Noughmad.org

Well, look on this site, duh.

But if you want more of them, you want to use a search engine. Google, Yahoo, any will do. However, if you type “geek jokes” into Google, the top 20 results will be pretty much the same, and will contain only wide-spread and well-known jokes. Those are the sites that have the highest PageRank and most people have probably already seen them.

If you want something new, do the same search, only this time look on pages 10-20 of the search results. Those are sites with a lower PageRank and fewer visitors, so the jokes they contain can be very good yet unknown. And while I’m more into geek jokes, you could also try searching for “gaming jokes”, “music jokes”, whatever. Changing “jokes” to “humor” can also get you some new, fresh results.

I have just suffered a hacker attack on Linux. Yes, on Linux. I was relying too much on it’s security and I didn’t have a firewall set up.

The only symptom I noticed was when everything suddenly stopped responding and the keyboard light began flashing. I restarted the computer, installed firestarter and two rootkit detectors, chkrootkit and rkhunter.

The RK detectors found no known rootkits, but they discovered the following suspicious hidden folders:

/usr/lib/firefox/.autoreg
/usr/lib/jvm/.java-6-sun.jinfo
/usr/lib/jvm/java-6-sun-1.6.0.03/.systemPrefs
/lib/modules/2.6.22-14-386/volatile/.mounted
/etc/.java
/dev/.udev
/dev/.tmp-2-0
/dev/.static
/dev/.initframes

Googling for them showed no results, so I suppose neither is a part of the distribution. I removed some of them, while the other couldn’t be removed, with rm returning “Device or resource busy”.

Edit: Other users have found them too, however no official response was given. I am currently not sure whether these folders are a part of the distro or the rootkit is so widespread, but some look very suspicious.

The next step was to fire up Firestarter. It showed a large number of connection attempts on port 52621 from a bunch of hosts, which I blocked. The bunch of host was really huge, it even included my girlfirend’s computer.

Then I discovered what I believe is the root of the problem: Skype. The firewall allows connection from trusted programs, including Firefox, Kopete the MSN client, and Skype. However, the services Skype’s connections used included traceroute and portscanning, both used by hackers to gain information.

Also, I haven’t received a connection attempt to port 52621 from my girlfriend since she deleted Skype (I told her to do so). So it was definately Skype’s fault. She also told me she had no idea there is anything going on her computer, and neither did I untill it froze. Neither Maja nor I have got any weird things from Skype, Messenger or anywhere else, to the worm apparently works without user’s help.

There is almost no way to detect it, since every firewall has to allow skype’s connections, and most user don’t actively monitor their web traffic.

So, my dear readers: beware of Skype. There is a large botnet of rootkited computers, running either Windows or Linux, connected through skype’s protocol. If you can get your firewall to selectively filter skype’s traffic, you should enably only the ones used for talking. Otherwise, if you look for alternatives, you can use wengophone. It’s not as good as skype, but it’s open-source.

Microsoft, lawsuits, EU, monopoly, sound familiar? It does.

However, Microsoft is now sitting on the other side. They filed a complaint about Google’s purchase of DoubleClick, giving Google control over most of the web advertising and publishing. You can read about it here.

As a Linux user I’m not really a great fan of Microsoft, but I believe Google is approaching Microsoft’s status very fast. Only instead of desktop programs, it’s web applications. Considering how much of our private data Google has available, it should be the one to fear.

So, if you have to know, I’m on Microsoft’s side now. I know they’re acting out of fear of losing the market share, but I don’t feel comfortable seeing the Google account bar on every page I go.

Good night, free society.