Profile

Cover photo
Luís de Sousa
114 followers|265,238 views
AboutPosts

Stream

 
Press review 12-04-2014 - Russia calls the bluff
This week Russia has passed on the offensive over Ukraine. The Russian press issued clear hints of a definitive move away from the US dollar in the country's foreign economic relations. These news frame these actions within the design of a new world monetar...
This week Russia has passed on the offensive over Ukraine. The Russian press issued clear hints of a definitive move away from the US dollar in the country's foreign economic relations. These news frame these actions within t...
1
Add a comment...

Luís de Sousa

Shared publicly  - 
This post is a story of TheOilDrum, as I lived it. It is a collection of loose memories patched together into some sort of chronological order. Memory may not be fully reliable, same dates or periods may not be precise. This ...
1
Add a comment...

Luís de Sousa

Shared publicly  - 
 
 
About Microsoft vs. LINUX security

Last few days i sat in a strategy conference. I was invited to show some exploits, how NSA or other 'forces' could get behind a firewall, opening a channel, transporting data into the internet.

Took my old notebook - Windows XP installed from scratch during the session (all M$ original software from recovery DVD), surfed to some porn sites. A parallel network sniffer connected, showing the traffic between this M$ machine and internet (via firewall). Suddenly, shortly after downloading some "pretty girls pictures" magically a data stream opened from this M$ machine towards the internet. Even closing the browser didn't help. Target server - unknown, no forward, no reverse DNS. "traceroute" blocked after a few hops!

Opening same homepage with my Google Android 4.4.2 Nexus tablet, nothing happened. Network sniffer quiet. Then i downloaded these pics - opened 'gallery', the Android pic viewer - black pics. No image.

Then we surfed again with a brand new Windows 8.1 notebook to these sites. Network traffic showed up again transporting data from the intranet - over the firewall - directly into the internet. Target - different IP.

Of course i have analysed these 'magic jumping images'. I call them 'jumping images', because in some image viewers, the image suddenly pops up, becomes bigger, for just a fraction of a second.

There are many image formats out there, which show animation. When you insert a larger image between smaller frames, typically a buffer or heap overflow occurs. Since most graphic libraries, expecially the "animation routines" are highly speed optimized, like everything, that is 'time/cpu critical', programmers mostly leave away security checks, like checking array bounds ...There attackers hide their code. Any code.

This way, they, in fact, do transport root kits onto hosts (admins hosts!?) behind any firewall, also hidden e.g. in Outlook links/embedded images/attachments.

Remember: "The sum of users in a company finally have access to all enterprise resources, independent of any security mechanisms implemented!"

Google, according to their mailing lists and several press articles, since long time now know about these 'jumping images' (how i call them) and Google systematically filters/deletes/converts these. On tablets, in the cloud, in mails (by automatically filtering, not by looking into private mails!!!) - simply everywhere.

Surfing with LINUX and Firefox, Google Chrome - no problem so far.

Now i installed several virus scanners, one by one. Symantec, Intel,..."No virus found!" Just one virus scanner by a small company coming from Finnland, directly found this trojan horse. And this scanner even found a virus on my Android tablet during this session, which rather looked a 'false positive', but ok...

Ok, lets sum up facts:

One US company, despite knowing about this security hole, doesn't remove it. Not even in their latest incarnation of software.

The second US company is not willing to detect this security hole, despite knowing about it.

The third US company routes traffic world wide directly into the NSA HQ.

The fourth US company produces 'silent proxies', which, put just behind a providers dial in routers, dramatically reduces network traffic on servers, e.g. at 'patch day', where million of OS'es download at the same time. But these 'silent proxies' also can work as 'Man In The Middle' for helping with SSLv2 MITM attacks.

Now about their respective owners/shareholders. If you please would direct your attention to the 'Top institutional holders':

http://finance.yahoo.com/q/mh?s=SYMC+Major+Holders
http://finance.yahoo.com/q/mh?s=MSFT+Major+Holders
http://finance.yahoo.com/q/mh?s=CSCO+Major+Holders
http://finance.yahoo.com/q/mh?s=AKAM+Major+Holders

Draw your own conclusions!

Have fun!

P.S.: After surfing just a few days with Windows XP i found 117!!! different viruses/trojans. Windows 8.1 just 9 till now, Linux - 0!

I've heard, Microsoft stops support for Windows XP in 2014. What support!!!???
1
David Santos's profile photo
 
Thanks for sharing.
Add a comment...

Luís de Sousa

commented on a video on YouTube.
Shared publicly  - 
 
This looks lengths far from a 100 tons, four mast ship. No forecastle either, even the smaller ones had one, if low. I wish you good luck, it will be great if you succeed in this project.
1
Add a comment...
In his circles
58 people
Have him in circles
114 people
Phil Hart's profile photo
Tatiana Plantier's profile photo

Luís de Sousa

Shared publicly  - 
 
Press review 05-04-2014 - Back to Iraq
This week the highlight goes once again to Iraq, I stumbled upon a remarkable article that gave me lot to think. The writing is politically charged, but raises questions I was frankly unaware of. In essence, the exploration of Iraqi petroleum by foreign (Eu...
This week the highlight goes once again to Iraq, I stumbled upon a remarkable article that gave me lot to think. The writing is politically charged, but raises questions I was frankly unaware of. In essence, the exploration o...
1
Add a comment...

Luís de Sousa

Shared publicly  - 
 
I get the same: Windows 8.1 :)
 
Ubuntu 12.04 is actually a kind of Windows 8.1! (according to Microsoft)
1
Add a comment...
 
Press review 22-03-2014 - The gas play
As the crisis in Ukraine rages on, the West slowly recognises it has the weaker hand in the game of force with Russia. Half of all the gas burned in Germany comes from Russia and every member state east of Germany is even more dependent; some depend 100% on...
As the crisis in Ukraine rages on, the West slowly recognises it has the weaker hand in the game of force with Russia. Half of all the gas burned in Germany comes from Russia and every member state east of Germany is even mor...
1
Add a comment...

Luís de Sousa

Shared publicly  - 
 
Supply side energy modelling with Steven Kopits
Some hours I had no idea who Steven Kopits was, much less the kind of work he has been doing. During the past week I received several times a link in my mailbox to a presentation by him at Columbia University. Last evening I finally found the space to give ...
Some hours I had no idea who Steven Kopits was, much less the kind of work he has been doing. During the past week I received several times a link in my mailbox to a presentation by him at Columbia University. Last evening I ...
1
Add a comment...
People
In his circles
58 people
Have him in circles
114 people
Phil Hart's profile photo
Tatiana Plantier's profile photo
Basic Information
Gender
Male
Story
Tagline
Researcher at CRP Henri Tudor. PhD student at the Technical University of Lisbon.
Introduction
I'm a researcher at the CRP Henri Tudor in Luxembourg and a PhD student at the Technical University of Lisbon. I work on the GIS field, more specifically on spatial web services and spatial simulation.

In a parallel life I created the first Portuguese language website dedicated to Peak Oil in 2005 (PicoDoPetroleo.net), in 2006 I was a founding member of ASPO-Portugal and later that year integrated the team that started the European branch of TheOilDrum.com. I currently blog AtTheEdgeOfTime.

Contact: Luis{dot}A{dot}de{dot}Sousa{at}gmail{dot}com
Links
Contributor to