If you type in the query of Why is Windows so expensive? or Why is Microsoft Windows so expensive? on Microsoft’s search engine bing.com returns the top result as “Why are Macs so expensive”. This is rather disappointing where bing seemed ready to give Google a challenge in the search engine space.

Why is Windows so expensive.

Following are the top results from Bing:

News about Why is Windows so expensive
Why are Mac’s So Expensive? – Yahoo! Answers
why so expensive?. – Games for Windows Live
Why are vinyl windows so expensive? who provides them cheapest …
Why are vinyl windows so expensive? who provides them cheapest? Find answers to this and many other questions on Trulia Voices, a community for you to find and share local …
Why are windows hosting providers so expensive? – Community Server
Community Server is the platform that powers rich blogging, discussions, and sharing web communities.
Why are Macbooks so expensive? – Yahoo! Answers
WikiAnswers – Why are Apple Macs so expensive
Apple and Mac question: Why are Apple Macs so expensive? Macs are no more expensive … can save money by buying more advanced parts for a windows computer. Also, they are expensive …
Windows Embedded Blog : Why is OSS Commercial Software So Expensive?
Why are Macs so expensive? – TechSpot Troubleshooting
Why are Macs so expensive?
Why are Macs so expensive? techradar.com â” There are some good reasons not to choose a Mac when you … If I feel like Sony are charging too much for a Laptop with Windows I can get a …
Why fish is so expensive! – Windows Live

This is the result from Google:

Why Windows Vista and Office 2007 are so Expensive  The Firefox …
Is Windows getting more expensive? – CNET News
Windows 7 to be âoemore expensiveâ than Vista, XP
Writing on the Wall: Why Windows is so expensive
Why are vinyl windows so expensive? who provides them cheapest …
Omfg Vista Is so Expensive – Windows Vista and Windows 7
Why are HDTV wall mounts so expensive?
Why is the IBM thinkpad x301 laptop so expensive with mediocre …
Why are Macs so expensive? | News | TechRadar UK
Gizmodo – The World’s Most Expensive Copy of Windows XP – XP

Update: Microsoft seems to have fixed this.

Noted security professional Dan Kaminsky’s personal website was hacked into and personal information was stolen from his webserver and posted online on the eve of the Black Hat security conference. The stolen files included private emails between Dan and other security researchers.

Following is the cached result of Dan Kaminsky’s website which is currently offline.

Dan Kaminsky's personal website hacked

According to the note the hackers left on Dan’s website on doxpara.com/zf05.txt,

We hacked Dan’s assets first through finding bugs and writing 0day, and then through abusing him giving away passwords and his silly password scheme. Check out just some of his passes: fuck.hackers, 0hn0z (root account on his mail box), fuck.omg, fuck.vps, ohhai

Five character root password? Niiiiiiice.

From .mysql_history:

SET PASSWORD FOR ‘root’@’localhost’ = PASSWORD(’fuck.mysql’);

See the pattern?

The hackers also criticized Dan for using insecure blogging and hosting services that they used to host their websites and in turn allowing access to their personal data.

If you looked at Dan’s website, he used WordPress as his Content Management Solution and used the Dropshadow wordpress theme developed by Brian Gardner.

Dan Kaminsky using WordPress as his CMS

Looking at the theme, the last development occurred around April 2007. Could the hackers have used some vulnerability in the theme itself or did Dan have an insecure version of WordPress installed on his webserver? Either case, if you are using WordPress as your content management solution, it is important to think about WordPress security.

Every IT professional worth his/her salt has their own webpage/blog these days. While you may have people from all over the globe dropping a line at your site, Email harvesters are the most unwanted visitors on any website. These email spambots crawl the web via search engines to find and extract email addresses from webpages. E-mail addresses in your blog or webpage are no secret to spam robots. Here’s a guide that should help you protect your email addresses from these spam spiders. Techniques mentioned use text manipulation, Masking, HTML, Flash, CSS, and JS to hide email addresses.
How email spammers operate? Email addresses always contain an @ symbol. Most spambots do a pattern-search for likely combinations of letters (abc@xyz.com) like billgates@microsoft.com or larrypage@google.org in the HTML source of webpages. Often they just search for the @ character and grab all the letters on each side on the assumption that it’s a valid email address.
How to keep your email address available to humans but invisible to email spiders? There are tons of Email Address Protector software that claim to protect your email address in web pages and get rid of junk mail – Don’t waste your money, they only encode your email or generate a javascript snippet. We will discuss manual email encoding techniques here. If a visitor clicks an encryped email link on your website, it will work as normal, but spam robots will not be able to extract the address from the link.
#1: Replace the AT (@) and DOT (.) symbols:

The most common approach to block email harvesting is to remove the @ symbol. If you eliminate the @ from email addresses then most spambots won’t be able to recognize that the text is actually an email addresses: Here are some examples:
ajit AT askstudent DOT com ajit (at) askstudent.com ajit@askstudent.com ajit_AT_askstudent_DOT_com
#2: Mask your email with tags, append meaningful words:

Consider “masking” your email address. Masking involves putting a word or phrase in your email address so that it will trick a harvesting computer program, but not a person. Some email masking examples commonly employed by newsgroups and mailing list subscribers:
ajit@askstudent.com.nospam ajit@askstudent.com.removeme ajit@REMOVE.askstudent.com
#3: Replace text with an image:

This technique involves creating a graphic or screen capture of your email address text in jpg, png or gif formats and display that picture instead of the actual address string. Robots and spiders can’t read the text that is embedded in the image. Anyone who wants to email you will have to manually type in your address though.
#4: Email Obfuscators:

E-mail Obfuscator make you email less vulnerable to spammers. Using an online email Obfuscator, convert (or disguise) individual characters of your email address into corresponding ASCII code (a <=> a hex coding) For example, the email address a@b.com is represented in ASCII as: a@b.com The above ASCII string can be used as arguement for mailto: HTML tag as shown here. Email addresses will appear perfectly normal, and will even be clickable, to human visitors to your website. e-mail to confuse sniffer ASCII_STRING
#5: Encode the mailto: and @ symbols with special HTML characters
Encode the mailto: and @ characters with this code: mailto: changes to mailto @ changes to @
The email link HTML code to hide your email address will look like: < a href=”mailtoname@domain.com” mce_href=”mailtoname@domain.com” >hidden email< /a>
Hide email using CSS trick (direction property)
Scramble the email – While coding HTML, jumble and write the email address in reverse direction. (a@b.com should be written as moc.b@a). We can then use CSS stylesheet to reverse the email address againwhen rendering. Here’s the sample HTML code with CSS. < style type=”text/css”> .backwards {unicode-bidi:bidi-override; direction: rtl;} < /style> < span class=”backwards”>moc.b@a< /span>

If someone copies your email address, it will available in the reverse direction. Would not work on older browsers.

Use Macromedia Flash You can easily create a tiny.swf file in Flash with embedded mailto: behaviour. The button action used to pick up the text held in the variables is: on (release){ getURL (“mailto:” +recipient+ “?cc=” + cc + “&subject=” + subject + “&body=” +body) } Requires Macromedia Flash player on client’s machine.

How to hide your email address from spammers with JavaScript

Let’s look at more advanced methods that use javascipt to hide the email (name@domain.com). Remember to use noscript tags since some users prefer to disable javascript in browsers:

1. Basic Email Script

2. Basic Mailto: Email Script with Link Text

3. Inline JavaScript
Send me an email

4. External JavaScript file

The external javascript contains the code mentioned in 2 above.

Enkoder Javscript Form
The enkoder form script generated an encrypted javascript as shown below:

Original HTML: write email
Encrypted HTML code

<script type=”text/javascript”>/* <![CDATA[ */function hivelogic_enkoder(){var kode="kode=\";)'':)1-htgnel.edok(tArahc.edok?htgnel.edok<i(+x=edok})i(tArahc.edo"+"k+)1+i(tArahc.edok=+x{)2=+i;)1-htgnel.edok(<i;0=i(rof;''=x;\\\")''n(oi.j()"+"seerev.r')('itpl.sdekoe=od;kk\\\"\\\\do=e\\\\\\\\\\\"\\\\kode\\\\\\\\\\\\"+"\\\\\\\\\\\\\\\"\\\\r=hn%gn@gr%h,__@_>d%?_vAw2_wAh__%___hw__wv__%___o@l_#h"+"_w_w_%__r_1_oppf{hCshdxhruovd=_wpl__%___h@k_di_u?#__w+u%1hqlpzfwgh>x%rn_gr"+"@hrnhgv1oswl*+,*u1yhuhhv,+m1lr+q**>,@%*{i*u>lr3+l@+>r?hnogq1wh0j,kl4@>,.{5"+"@~r.hnfgd1Dk+u.w,ln4g.1rkhufwdlD\\\\\\\\+\\\\\\\\\\\\\\\\,\\\\\\\\000nrgh@"+"{.+l?nrgh1ohqjwkBnrgh1fkduDw+nrgh1ohqjwk04,=**,>\\\\\\\\;\\\"\\\\\\\\\\\\="+"\\\\\\\\'xf'r;io0(i=k;d<.oeeglhnit+;{+=)ocekcda.ChdrAo(e)t3ii-(;<f)c+01c8="+"x2=;t+iSgrfno.CramChdr(o)ekcd}=oxe\\\\\\\\\\\"\\\\x;'=;'of(r=i;0<ik(do.eel"+"gnht1-;)+i2={)+xk=do.ehcratAi(1++)okedc.ahAr(t)ik}do=e+xi(k<do.eelgnhtk?do"+".ehcratAk(do.eelgnht1-:)'';)=\\\"\\\\deko\\\"=edok\";kode=kode.split('').r"+"everse().join('')";var i,c,x;while(eval(kode));}hivelogic_enkoder();/* ]]> */</script>

This article is not a hacking tutorial. This is only to be used for educational purposes and should not be exploited.

Using simple command line tools on a machine running Windows XP, we will obtain system level priviledges. The system run level is higher than administrator, and has full control of the operating system and it’s kernel. On many machines this can be exploited even with the guest account. This system account allows for several other things that aren’t normally possible (like resetting the administrator password).
The Local System account is used by the Windows OS to control various aspects of the system (kernel, services, etc); the account shows up as SYSTEM in the Task Manager process list, as seen in the following screen shot:
Local System differs from an Administrator account in that it has full control of the operating system, similar to root on a *nix machine. Most System processes are required by the operating system, and cannot be closed, even by an Administrator account; attempting to close them will result in a error message.

The following quote from Wikipedia explains this in a easy to understand way:

: In Windows NT and later systems derived from it (Windows 2000, Windows XP, Windows Server 2003 and Windows Vista), there may or may not be a superuser. By default, there is a superuser named Administrator, although it is not an exact analogue of the Unix root superuser account. Administrator does not have all the privileges of root because some superuser privileges are assigned to the Local System account in Windows NT.

Under normal circumstances, a user cannot run code as System, only the operating system itself has this ability, but by using the command line, we will trick Windows into running our desktop as System, along with all applications that are started from within.   Procedure to get system level access and previlege escalation in windows I will now walk you through the process of obtaining SYSTEM privileges and a demonstration of this Windows XP admin exploit / super user hack 

To start, lets open up a command prompt (Start > Run > cmd > [ENTER]).

At the prompt, enter the following command, then press [ENTER]:

If it responds with an “access denied” error, then we are out of luck, and you’ll have to try another method of privilege escalation; if it responds with “There are no entries in the list” (or sometimes with multiple entries already in the list) then we are good. Access to the at command varies, on some installations of Windows, even the Guest account can access it, on others it’s limited to Administrator accounts. If you can use the at command, enter the following commands, then press [ENTER]:  

Lets break down the preceding code. The “at” told the machine to run the at command, everything after that are the operators for the command, the important thing here, is to change the time (24 hour format) to one minute after the time currently set on your computers clock, for example: If your computer’s clock says it’s 4:30pm, convert this to 24 hour format (16:30) then use 16:31 as the time in the command. If you issue the at command again with no operators, then you should see something similar to this:

You’ll notice that the title bar has changed from cmd.exe to svchost.exe (which is short for Service Host). Now that we have our system command prompt, you may close the old one. Run Task Manager by either pressing CTRL+ALT+DELETE or typing taskmgr at the command prompt. In task manager, go to the processes tab, and kill explorer.exe; your desktop and all open folders should disappear, but the system command prompt should still be there.

At the system command prompt, enter in the following:

Code:

explorer.exe

A desktop will come back up, but what this? It isn’t your desktop. Go to the start menu and look at the user name, it should say “SYSTEM”. Also open up task manager again, and you’ll notice that explorer.exe is now running as SYSTEM. The easiest way to get back into your own desktop, is to log out and then log back in.

Now that we have SYSTEM access, everything that we run from our explorer process will have it too, browsers, games, etc. You also have the ability to reset the administrators password, and kill other processes owned by SYSTEM. You can do anything on the machine, the equivalent of root; You are now God of the Windows machine. I’ll leave the rest up to your imagination.


Resetting Administrator’s password