruh & hr jadi?) trdapat satu hari MALAPETAKA pd umat ISLAM.
TnggAl 14/15 MEI 1948 adalah hr malang kpd Umat ISLAM. Iaitu Penubuhan ENTITI(kerajaan) haram Israel. Genap 61 taung mrk mnJAJAH bumi PALESTIN & mnghalau Org ISLAM drp hidup di tanah air sndri. SO sy mnyeru kpd sluruh warga MUSLIM sekalian spya brterusan mmboikot brngn Israel & BrDOA agar ALLAH mnghancurkn kaum Israel.x mustahil jika mrk akn mnyerang kmbali PALESTIN tuk mnyambut ulng taun ke-61 mrk spt awl taun 2009. SEMOGA ALLAH MNGHANCURKAN ISRAEL….amin…

happy mother's day

selamat ari ibu buat ibu2 seluruh dunia umumnya, dan buat ma aku khususnya..

so,ktorg adik beradik ade la wat surprise yg xbrape suprise tu..hahaha

ktorg wat breakfast tuk ma+abah..kecik ati abah kalo xwat gak tuk dia..hihi

ok,menunya ialah roti bakar+mushroom soup..sound interesting right? yummy2.. simple,but sincere.. haha ape? aku xsincere?? mane korg taw aku xjujo..aku je yg tahu aku ni jujo ke x..kan kan kan?

aku pas subuh,tarik balik selimut,lupe sal surprise tu..alih2,adik bungsu ku kejutkan la..suh wat surprise tu..haha

aku bahagian soup,adik aku yg bgsu tu bhgn roti bakar.. yg laen2,tlg bukak tin campbell tu, tlg kemas meja makan.. yg laen2 lagi tu,mmg xde smgt keibuan la..bantai men game ngan tido.. haiss tp xpe.. janji siap surprise tu..hoho

ma aku siap request air kopi susu lagi..dengar2 sore dia dari arah bilik..wakakaka tu aku kate,surprise ni da xbrape nk surprise da..hahaha ma aku awal2 ag da tahu.. (rakan subahat).

ma n abah puji la betapa cedapnye pecah pagi tuk pagi ini..hihi

ma tmbh lg,tgh ari ni suh aku yg masak..ish..nakmo la..aku nk ikot ma aku shopping ..hahahaha adik aku yg len nk ikot gak..aku xkasi sbb aku cakap,"ari ibu,ibu xleh drive..bia anakanda yg drive..kui3" pny la bengang adik2 aku..wakakaakakakakaka

ok la..sampai di sini saja..aku nk sambung tujuan asal aku selepas subuh td..hhahaaha

sayang ma sokmo..sayang dooh2 nih..sunggoh..xnipu eh!~

lembu comel~

hihihi.. lembu2 ini menghalang lalu lintas.. tp syabas!! lembu mmg rawk!~ seme org respek sama lembu..huhu

ily oh ily..kangen sama lo..

da seminggu da x berblogger ni.. maklum la sibuk ngan assignment situ sana sini.. huhu

ok la,nak bercerita sat.

ni pasal mmbe aku kat matrik dulu..namanya ily (bukan nama sebenar).. aku sebenarnya mmg da lost contact da ngan dia.. tataw nape.. dia pon xde nk contact aku..ahaks..

okok..aku aku cite sebe sedikit pasal dia ek..

dia ni anak sulung dari dua beradik.. mmg manja abes la ngan mak dia..tp muka dia iras bapak..ahahaha dia budak langkau.. so,dia la paling muda di kalangan kami..

aku,ily,dan asiah geng ar.. mmg baik beb..aik..lari tajuk.. aku sebenarnye nk cite sal perangai pelik ily je..hahaha

dia suka bergambar but with strange stuffs.. contoh,dia kutip ape tah kat blkg dorm,tp macam daun+akar tp xde la kotor pon bende tu.. then,dia sambung2 bende tu,jadi la macam org greek zaman dolu2 kala tu pakai.. haha kalo korg still blurr,aku gtau cth terdekat lagi, time sukan olimpik athen,dorg kasi macam mahkota akar+daun tu tuk setiap pemenang.. huhuhu ok,i admitted,dia kreatif..

cara blaja dia juga sangat pelik.. org len,besenye,nak blaja dalam environment yg tenang, aman, nyaman bla3..tp dia....dia.... dia tido time wat revision malam2... jelesnye aku time tu.. haha ag satu,bila dia stadi,dia akan bercakap2,menyebut2 bende yg dia baca, then,part tu la aku paling suka.. sbb,aku xyah bace da topik tu memandangkan dia da jadi cekgu tmbhn aku..wakakaka

dia slalu cakap, " lawa x kalo ily pakai tudung labuh asiah ni?" uhuk3.. slalu di tny dengan soalan itu.. tp alih2,dia kai gak tudung bawal gi kelas.. hahaha pelik2.. tp kalo check enset dia,mmg penoh la gmbo dia kai tudung labuh..hahaha

haa...part bergambar ni,dia xpna wat "pis" ni.. dia angkat skali 3 jari beb.. sampai aku plak terikot2..hahaha tp aku nye style cam adam af3 cket..hihihi wondering la, ade x org skali angkat 4 jari.. hihihi

dia suka bergayut.. tp ngan mama dia la.. tiap2 ari gayut beb~ mmg kalah la aku.. ngeee~ ntah ape dorg borak tu.. nak gak tahu.. mmg respek dia abes la.. dia xpna tunjuk dia sedih kat depan aku nga asiah.. padahal,ktorg tahu dia nangis2 dalam slimut smbil gayut ngan mama dia.. hahaha

ily ni jugak sorg yg penting kan penampilan.. (yeke? hahahahaha) dia siap beli bio oil,tuk ilangkan parut kat muka,kat lengan (sbb kene iron..ciann).. tp aku xnmpk pon kesan dia.. myb satu ari nnt,bila jumpe balik ngan dia, dia da bebas parut.. huhuhu

aku actually,rindu dia woo.. dia lah mak tiri aku,dia la kawan susah senang aku.. tp cane nak cari? no phone dia da ilg.. asiah lak,da buang sim kad dia.. maklum la,da kai sim mesir plak.. dia lak xde no baru aku..aku lak xde xde xde xde...argghhh..

tunggu2 majalah kolej,pah ceroh la xsampai2 ag.. haiss.. sedih2..

tp aku de jumpe dia,tu pon last year bulan 4.. ktorg kua ar.. hihi asiah jeles tuuuu~~

ceni la,sesape yg blajo kat uitm shah alam tu,tolong2 le carikan budak bernama ily liyana tu.. aku da buntu wehh..

sekian,wassalam.