Monday, April 19, 2004 - Posts
A useful utility just discovered on CodeProject (made in Italy): A simple VB.NET stress utility for SQL Server 2000.
DBstressUtil (this is the name of the tool) is coded as a Windows Forms VB.NET application and it is designed to work on a SQL Server 2000 database (of course, using the SQL Server .NET Managed Provider classes of the System.Data.SqlClient namespace).
DBstressUtil simulates multiple database users submitting T-SQL scripts (executing stored procedures or simply sending DML commands).
I was thinking to write a tool like this for my project at work but Alberto has arrived first 
Great!
The
Internet Storm Center at The SANS Institute indicates the possibility of exploits on the vulnerabilities patched in these days by Microsoft.
The ISC advice says that "
We have had a few reports that makes it appear that a new version of the phatbot is running around the Internet today. Along with probes on tcp ports 2745, 1025, 3127, 6129, 5000, 80 and MS netbios (rpc/dcom attacks), we have now seen reports of port 1433 being included as well. This may lend itself to a new variant that attempts to break SQL server ports as well as the other vulnerabilities already exploited. If anyone has full packet captures or is able to grab the executable for analysis, please contact the ISC with the information you can provide.
There has also been conjecture that the port 1981 increase is potentially also connected to another variant of phatbot. We are actively attempting to capture packet traces and/or executables that will prove this or help otherwise determine wether the conjecture is correct."
Only a rumour against Microsoft or we have to alert?
I've just read on the today's journal that some days ago the italian site of 187 On Line by Telecom Italia was hacked.
This site is responsible for orders and contains all the Telecom customers data... now these data could be stolen and shared.
What is the cause of the hacking... a simple SQL Injection. SQL Injection on a big site of a big company like Telecom? Not good... Telecom, please review all your website infrastructure!!!
Pierre Greborio points me to this great guideline from the MAC World: Introduction to the Apple Human Interface Guideline. Apple has an operating system, Mac OS X, which combines a powerful core foundation with a compelling user interface called Aqua.
Aqua defines the standard appearance of specific user interface components such as windows, menus, and controls, and is also characterized by the anti-aliased appearance of text and graphics, shadowing, transparency, and careful use of color.
This documents describes how to obtain an interface like this... maybe Longhorn will be so good in UI? (Aqua is a fast interface and requires not too much hardware resources... I hope the future Windows UI will have not too much requirements).