-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

With all the misinformation and theorizing going around, I figured the
community might be interested in some... you know, accurate information.
It's really refreshing, sometimes.

So, SecuriTeam blogs has posted an interview with Ilfak Guilfanov
(author of the interim fix for the WMF vulnerability) about all things
WMF. We covered in detail, three main topics:

* The nature of the vulnerability
* The details of Ilfak's interim fix
* The other workarounds that are available

The URL for that blog post is:
http://blogs.securiteam.com/index.php/archives/176

A big thanks is in order to Ilfak for taking the time to do the interview.

- --
"Social Darwinism: Try to make something idiot-proof,
nature will provide you with a better idiot."

-- Michael Holstein

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)

iD8DBQFDvDxAfp4vUrVETTgRA+5PAJ9DklSdoyGJ8Xcz+vhktVVJV3AEsgCdEXSS
nf81c+gE53i440AxIOdRGSg=
=z2gq
-----END PGP SIGNATURE-----
0? *?H?÷

 ?0?

10 +0? *?H?÷


 ? ó0??0?¨ 


0
 *?H?÷


0Ñ10 UZA10UWestern Cape10U Cape Town10U
Thawte Consulting1(0&UCertification Services Division1$0"UThawte Personal Freemail CA1+0) *?H?÷


personal-freemail (at) thawte (dot) com0 [email concealed]
030717000000Z
130716235959Z0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0?0
 *?H?÷



0?Ä¦<UsUûN¹Ê?ZhÀupßéÿ£ì½Íõ[òv½:aò¿QÎ
ÔåP
0×cZ,?p?ÝÉð+?Zª?qV˯<çñ?6$*Ï+Õó?w=¾+þ»>¿@?dק¦»?eÑÅ*T?H§¶Ñ<
a@dr`·û

£?0?0U

ÿ0

ÿ
0CU<0:08 6 4?2http://crl.tha
wte.com/ThawtePersonalFreemailCA.crl0U
0)U"0 ¤010UPrivateLabel2-1380
 *?H?÷


H?ÑP?ê.Ì
£f¬g¯¬¾Â¡C??L!¸ø6ª-?6/ÀôP ?p<ý­áabÃÙ:~?±?Å?t?%P?bÇÛ'qW%Ý©?9?? Oe_?Ú÷÷?ÖÆN®öê4å[5MwãV!x?Ü!5Þ$±ÓFÿ]_eO0?T0?½ 
iÍ0
 *?H?÷


0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
050902204005Z
060902204005Z0?10UThawte Freemail Member1#0! *?H?÷


mattmurphy (at) kc.rr (dot) com1 [email concealed]0 *?H?÷


mrm565s (at) smsu (dot) edu1 [email concealed]+0) *?H?÷


Matthew007 (at) MissouriState (dot) edu0 [email concealed]?
"0
 *?H?÷



?
0?

?

³Ò³aI4ÒNæߍT??BÔÂo<Hr¨HéüºJ¨ª(%
æ:?`ã¶Äh¿æÒÌa½WÍkþ
MÏH?U$1eÒ­×YÊüy-Gx®IÊ÷)?Ì?áÁd< ]çÐ ¶7Í?d¼?U³C½g??Ô§?´?ì#6?ªü
ç??õ³|?N2?X[?!+Öèá÷qRQ ú??¡ë"AÒ7?ä?
pÓ rg<Yúá?á<ÆóGI???ÅTå>?+^sZ?®,? ÄȪ\?Ó\ýb?N+Æ? 7ש´.D??rÞ³áÆî?
Q(¦Þ?Å?U

£a0_0OUH0Fmattmurphy (at) kc.rr (dot) com [email concealed]mrm565s (at) smsu (dot) edu [email concealed]Ma
tthew007 (at) MissouriState (dot) edu0 [email concealed]U

ÿ00
 *?H?÷


Y`?lX=ÍJ×7'%I6éBñʽ¬6Îe ¦àC?4??>?e¯ã{J ¾ª|÷°×õµ,¤ty¶UÀ9AÑMÔ?[ð I
zºðm?b3(b
gá?ð?ëÞ |??i?h?;ß3ô&?ó­}Ïú?P¶ í3ìź=^ô"0?T0?½ 
iÍ0
 *?H?÷


0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CA0
050902204005Z
060902204005Z0?10UThawte Freemail Member1#0! *?H?÷


mattmurphy (at) kc.rr (dot) com1 [email concealed]0 *?H?÷


mrm565s (at) smsu (dot) edu1 [email concealed]+0) *?H?÷


Matthew007 (at) MissouriState (dot) edu0 [email concealed]?
"0
 *?H?÷



?
0?

?

³Ò³aI4ÒNæߍT??BÔÂo<Hr¨HéüºJ¨ª(%
æ:?`ã¶Äh¿æÒÌa½WÍkþ
MÏH?U$1eÒ­×YÊüy-Gx®IÊ÷)?Ì?áÁd< ]çÐ ¶7Í?d¼?U³C½g??Ô§?´?ì#6?ªü
ç??õ³|?N2?X[?!+Öèá÷qRQ ú??¡ë"AÒ7?ä?
pÓ rg<Yúá?á<ÆóGI???ÅTå>?+^sZ?®,? ÄȪ\?Ó\ýb?N+Æ? 7ש´.D??rÞ³áÆî?
Q(¦Þ?Å?U

£a0_0OUH0Fmattmurphy (at) kc.rr (dot) com [email concealed]mrm565s (at) smsu (dot) edu [email concealed]Ma
tthew007 (at) MissouriState (dot) edu0 [email concealed]U

ÿ00
 *?H?÷


Y`?lX=ÍJ×7'%I6éBñʽ¬6Îe ¦àC?4??>?e¯ã{J ¾ª|÷°×õµ,¤ty¶UÀ9AÑMÔ?[ð I
zºðm?b3(b
gá?ð?ëÞ |??i?h?;ß3ô&?ó­}Ïú?P¶ í3ìź=^ô"1?;0?7

0i0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAiÍ0 + ?
§0 *?H?÷

1 *?H?÷


0 *?H?÷

1
060104212105Z0# *?H?÷

1?q?ëïz:?%X#ÿ·aø0R *?H?÷

1E0C0
*?H?÷
0*?H?÷
?0
*?H?÷

@0+0
*?H?÷

(0x +

?71k0i0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAiÍ0z*?H?÷

1k i0b10 UZA1%0#U
Thawte Consulting (Pty) Ltd.1,0*U#Thawte Personal Freemail Issuing CAiÍ0
 *?H?÷



?
?ÒÂÙήèx'"Ó®pæãèåôß?Cÿz°Ó}"6ôUøhgª??º[xTÁb¬íKr9ñ-?ë
,
ÓÖù0ÖTR·1????
ÑÎ4êýá¸I²V¢¿z¼ù±¾ü´² S?á«sj?0?ïP
?Êl8¡ÇY?G!>ð??}?~Ñ­jѹ?OʽE¶ËA0®:Uÿ~zv¨òG)¿Wd£s«Þ­ªÌÊ|:Yùo$~A? íTÏ
x"ê[/ß5+0º ãyPÛ;0vEº÷/ÑD¶
[*DH½´>ÆÏد?M_nB¦BYîw2´Å?ÑØÜ©È

[ reply ]