Designed to inform, to encourage, to entertain and to stimulate your imaginations. Enjoy!
Chuck Johnston has sent you an article from ChristianityToday.com
Thursday, December 28, 2006
Chuck Johnston has sent you an article from ChristianityToday.com:
Remembering to Forget - Today's Christian
A personal message from Chuck Johnston:
I thought this article from ChristianityToday.com might interest you.
"Remembering God's faithfulness is a key part of our spiritual development. But, at the same time, before our spiritual vitality can really flow, we must forget three things." (Read on!)
Click here (or copy URL into your Internet browser) to read the article:
http://www.christianitytoday.com/tc/2006/001/6.54.html
------------------------------
Free E-mail Newsletter
To keep up-to-date on new articles and features, sign up now for the FREE
weekly ChristianityToday.com Connection newsletter.
http://christianitytoday.com/lyris/subscribe/connection.html
ChristianityToday.com: Engaging, Encouraging, and Equipping the Church Worldwide
http://ChristianityToday.com
US-CERT Cyber Security Alert SA06-354A -- Mozilla Addresses Multiple Vulnerabilities
Thursday, December 21, 2006
National Cyber Alert System
Cyber Security Alert SA06-354A
Mozilla Addresses Multiple Vulnerabilities
Original release date: December 20, 2006
Last revised: --
Source: US-CERT
Systems Affected
* Mozilla Firefox
* Mozilla Thunderbird
* Mozilla SeaMonkey
* Netscape Browser
Other products based on Mozilla components may also be affected.
Overview
Mozilla Firefox, Thunderbird, and derived products contain
several vulnerabilities. By taking advantage of one or more of
these vulnerabilities, an attacker may be able to take control of
your computer.
Solution
Upgrade to the latest versions of Firefox, Thunderbird, and
SeaMonkey
Mozilla has released Firefox 1.5.0.9, Firefox 2.0.0.1,
Thunderbird 1.5.0.9 and SeaMonkey 1.0.7 to correct these
problems. Mozilla Firefox, Thunderbird, and SeaMonkey
automatically check for updates by default.
Security updates for Firefox 1.5 are scheduled to end in April
2007. According to Mozilla:
Firefox 1.5.0.x will be maintained with security and stability
updates until April 24, 2007. All users are strongly encouraged
to upgrade to Firefox 2.
Disable JavaScript and Java
These vulnerabilities can be mitigated by disabling JavaScript
and Java. For more information about configuring Firefox, please
see the "Securing Your Web Browser" document. Netscape users
should see the "Site Controls" document for details. Thunderbird
disables JavaScript and Java by default.
Description
Mozilla products, including the Firefox web browser and
Thunderbird email application, contain a number of
vulnerabilities. These vulnerabilities may allow an attacker to
access your computer, run programs that could cause your computer
to crash, or gain control of your computer. An attacker could
exploit these vulnerabilities by convincing you to visit a web
site or read an HTML formatted email message.
For more technical information, please see US-CERT Technical
Alert TA06-354A.
References
* US-CERT Technical Alert TA06-354A -
<http://www.us-cert.gov/cas/techalerts/TA06-354A.html>
* US-CERT Vulnerability Notes -
<http://www.kb.cert.org/vuls/byid?searchview&query=mozilla_2006121
9>
* Securing Your Web Browser -
<http://www.us-cert.gov/reading_room/securing_browser/browser_secu
rity.html#Mozilla_Firefox>
* Mozilla Foundation Security Advisories -
<http://www.mozilla.org/security/announce/>
* Firefox - Rediscover the Web - <http://www.mozilla.com/firefox/>
* Thunderbird - Reclaim your inbox -
<http://www.mozilla.com/thunderbird/>
* The SeaMonkey Project -
<http://www.mozilla.org/projects/seamonkey/>
* Mozilla Hall of Fame -
<http://www.mozilla.org/university/HOF.html>
* Site Controls -
<http://browser.netscape.com/ns8/help/options-site.jsp>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/alerts/SA06-354A.html>
____________________________________________________________________
Feedback can be directed to US-CERT. Please send email to
<cert@cert.org> with "SA06-354A Feedback VU#606260" in the subject.
____________________________________________________________________
Mailing list information:
<http://www.us-cert.gov/cas/>
____________________________________________________________________
Produced 2006 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
December 20, 2006: Initial release
Who is offended by Merry Christmas?
Tuesday, December 19, 2006
The media makes it sound like a vast majority of people are offended by Merry Christmas greeting.
Here are the results of one survey, I am guessing it is about right.
Bloglines - Vista for $79? Uh, no.
Bloglines user
ChuckzBlog (chuckzmail@johnstonz.net) has sent this item to you.
| |
| By Ed Bott on Uncategorized For the past couple days, I've been receiving e-mail announcements from companies alerting me that Windows Vista Ultimate is now available for download. And for a mere $79.95! What's more, if I click the link and visit the site it leads to, I can download all sorts of other great software for equally insane prices. Each message has a different domain in the link, although the text is the same. And the sites are identical templates. Here's what one looks like: 
And here's a closeup of the Vista Ultimate offer: 
I used my red pen and my yellow highlighter to flag the two most interesting parts of the screen. Now, can you really expect to get a legitimate copy of the software for $80 when the estimated retail price is $399? No. Predictably, these domains are typically shut down within a few hours, but they pop right back up under a new name for the next round of spam. So, who's crazy enough to give a credit card number to these people? And how foolish do you have to be to actually install this stuff? I expect that most of these are garden-variety hacked copies that will work for a few weeks until they're disabled by Vista's antipiracy checks. But still, don't you think at least some of these copies are going to contain a little something extra? Technorati tags: Windows Vista, piracy | | | | |
No Santa Claus? - Well written story!
Thursday, December 14, 2006
Source Unknown
—Chuck
I remember my first Christmas adventure with Grandma. I was just a kid. I remember tearing across town on my bike to visit her on the day my big sister dropped the bomb: "There is no Santa Claus," she jeered. "Even dummies know that!"
My Grandma was not the gushy kind, never had been. I fled to her that day because I knew she would be straight with me. I knew Grandma always told the truth, and I knew that the truth always went down a whole lot easier when swallowed with one of her "world-famous" cinnamon buns. I knew they were world-famous, because Grandma said so. It had to be true.
Grandma was home, and the buns were still warm. Between bites, I told her everything. She was ready for me. "No Santa Claus?" She snorted...."Ridiculous! Don't believe it. That rumor has been going around for years, and it makes me mad, plain mad!! Now, put on your coat, and let's go."
"Go? Go where, Grandma?" I asked. I hadn't even finished my second world-famous cinnamon bun.
"Where" turned out to be Kerby's General Store, the one store in town that had a little bit of just about everything. As we walked through its doors, Grandma handed me ten dollars. That was a bundle in those days.
"Take this money," she said, "and buy something for someone who needs it. I'll wait for you in the car." Then she turned and walked out of Kerby's. I was only eight years old. I'd often gone shopping with my mother, but never had I shopped for anything all by myself.
The store seemed big and crowded, full of people scrambling to finish their Christmas shopping. For a few moments I just stood there, confused, clutching that ten-dollar bill, wondering what to buy, and who on earth to buy it for. I thought of everybody I knew: my family, my friends, my neighbors, the kids at school, and the people who went to my church.
I was just about thought out, when I suddenly thought of Bobby Decker. He was a kid with bad breath and messy hair, and he sat right behind me in Mrs. Pollock's grade-two class. Bobby Decker didn't have a coat. I knew that because he never went out to recess during the winter. His mother always wrote a note, telling the teacher that he had a cough, but all we kids knew that Bobby Decker didn't have a cough; he didn't have a good coat. I fingered the ten-dollar bill with growing excitement. I would buy Bobby Decker a coat!
I settled on a red corduroy one that had a hood to it. It looked real warm, and he would like that.
"Is this a Christmas present for someone?" the lady behind the counter asked kindly, as I laid my ten dollars down.
"Yes, ma'am," I replied shyly. "It's for Bobby." The nice lady smiled at me, as I told her about how Bobby really needed a good winter coat. I didn't get any change, but she put the coat in a bag, smiled again, and wished me a Merry Christmas.
That evening, Grandma helped me wrap the coat (a little tag fell out of the coat, and Grandma tucked it in her Bible). On the Christmas paper and ribbons she wrote, "To Bobby, From Santa Claus" on it. Grandma said that Santa always insisted on secrecy. Then she drove me over to Bobby Decker's house, explaining as we went that I was now and forever officially, one of Santa's helpers.
Grandma parked down the street from Bobby's house, and she and I crept noiselessly and hid in the bushes by his front walk. Then Grandma gave me a nudge. "All right, Santa Claus," she whispered, "get going."
I took a deep breath, dashed for his front door, threw the present down on his step, pounded his door and flew back to the safety of the bushes and Grandma. Together we waited breathlessly in the darkness for the front door to open. Finally it did, and there stood Bobby.
Fifty years haven't dimmed the thrill of those moments spent shivering, beside my Grandma, in Bobby Decker's bushes. That night, I realized that those awful rumors about Santa Claus were just what Grandma said they were: ridiculous. Santa was alive and well, and we were on his team. I still have the Bible, with the coat tag tucked inside: $19.95.
May you always have...
LOVE to share,
HEALTH to spare,
and FRIENDS that care...
and may you always believe in the magic of Santa Claus!
Yoople! - Collaborative Web Search.htm
Wednesday, December 13, 2006
About Yoople! - Any comment? - FAQ - Contact us
©2006 Digitalfog
Firefox 2 Browser Struck by Password Flaw
Friday, December 08, 2006
Firefox 2 Browser Struck by Password Flaw
By David Garrett
November 24, 2006 8:07AM
The Mozilla Foundation, which maintains code for the Firefox browser, has acknowledged that there is a problem with the Firefox Password Manager and has named it bug #360493. Microsoft has also admitted that the newly discovered password bug can affect Internet Explorer as well, but most reports indicate that Firefox is the more likely target because of the way it stores usernames and passwords.
Mozilla's Firefox 2.0 has long been considered a safer Web browser than Microsoft's Internet Explorer, but a new flaw in the Firefox Password Manager, which lets users store usernames and passwords for trusted Web sites, could let hackers steal their login data.
The problem, known as a reverse cross-site request, or RCSR, was first discovered by Robert Chapin, a Microsoft Certified Systems Engineer (MCSE) and I.T, consultant. The RCSR appears on blogs, message boards, or group forums that let users add comments with embedded HTML code.
On sites that allow users to enter code, a hacker can embed a form that tricks the user's browser into sending its username and password information to the hacker's computer. Because the form is embedded on a trusted Web site, the browser's built-in antiphishing protection, which is designed to alert users to fraudulent Web sites, does not detect the problem.
More....
Bloglines - A New Worm Creeps All Over MySpace
Bloglines user
ChuckzBlog (chuckzmail@johnstonz.net) has sent this item to you.
Windows Fanatics
Freeware, useful Web sites, original PC tips & tricks, critical updates, jargon definitions, and general help for consumers. Tech support with a personal touch! | | |
| By Lockergnome on Security It's great to meet people online and befriend them, to share your thoughts, photographs, movies, and much more. Even better when the community Web site is easy to log in to and manage; until your network intermingles with the criminal gangs of the Web underground! Security Experts at MicroWorld Technologies inform that a Worm named 'Win32.Ofigel' is spreading in large numbers across the world among a 70 million strong user base of the highly successful community portal, MySpace.com. Security experts have long raised concerns about the vast opportunity that Web sites like MySpace provide to online thieves and criminals in exploiting their open nature and easy access. When a member of the community views an infected profile, a QuickTime movie carrying the Ofigel worm is played, which exploits an XSS vulnerability in the network using a Java script. The Worm then replaces the user's MySpace menu with a fraudulent one and the menu items redirect the user to a phishing Web site identical to MySpace, where the username and password of the victim are captured. Then the Worm logs onto certain Web sites to download the malicious QuickTime movie and adds it to the user's profile. When a new user, mostly the victim's contact, watches the movie, his or her computer gets infected and the chain goes on. As if that's not enough, Ofigel later harvests the email IDs of a victim's contacts and starts sending spam mails to them with subject lines like: What else is there to do on a Sunday, You better not forget about this, Hehe that was so funny, Better see this one last time lol, Who's coming to the party tonight, etc. All messages are quite in sync with the youth culture of MySpace. "This is just one of the many recent incidents that goes on to prove how multi-tiered and multi-pronged the online threats have become in recent times," says Sunil Kripalani, Vice President, Global Sales and Marketing, MicroWorld Technologies. "The attack involves a worm, a media player, phishing and spamming. It also gives a clear indication that community Web sites are fast becoming one of the most preferred vectors of malware proliferation." MySpace officials inform that they are acting to minimize the impact of this worm on users by identifying the URLs attempting to exploit this vulnerability. Those URLs are being blocked, while the infected profiles being removed. About the Author
Btv Raj is the Content Writer and Creative Visualizer of MicroWorld Technologies. Tags: microworld technologies, btv raj, sunil kripalani, myspace, ofigel, win32.ofigel, xss vulner ability Related Articles: | | | | |
Some Christmas frivolatry...
Sing along!
The First Christmas
Bloglines - Email Hoaxes - Why I Hate Them
Tuesday, December 05, 2006
Bloglines user
ChuckzBlog (chuckzmail@johnstonz.net) has sent this item to you.
| |  | | Lockergnome Nexus
To inform, empower, and entertain - Lockergnome is a resource for people who are curious about the world around them. Please explore our ever-growing dynamic content nexus. | | |
| OK. Hate is a strong word. Maybe I should say dislike. And why do I dislike hoax emails? First, they add more junk to my inbox that I really don't need or want. But the real reason I dislike hoax emails is that they usually come with a post script like "Is this true?" I often consider returning the hoax email with a message like, "I don't know, what you think?" So what are hoax emails? Emails that attempt to trick the receiver into believing that something that is false is in fact true. Some of the most popular hoaxes are: - Osama bin Laden has been captured or hanged - video at 11. Sorry, he's still loose.
- Microsoft sending a virus notification. Microsoft doesn't send virus notifications.
- Stolen kidney or some other body part. Nope, never happened.
- Free trip to Disney World. Give me a couple of grand and I'll take you myself.
- Congress wants to charge a 5 cents per email tax. Don't give the politicians any new ideas.
- Dialing some *90 number or other code - scammers can use your phone. Sorry. Wrong number.
- KFC doesn't use real chickens. Oh really.
- Unlock your car with your cell phone. Works if you use the cell phone to break out a window.
- National cell phone do not call list. No such animal boys and girls.
- Needles on gas pump handles. And I bet they are infected as well with some rare disease!
-
Needles in the theater, needles in pay phone coin slots, needles in the McDonald ball pit, we sure do love our needles.
So here is what you can do to cut down on this garbage being sent. Do a quick Google search or what ever search engine you prefer and see what it turns up. You would be surprised how simple this is to do and you will save us all some time! Oh, and here's a great site to check for hoaxes called Snopes.com PS And I don't sign online petitions either! LOL Related Articles: 
| | | | |
Bloglines - CNET editor and former TechTVer James Kim and his family are missing
Bloglines user
ChuckzBlog (chuckzmail@johnstonz.net) has sent this item to you.
| | | | Lockergnome Nexus
To inform, empower, and entertain - Lockergnome is a resource for people who are curious about the world around them. Please explore our ever-growing dynamic content nexus. | | |
| 
CNET editor and former TechTV Fresh Gear contributor and TechTV Lab analyst James Kim and his family has been missing since Saturday. ANY word, especially from people in the Oregon area is appreciated. The information below is from the San Fransisco Police Department: "Missing Family Includes: James, Kati, Penelope (age 4.5) and Sabine (6 months). Last name is Kim Overview: The Kim Family left San Francisco on November 17th on a road trip to the Pacific Northwest. They had Thanksgiving in Seattle with family and then drove to Portland. They were last seen by their friends in Portland whom they had brunch with on Saturday, November 25. According to their friends, their plans were to drive out to the town of Gold Beach on the Oregon Coast and then make their way back to San Francisco. James was expected back at work on Tuesday, November 28th. When no one had heard from him by Wednesday morning employees at the Kims' two stores and his colleagues at CNET began to make phone calls to his family and friends to inquire of his w hereabouts. Presently, the SFPD is investigating the case." If you know anything about James' or the family's whereabouts, you can contact the SFPD by calling 415-558-5508 during normal business hours and 415-553-1071 after hours. [via Leo] [photo courtesy of Engaget] Related Articles: 
| | | | |
2006 Federal Excise Tax Credit
Saturday, December 02, 2006
What is the telephone tax refund?
The telephone tax refund is a one-time payment available on your 2006 federal income tax return, designed to refund previously collected long-distance federal excise taxes. It is available to anyone who paid long-distance taxes on landline, cell phone or Voice over Internet Protocol (VoIP) service.
Why is the government refunding these taxes?
Several recent federal court decisions have held that the tax does not apply to long-distance service as it is billed today. The IRS is following these decisions and refunding the portion of the tax charged on long-distance calls. The IRS is also refunding taxes collected on telephone service under plans that do not differentiate between long distance and local calls.
The telephone tax continues to apply to local-only service, and the IRS is not refunding taxes charged on local-only service.
The IRS will refund to you the taxes on long-distance service billed to you for the period after Feb 28, 2003 and before Aug 1, 2006. Taxpayers should request this refund next year when they file their 2006 tax returns.
See the following sites for more info:
http://www.snopes.com/business/taxes/excise.asphttp://www.irs.gov/newsroom/article/0,,id=161506,00.html
Bloglines - Russia agrees to shut down Allofmp3.com
Friday, December 01, 2006
Bloglines user
ChuckzBlog (chuckzmail@johnstonz.net) has sent this item to you, with the following personal message:
Another one bites the RIAA dust...how sad!
| |
| By: seaeagle - It looks like super-cheap mp3's might become a lot harder to find on the web:
Russia has agreed to shut down Allofmp3.com and other music sites based in that country that the U.S. government says are offering downloads illegally.
The nation has struck the agreement with the Office of the U.S. Trade Representative as it seeks entry to the World Trade Organization. The U.S.... | | | | |
