Once you extract your claim ticket file from a laptop (note that doing
so will involve executing code on the box, simple directory traversal
style bugs are inadequate), you get to keep it. You also get to
participate in 3com / Tipping Point's Zero Day Initiative, with the top
award for remote, pre-auth, vulnerabilities being increased this year.
Fine print and details on the cash prizes are available from
TippingPoint's DVLabs blog (http://dvlabs.tippingpoint.com/).
More fine print and rules for the contest will be found at
the http://cansecwest.com/ site.
Quick Overview:
Once you extract your claim ticket file from a laptop (note that doing
so will involve executing code on the box, simple directory traversal
style bugs are inadequate), you get to keep it. You also get to
participate in 3com / Tipping Point's Zero Day Initiative, with the top
award for remote, pre-auth, vulnerabilities being increased this year.
Fine print and details on the cash prizes are available from
TippingPoint's DVLabs blog (http://dvlabs.tippingpoint.com/).
More fine print and rules for the contest will be found at
the http://cansecwest.com/ site.
Quick Overview:
this IS NOT a plot to sell more Win7. Granted the marketing folks spun
this bulletin WAY WAY TOO much. It is what it is. I do believe the
architecture in XP just isn't there. It's a 10 year old platform that
sometimes you can't bolt on this stuff afterwards. Even in Vista, it's
not truly fixing the issue, merely making the system more resilient to
attacks. Read the fine print in the patch.. it's just making the system
kill a session and recover better.
I am not a fan of third party because you bring yourself outside the
support window of the product.
>> IS NOT a plot to sell more Win7. Granted the marketing folks spun
>> this bulletin WAY WAY TOO much. It is what it is. I do believe the
>> architecture in XP just isn't there. It's a 10 year old platform
>> that sometimes you can't bolt on this stuff afterwards. Even in
>> Vista, it's not truly fixing the issue, merely making the system more
>> resilient to attacks. Read the fine print in the patch.. it's just
>> making the system kill a session and recover better.
>>
>> I am not a fan of third party because you bring yourself outside the
>> support window of the product.
>>
but this is the real last call for submissions. If you don't get
them in by this weekend they won't make the selections
review process next week. We'll try to announce the
selections the week following. After 11 years, most
of you should know the drill, but for those who haven't
submitted or attended before, the fine print and usual
further information is attached below.
Other info:
We are doing more dojo training courses than ever this
length you need - if you've got 20 mins of material, submit 20 mins, not
padded out to an hour. This ain't no blackhat bizniss. There will be a
dedicated slot for a bunch of lighting talks, so if you've got 5 minutes of
justice, then wheel it on out.
-----[ ADMINISTRIVIA, FINE PRINT AND ACCURACY IN PRODUCT LABELLING
Kiwicon is a cheap-arse hacker con; fiddy bucks at the door, and we do our best
to try and make that go as far as it can. We can't compensate speakers or fly
y'out here to .nz (its a long way, man) but you'll have a good time, and if
you want a few cold beers we can certainly oblige. We'll try and score you
