Collaborate Disseminate
I wonder if this is the right place to ask about the specific functioning of viruses / worms. We all receive fishy mails all the time. And generally I never click on anything, especially not attachments purporting to be quotes, letters, si… Continue reading How does the "ClaimLetter#.zip" attack work?
A Zip bomb (concept here) seems quite a “smart” and easy vulnerability to websites where uploading ZIP files is allowed. Such sites are under a threat (at least to make some degree of damage to them) – someone uploads i.e. a … Continue reading How to protect websites against ZIP bombs and reference bombs?
If you’ve ever looked at the server logs of a computer that lives full-time on the Internet, you know it’s a rough world out there. You’ll see hundreds of attempts per day to break in to your one random little box. Are you going to take that sitting down? Christian Haschek didn’t.
Instead of simply banning IPs or closing off services, [Christian] decided to hit ’em where it hurts: in the RAM. Now, whenever a bot hits his server looking for a poorly configured WordPress install, he serves them 10 GB of zeroes, compressed down into 10 MB by gzip …read more
Continue reading Dropping Zip Bombs on Vulnerability Scanners
This article claims that zip bombs cannot be used today as modern systems are too smart for it and no victim is going to slowly unpack terrabytes of data so zip bombs are basically useless.
Is this true? Are there any uses f… Continue reading What are some possible uses of a zip bomb?