Critical IE vulnerability found, browser switch recommended

Critical Internet Explorer vulnerability found, browser switch is recommended.

Serious security flaw found in IE

The flaw in Microsoft’s Internet Explorer could allow criminals to take control of people’s computers and steal their passwords, internet experts say.

Microsoft urged people to be vigilant while it investigated and prepared an emergency patch to resolve it.

Internet Explorer is used by the vast majority of the world’s computer users.

Said Mr Ferguson: “If users can find an alternative browser, then that’s good mitigation against the threat.”

But Microsoft counselled against taking such action.

“I cannot recommend people switch due to this one flaw,” said John Curran, head of Microsoft UK’s Windows group.

He added: “We’re trying to get this resolved as soon as possible.

“At present, this exploit only seems to affect 0.02% of internet sites,” said Mr Curran. (Source: BBC)

Browsing vigilantly is not something a normal user can do unless only use your web mail. The internet is filled with links all around. Even once in a while I ended up on phishing sites I try hard to avoid. It could be just an innocent advertisement.

Description:

A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to a use-after-free error when composed HTML elements are bound to the same data source. This can be exploited to dereference freed memory via a specially crafted HTML document.

Successful exploitation allows execution of arbitrary code.

NOTE: Reportedly, the vulnerability is currently being actively exploited.

The vulnerability is confirmed in Internet Explorer 7 on a fully patched Windows XP SP3 and in Internet Explorer 6 on a fully patched Windows XP SP2, and reported in Internet Explorer 5.01 SP4. Other versions may also be affected. (Source: Secunia)

I would recommend a temporary switch to a competing browser.

Lost returns early next year

Lost returns end-January next year, I’ve been waiting for this!

LOST – Jack & Ben Season Five Sneak Peek

Lost premiere preview – Jack and Ben plan a journey back to the Island – season five, trailer, sneak peek, promo, preview, Matthew Fox, Michael Emerson, Oceanic Six, Island, return, Kate, Sayid, Hurley, Sun, trailer, season 5, clip, promo, series 5, sneak peak, S5, Dharma special access, ABC.

Some suggestions for .gitignore

This is more of a personal note. You may find it useful too.

Here’s how to ignore files and folders using Git. You can create a file “.gitignore” and place in the files and folders that you wish to ignore (separated with a line break).

In the file: “./.gitignore”

Here’s a list of standard things to do a .gitignore. It ignores the thumbnail files generated by Mac OSX and Windows. (I’m on Windows Vista.) You can place this on the top folder of your Git project:

[code lang=”ini”]nbproject
.DS_Store
Thumbs.db
Desktop.ini[/code]

“nbproject” is for NetBeans.

In the file: “./app/.gitignore”

Well, if you use CakePHP, you may want to add an additional .gitignore file in your CakePHP app directory:

[code lang=”ini”]tmp/**/*
config/database.php[/code]

I am open to suggestions what other files or folders are good to ignore but these are all I can recall. You can read more about gitignore at kernal.org.

Why Ubuntu is better than Windows XP

Here’s a screenshot of a website for Windows XP:

Trojan in Windows XP

(Trojan in Windows XP.)

There is an animation of a Windows scanning utility discovering lots of trojan, an anti-spyware tool would be offered at the end. It tricks users into install something that they claim secure.

Here’s the same website in Ubuntu with the same animation:

Trojan in Ubuntu

(Trojan in Ubuntu.)

The screenshot would probably look realistic to a naive Windows XP user. And when you install the additional checking tool, who knows, you may end up with a virus.

I tried installing it in Ubuntu and couldn’t. Me sad.

[Thanks Irene for showing me the site.]

Google App Engine and the color purple

Ahh, my eyes:

Google App Engine and the color purple

(Google App Engine and the color purple.)

This is what happens when you make a mistake in the helloworld demo. You get purple as a punishment. App Engine’s pretty cool, my only complaint is: Why can’t I quit the dev appserver with CTRL+C?!

It’s annoying and I have to re-navigate through if I want to restart the server. The solution is, well you don’t. As in, you don’t restart the server at all.

Joke: How to catch a rabbit?

Share a joke with you guys:

The LAPD, the FBI, and the CIA

The LAPD, The FBI, and the CIA are all trying to prove that they are the best at apprehending criminals.

The President decides to give them a test. He releases a rabbit into a forest and each of them has to catch it.

The CIA goes in. They place animal informants throughout the forest. They question all plant and mineral witnesses. After three months of extensive investigations they conclude that rabbits do not exist.

The FBI goes in.
After two weeks with no leads they burn the forest, killing everything in it, including the rabbit, and they make no apologies. The rabbit had it coming.

The LAPD goes in.
They come out two hours later with a badly beaten bear. The bear is yelling: “Okay! Okay! I’m a rabbit! I’m a rabbit! (Source: funs.co.uk)

Five common misconceptions

Okay apparently the article exists. I was feeling kinda bored today so I start my bad habit of reading trivia on the internet. There’re tons of them and I’m probably completed 0.01% of it.

Here’re some of the more interesting misconceptions (probably controversial) regarding history:

  1. The belief that gunpowder, even though it was a Chinese invention, was first used for war by the Europeans is a misconception. The Chinese used flamethrowers and gunpowder arrows for military purposes from the 900s onward.
  2. Al Gore never said he invented the Internet, rather he stated: “During my service in the United States Congress, I took the initiative in creating the Internet.”. Vint Cerf, often called ‘the father of the Internet’, has defended the statement: “VP Gore was the first or surely among the first of the members of Congress to become a strong supporter of advanced networking while he served as Senator. As far back as 1986, he was holding hearings on this subject (supercomputing, fiber networks…) and asking about their promise and what could be done to realize them.”
    (So sorry I made more than a thousand Al Gore jokes.)

And health of course:

  1. People do not use only ten percent of their brains. This myth is thought by some to have emerged after the discovery of glial cells in the brain, or it could have been the result of some other misunderstood or misinterpreted legitimate scientific findings, or even been the result of speculation by self-help gurus.
  2. There is no single theory that satisfactorily explains myopia—in particular, studies show that “eyestrain” from close reading and computer games does not explain myopia. There is also no evidence that reading in dim light causes vision to deteriorate.
    (That’s what I keep telling my mom, she doesn’t believe me!)

And this made me check Humpty Dumpty lyrics again:

  1. Nowhere in the actual nursery rhyme is Humpty Dumpty referred to as an egg.

It’s a slow news day.