Robert Hensing's Blog

Software Security . . . and stuff.

May, 2007

  • Ghost in the browser? Don't be evil . . .

    Man Google is pissing me off lately. No it's not stock envy (although that doesn't help) - I'm talking about shady things like this (which b.t.w I also got an email like this from them once, hilarity ensued), or bundling their damned search bar with every...
  • MOICE - Microsoft Office Isolated Conversion Environment

    A couple weeks ago I did a lightening talk with David LeBlanc at Bluehat for MSFT employees about MOICE. MOICE is the Microsoft Office Isolated Conversion Environment. What the hack is that?!? Well it's no secret that Office was used in some targetted...
  • "Free Public WiFi" worm?

    So over the last few months I've noticed a disturbing trend. EVERY airport I'm in (which is nostly SEA, ORD, CLT) always seems to have a 'Free Public WiFi' ad-hoc wifi network up and running as shown below (I'm typing this blog post from the D concourse...
  • Mazzuri Super header project

    So I drive a 2001 Lexus IS300. It's rated, rather optimistically at 218hp from the manufacturer but since it's an automatic, and because well - they lied, it only has about 168rwhp (even accounting for 15% loss through the drivetrain - that's still nearly...
  • 2007 FIRST conferrence featured at the FIA GT race at Silverstone 5/6/2007

    This weekend, fellow racing enthusiast and driver Terry Pudwell has agreed to display the 2007 FIRST conferrence logo on his awesome GT car in the FIA GT race at Silverstone to promote awareness of the conferrence! The car featuring the logo will be...
  • MoAXB - Month of ActiveX bugs

    So the "MoXB" theme continues as a trend with security researchers - with May 2007 bringing us the "Month of ActiveX Bugs" (MoAXB). One thing that may be causing some confusion out there are the first few bugs which involve a 3rd party product that...
  • Random articles - 3rd party apps and Google advertising social experiments

    First up we have a report from Secunia that sort of states what I've always strongly suspected - that 3rd party applications are more likely to be vulnerable to exploitation. http://www.pcworld.com/article/id,132025-pg,1/article.html The reason? Many...
  • Linux car finishes dead last at Indy 500

    Life imitating art - truly a classic outcome for the whole Linux sponsored race car: http://fakesteve.blogspot.com/2007/05/linux-car-finishes-dead-last-at-indy-we.html Yeah - so it's a slow news week - I'm glad it is actually. :)
  • Google - Evil - OpenDNS

    Looks like I'm not the only one noticing that Google is increasingly becoming more evil as days go by: http://blog.opendns.com/2007/05/22/google-turns-the-page/ This is yet another reason (as if one were needed) to completely format the drive of any...
  • Toorcon rocks

    Just got back from Seattle last night - hung out with my friend Brian who was kind enough to let me crash in his condo after Bluehat and before / after Toorcon. Toorcon Seattle rocked! It was in a bar in Seattle called 'The Last Supper Club' or something...
  • Microsoft Update suckage

    So anyone who regularly checks Microsoft Update with Office installed has been living in pain for the last few months due to various performance related issues that result when attempting to scan for updates via MU. Well the WU team has released this...
  • LOLCODE

    It's official - all of my future coding will be done in LOLCODE. What - you've never HEARD of LOLCODE? It's the official programming language inspired by the hilarious LOL cat pictures found all over the Internet: http://globalnerdy.com/2007/05/28...