Re: [ilugd] Re: Openoffice 1.1 RCs and other publishing questions

2003-10-07 Thread Amitabh Trehan 
 --- LinuxLingam [EMAIL PROTECTED] wrote:  On
Tue, 2003-09-30 at 22:05, Raj Shekhar wrote:
  On Tue, 2003-09-30 at 16:30, LinuxLingam wrote:
  
   let's have a digital publishing+imaging mailing
 list on linux-delhi. we
   discuss digital typography, design,
  I vote for this with both my hands
 
 er... in that case, how did you type the message,
 well never mind the graphic details
 LL
Good Question? Well, I also vote with both hands and
my left leg and type the mail with my right
toenails!!!



Yahoo! India Matrimony: Find your partner online.
Go to http://yahoo.shaadi.com

___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd

[ilugd] New resource - Linux novice requires career guidance

2003-10-07 Thread nkapoor 
Resource ID: 62
Title: Linux novice requires career guidance
Category: Operating System
URL: 
Contact: [EMAIL PROTECTED]
Description: 
I m a MCA student pursuing RHCE . Can someone tell me how to approach further ? I want 
to make my career in Linux . Are there any companies in or around delhi , where i can 
undergo training ???

Thanx a lot in advance ...
Inform when comment is added: OFF
Inform when resource is rated: OFF
- Submitted by Ashish Mishra on 10/07/2003.
--
This email is brought to you by http://www.linux-delhi.org/
 

___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd

[ilugd] Re: [LIP] need for java developers on gnu-linux @ bbay

2003-10-07 Thread Trevor Warren 
Good Day Raj,

  Hope you doing great.
 

On Tue, 2003-09-16 at 12:11, Raj Mathur wrote:
  Trevor == Trevor Warren [EMAIL PROTECTED] writes:
 
 Trevor Linuxersif the challenge below is good enough please
 Trevor email your c.v's to [EMAIL PROTECTED] and a cc to
 Trevor [EMAIL PROTECTED]
 
[snip]

 I would appreciate this forum where in you have raised the issues of
personal gain.

 Raj, your comments are taken heed of and i do appreciate the same. But
lemme re-iterate that there was a lapse on not adding
[ot][jobs][commercial] to the subject hearder.

 I will continue to post to mailing lists for [ot] subjects i think i
make sense. As an administrator for your lug mailing list please go
ahead and do the needful you need to prevent spam from getting through.

 Raj, like you i too am a very frequent contributor on the fsf-os front
and do realise that there are a ton of good talented indivizuals who
desire good oppurtunities but ofcourse don't need to be spammed and
hence we have a [ot][jobs][commercial] subject header that got missed
as regards to this mail.

 Have a great day Raj and please do what you think is right to prevent
spam from hitting your mailing lists and i will do mine. 

 Cheerio Raj!!!.

Trevor




 Trevor [snip]
 
 This is a commercial post and should have been marked [COMMERCIAL] in
 the subject line.
 Please do NOT spam multiple mailing lists with posts for personal
 gain.
 
 -- List Admin
-- 
( -LINUX, It's all about CHOICE  - )
/~\__[EMAIL PROTECTED]   __   /~\
|  \) /  Pre Sales Consultant - Red Hat \ (/ |
|_|_  \9820349221(M) | 22881326(O)  / _|_|
   \___/


___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd

[ilugd] (no subject)

2003-10-07 Thread saurabh singh 
hi alok..

i need root password of G8 BLUE BOX LIVE 
thanx
___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd

[ilugd] (fwd) Adobe SVG Viewer Active Scripting Bypass (GM#002-MC)

2003-10-07 Thread Raj Mathur 
[Please upgrade if you run ASV -- Raju]

This is an RFC 1153 digest.
(1 message)
--

Message-Id: [EMAIL PROTECTED]
From: GreyMagic Software [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Adobe SVG Viewer Active Scripting Bypass (GM#002-MC)
Date: Tue, 7 Oct 2003 17:58:12 +0200

GreyMagic Security Advisory GM#002-MC
=

By GreyMagic Software, Israel.
07 Oct 2003.

Available in HTML format at http://security.greymagic.com/adv/gm002-mc/.

Topic: Adobe SVG Viewer Active Scripting Bypass.

Discovery date: 19 Aug 2003.

Affected applications:
==

Adobe SVG Viewer (ASV) 3.0 and prior. 

Note that any other application that embeds ASV is affected as well,
including the WebBrowser control. Therefore, any application that makes use
of the WebBrowser control is vulnerable (Internet Explorer, AOL Browser, MSN
Explorer, etc.). 


Introduction:
=

Scalable Vector Graphics (SVG) is a relatively new XML-based language for
creating and controlling vector graphics. The language was standardized and
endorsed by the WWW Consortium (W3C). 

Several SVG parsers and renderers have been released as browser plugins, but
the most popular of them all is Adobe SVG Viewer (ASV). According to Adobe:
Adobe SVG Viewer 3.0 is available in 15 languages and many millions of
viewers have already been distributed worldwide. 


Discussion: 
===

SVG documents may be manipulated by script, through a full Document Object
Model that the plugin exposes. In order to achieve an independent method of
manipulation, ASV creates an instance of the Microsoft JScript engine, which
is then used to parse and execute script blocks that appear in the document.

When parsed in the browser environment, SVG documents are able to interact
with the containing HTML document by using the parent property. By
referring to the HTML document, script running in the SVG document is able
to fully control the parent's content. 

The problem is that ASV completely disregards the browser's Active Scripting
settings. Thereby, making it easy for attackers to utilize scripting
abilities and HTML DOM manipulations without having to rely on Active
Scripting being enabled by the user. Many users choose to disable Active
Scripting in the browser for security reasons, since even though Active
Scripting isn't in itself a threat (in most cases), it happens to be a major
component in browser-based attacks. 


Demonstration:
==

We put together a proof of concept demonstration, which can be found at
http://security.greymagic.com/adv/gm002-mc/.


Solution: 
=

GreyMagic brought this issue to Adobe on 21-Aug-2003. They have devised a
patched version (ASV 3.01) and made it available on the official ASV
download site at http://www.adobe.com/svg/viewer/install/mainframed.html.


Tested on: 
==

Adobe SVG Viewer 3 Build 76.


Disclaimer:
===

The information in this advisory and any of its demonstrations is provided
as is without warranty of any kind. 

GreyMagic Software is not liable for any direct or indirect damages caused
as a result of using the information or demonstrations provided in any part
of this advisory. 

- Copyright ) 2003 GreyMagic Software.

--

End of this Digest
**

-- 
Raj Mathur[EMAIL PROTECTED]  http://kandalaya.org/
   GPG: 78D4 FC67 367F 40E2 0DD5  0FEF C968 D0EF CC68 D17F
  All your domain are belong to us.
  It is the mind that moves

___
ilugd mailing list
[EMAIL PROTECTED]
http://frodo.hserus.net/mailman/listinfo/ilugd