« previous next »
Pages: 1 2 [3]  All   Go Down

Author Topic: McDonalds serves up a McVirus in Japan  (Read 11166 times)

0 Members and 1 Guest are viewing this topic.

Offline Quik

  • Webmaster Guy
  • x86
  • Hero Member
  • *****
  • Posts: 3262
  • \x51 \x75 \x69 \x6B \x5B \x78 \x38 \x36 \x5D
    • View Profile
Re: McDonalds serves up a McVirus in Japan
« Reply #30 on: October 17, 2006, 10:36:55 pm »
I'm almost certain that there are ways to make a drive auto-execute something. Give me a day or two to test my theory, and I'll get back to you.
Logged
Quote
[20:21:13] xar: i was just thinking about the time iago came over here and we made this huge bomb and light up the sky for 6 min
[20:21:15] xar: that was funny

Offline MyndFyre

  • Boticulator Extraordinaire
  • x86
  • Hero Member
  • *****
  • Posts: 4540
  • The wait is over.
    • View Profile
    • JinxBot :: the evolution in boticulation
Re: McDonalds serves up a McVirus in Japan
« Reply #31 on: October 17, 2006, 11:06:16 pm »
Quote from: unTactical on October 17, 2006, 10:07:58 pm
If its file system agnostic then why does the USB drive have to be FAT formatted?
It doesn't *have* to be FAT-formatted.  However, USB drives are typically FAT-formatted because of the quick-eject nature of the drive.  You can only format them to NTFS if you tell the system to require you to use the "Eject" feature of the "Safely Remove Hardware" icon (since NTFS is journaling, removing while there are still cached actions to be done can leave the file system in an inconsistent state).

I was merely mentioning FAT for illustrative purposes.  I demonstrated that this was the behavior using NFS (Network File System) as well.
Logged
Quote from: Joe on January 23, 2011, 11:47:54 pm
I have a programming folder, and I have nothing of value there

Running with Code has a new home!

Quote from: Rule on May 26, 2009, 02:02:12 pm
Our species really annoys me.

Offline Newby

  • x86
  • Hero Member
  • *****
  • Posts: 10877
  • Thrash!
    • View Profile
Re: McDonalds serves up a McVirus in Japan
« Reply #32 on: October 17, 2006, 11:12:57 pm »
Quote from: MyndFyre[x86] on October 17, 2006, 11:06:16 pm
It doesn't *have* to be FAT-formatted.  However, USB drives are typically FAT-formatted because of the quick-eject nature of the drive.  You can only format them to NTFS if you tell the system to require you to use the "Eject" feature of the "Safely Remove Hardware" icon (since NTFS is journaling, removing while there are still cached actions to be done can leave the file system in an inconsistent state).

I ejected it once without ejecting (FAT32) and I lost data. :/
Logged
- Newby
http://www.x86labs.org

Quote
[17:32:45] * xar sets mode: -oooooooooo algorithm ban chris cipher newby stdio TehUser tnarongi|away vursed warz
[17:32:54] * xar sets mode: +o newby
[17:32:58] <xar> new rule
[17:33:02] <xar> me and newby rule all

Quote from: Rule on June 30, 2008, 01:13:20 pm
Quote from: CrAz3D on June 30, 2008, 10:38:22 am
I'd bet that you're currently bloated like a water ballon on a hot summer's day.

That analogy doesn't even make sense.  Why would a water balloon be especially bloated on a hot summer's day? For your sake, I hope there wasn't too much logic testing on your LSAT. 

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: McDonalds serves up a McVirus in Japan
« Reply #33 on: October 18, 2006, 10:06:49 am »
Quote from: MyndFyre[x86] on October 17, 2006, 09:55:40 pm
Quote from: iago on October 17, 2006, 09:39:12 pm
According to the guys on that security list (that I referenced), it will iff it's formatted as a CDFS.  At least, that's how I understand it. 
The guys on the security list, or your understanding, are wrong.  As I demo'd, any time a drive letter is mounted, Explorer will check to see if it's auto-runnable.  It is filesystem-agnostic.
Well, I was going off what unTactical said.  Perhaps everything CAN run a program when you plug it in, which would probably be even worse.

Maybe it's possible that there's some half-thought-out security measure that prevents non-CDFS from auto-executing a program? 
Logged

Offline Chavo

  • x86
  • Hero Member
  • *****
  • Posts: 2219
  • no u
    • View Profile
    • Chavoland
Re: McDonalds serves up a McVirus in Japan
« Reply #34 on: October 18, 2006, 10:10:22 am »
Quote from: MyndFyre[x86] on October 17, 2006, 11:06:16 pm
Quote from: unTactical on October 17, 2006, 10:07:58 pm
If its file system agnostic then why does the USB drive have to be FAT formatted?
It doesn't *have* to be FAT-formatted.  However, USB drives are typically FAT-formatted because of the quick-eject nature of the drive.  You can only format them to NTFS if you tell the system to require you to use the "Eject" feature of the "Safely Remove Hardware" icon (since NTFS is journaling, removing while there are still cached actions to be done can leave the file system in an inconsistent state).

I was merely mentioning FAT for illustrative purposes.  I demonstrated that this was the behavior using NFS (Network File System) as well.

The two parts of my reply went hand in hand, you can't answer half of it and ignore the rest! :)  Especially when your answer to that question contradicts the statement in the latter part of my post!

As this screenshot shows, autorun.inf is clearly modifying the label for my usb drive just fine, but it is definately not autorun-ing the specified executable or changing the default action of the drive.  I don't doubt you are right, but obviously its not working here :)


Logged

Offline Warrior

  • supreme mac daddy of trolls
  • Hero Member
  • *****
  • Posts: 7503
  • One for a Dime two for a Quarter!
    • View Profile
Re: McDonalds serves up a McVirus in Japan
« Reply #35 on: October 18, 2006, 04:47:48 pm »
Logged
One must ask oneself: "do I will trolling to become a universal law?" And then when one realizes "yes, I do will it to be such," one feels completely justified.
-- from Groundwork for the Metaphysics of Trolling
Pages: 1 2 [3]  All   Go Up
« previous next »