Re: Best Kept Hacking Secrets Everyone Should Know

From: Volker Birk (bumens_at_dingens.org)
Date: 11/02/03 

Date: Sun, 2 Nov 2003 08:57:32 +0100

In alt.computer.security Pam <pfloresatcharterdotnet> wrote:
> When you write do you follow the critical necessity of
> evaluating for credibility?

Beside the "hacker's own firewall application" ;-) what she points
out is correct. But it is not really new, of course. And with
credibility she may have problems because she's using lurid speech.

I wonder why so many people think that "personal firewalls" and
virus scanners can conjure security onto their PC.

See for example my speech at 19C3, how to use Windows Explorer itself
to compromize Internet Banking despite of any security system between
browser and website by compromizing the communication of the user with
his/her browser.

http://f***.org/amm-en.pdf
Or the German original with audio files on
http://www.ccc.de/congress/2002/fahrplan/event/518.en.html

On Page 14, the "Internet Explorer plugin" is an error. It should be
read as "Explorer Shell Extension". I'm sorry for that, I should correct
it.

VB. 

-- 
X-Pie Software GmbH
Postfach 1540, 88334 Bad Waldsee
Phone +49-7524-996806 Fax +49-7524-996807
mailto:vb@x-pie.de  http://www.x-pie.de