donate a school for poor students

XFOCUS Security Team and their friends donated a school at YunNan XiaoErDi for poor students. From YunNan LiJiang to XiaoErDi will spend more than 4.5 hours, no calzada, path is strait.





















filer take some photos on February, before the school start working, here is children's classroom!

eyas@xfocus take the photos after the school completed, here is some pictures:

when eyas left XiaoErDi, he saw a slogan on bridge:"knowledge changes fate", and some kids are playing...

see also(in Chinese):
XFOCUS hope project
flier's trip
eyas's trip

use FCKeditor as Quick.CMS's default html editor

I don't like Quick.CMS's simple html editor. On their website I found an artile "How to upload editor FCKeditor" .
just download and unpack fckeditor to Quick.CMS's directory, and edit admin.php(maybe your change this filename for security reason), add the given line:

require_once ( 'FCKeditor/fckeditor.php' );

then edit plugins/edit/htmleditor.php, replace the function htmlEditor() on:

function htmlEditor( $sName = 'tresc', $iH = '300', $iW = '400', $sContent = '' ) {
$oFCKeditor = new FCKeditor($sName) ;
$oFCKeditor->BasePath = 'FCKeditor/';
$oFCKeditor->Value = $sContent;
$oFCKeditor->Width = '100%';
$oFCKeditor->Height = $iH;
return $oFCKeditor->CreateHtml();
}

Now the admin interface look like:

command line security tool: X-ps v1.0

You can use this tool to show all process, find loaded dll, search string from process, kill process. even more, you can inject or release dll to a process. This tool is useful for security engineer.

download X-ps tool from UNNOO website：X-ps v1.0

Options:
c:\>ps /h
X-PS v1.0, code by glacier@xfocus.org
USAGE:
/m: Display the modules information
/n : Display the process whose ID equal to
/f : Find the process/modules that contain
/k : Kill process
/i : Inject library into process
/e : Eject library from process

Example:
ps /m
show all process and all dll loaded.

ps /m /n 1012
show all dll that process id=1012

ps /m /f "user32.dll"
search "user32.dll" string from all loaded dll

ps /i explorer.exe hook.dll
inject hook.dll to explorer.exe

ps /e * hook.dll
eject hook.dll from all process

Configuring your Apache to permit SSI

Last night I want to install a slim-cms for killer, this CMS base on perl and need Apache open SSI(Server Side Includes) support, I simplely add two line in apache2.conf at first:

AddType text/html .shtml
AddHandler server-parsed .shtml

but my web server can't resolv .shtml at all, search on google for a long time, I found an article said:Line AddHandler tell web server send the file to mod_include, the mod_include will determine how to responses.so I run:

# a2enmod include
# /etc/init.d/apache2 force-reload

All done ;)

skype spam coming

my skype is busy this morning, over 15 meeting box popup in 3 minutes, all show message about "FaLun".
tencent's security engineer said:"Many of security problem we meet and resolved, I think other IM will meet all of it, msn spam and skype spam is first step."
on skype, you can set"tools->options->privacy->only people from my contacts" to protect your privacy.

Top 100 network security tools

fyodor ask user from the nmap-hackers mailing list to share their favorite tools, and 3,243 people responded, it's top 100 network security tools 2006. On XFOCUS forum some newbie often ask: How can I learn security(hacking) technology ...Try all tools on the list, and think about it's theory.
And I'm glad to see the project of XFOCUS name X-Scan on the list, it's first time that Chinese security software on it. glacier do a good job ;)