Alternate Data Streams

I sent this to some of my coworkers.  You might find this interesting too..

One of the members of a technical forum to which I belong had a virus detected in a dll that he could not find anywhere on his computer.  In the end, it was discovered that the file was embedded as Alternate Data Stream (ADS) attached to his System32 directory.  The full path to the file was something simlar to c:\windows\system32:dhht.dll.

I was not familiar with using streams in this manner; so I looked it up.  In short, any file or directory on an NTFS drive can any number of files piggy-backed onto it without affecting its reported file size.  These files remain intact through normal file copying and renaming actions as long as the file remains on an NTFS drive (or compatible archiver).

I’ve never come across this before and thought I would share.

Summary/Demo….    (adjust paths as necessary)
1. Create a directory off the root called test
2. From the command prompt in your test directory type:
   Echo a>test.txt
   That will create a nice 3 byte text file.
3. Now type:
   type c:\Windows\system32\notepad.exe>test.txt:notepad.exe
4. Get another directory listing and notice that the size of test.txt remains 3 bytes though an additional ~70kb has been added to it.  The time has changed but that could be set back.
5. Now, from the command prompt in your test directory, execute the hidden stream:
   start \test\test.txt:Notepad.exe
   (You must use include the path to test.txt)

You are now running an exe that was hidden in 3 byte text file.

Windows supplies no tools to display this.  The attached zip file, also referenced in this article, includes an exe that does.

The Task Manager shows the running proces in different ways depending upon your Windows version.  In SP2, the executable is listed as test.txt:Notepad.exe. However, in earlier versions of windows, only the host file is listed.  So, if you’d embeded Notepad.exe in calc.exe, calc.exe would be in the task list even though you’d be running Notepad.  Nifty huh?

Of course, you’ll have to find a transport/archiver that supports these streams, if you want to distribute them.  Outlook and WinZip do not seem to do so.

Apparently ADS are there for backwards compatibility with a Macintosh file system (HFS).  I’m not sure why we’d want/need that…

Turducken

Weird Words: Turducken

 ——————————————————————-

A culinary construction. Many of us have heard of this gastronomic excess, which in the USA is associated with Thanksgiving and to a lesser extent with July 4. A chicken is stuffed inside a duck inside a turkey – the inner two deboned first and themselves stuffed with such delights as sausage, cornbread, or oyster. A culinary chimera, it might be thought to stand on the same level of gustatory invention as the Glaswegian deep-fried Mars bar, though those who have tried it say it’s quite tasty. Some chefs draw away in horror from it, citing the excessive amounts of skin and fat and the high risk of bacterial problems because it is so hard to ensure that all three birds are properly cooked through. If this creation were not enough, a news article from 1997 said that a store in Louisiana was experimenting with a “pigturducken”, though nothing has been heard of it since. And a rumour has reached me via the Internet that South Africans have gone one better, producing an osturducken, in which the whole concoction is stuffed inside an ostrich. However, this may possibly be an urban legend, because the only reports come from somebody who has heard of it from somebody else.

Bimbos of the Death Sun by Sharyn Mccrumb

Media Type: Unabridged Audio

Source: www.NetLibrary.com

Purchase URL: http://www.amazon.com/exec/obidos/tg/detail/-/034541215X?v=glance

Review:
Sadly this book is 90% setting and 10% predictable plot. I was very hopeful about this book.  I thought that with a precocious title like this, it would strive to achieve better.  Plus it won an Edgar Award (whatever that is). To be honest, I am very surprised that this isn’t an author’s first work.  If this book were a piece of carpentry, it would be the set of shelves you made in junior high shop class.
Other people have reviewed this as a comedy novel – an extremely good one.  And maybe that’s why I rate it so poorly.  The audio book version offers you no clues that it isn’t meant to be taken seriously and it is way too close to reality to be taken as a spoof.  I didn’t find anything in here that would classify it as a comedy unless the use of stereo types is supposed to allow us to the opportunity get enjoyment out of ridiculing people.  “Ha ha – the fat chick and the geek are doing the nasty right now. giggle giggle giggle”.  However, if that’s the case, why is the promiscuous, liberal, feminist college professor type (Is she another stereo type role or the author placing herself in the book? I just don’t know.)   making such a big deal about how bad it is to make fun of people? 
There’s a character in this book that wrote a book called BotDS based upon a scientific theory.  I have to admit I did laugh about how the audio book reader got slower and slower when reading technical description of the concept behind the book within the book.   That was quite funny once I realized it wasn’t being done on purpose!
The writing is full of too many literary mistakes for me to give it a good review.  It has everything from supplying information that is never again needed (perhaps just there to give you giggles?), to redundantly explaining simple concepts (might have been funny if over emphasized), to throwing in meaningless techno babble (you’re in a hotel with a thousand geeks surely if this were meant to be funny it could happen more often), to using the novel to express ridicule of your own current pet peeves (never really funny), to criticizing other authors and then making the same mistakes (humor through ridicule never does it for me), this novel has it all.
The over-simplified stereotypes throughout the book shows the real prejudice in the author’s mind as we are repeatedly told:
1. Americans are stupid, ignorant and loud (a message repeated in so many words perhaps a dozen times throughout.)
2. Scotts are stuck up alcoholics
3. F&SF only exists because of the psychoses of the fat or ugly or fat and ugly teens that work at supermarkets or burger king.
4. Fat girls can only get ahead through sexual encounters with those more desperate than they are.
5. The mind of a cop is a slow thing, so, use small words.
6. A liberated feminist is always the only psychologically healthy individual in a room.
The scene painted of the “con” by half way through the book was intricate in detail and enjoyable until you realized that absolutely nothing has happened so far.  Then you are forced to realize that due to the Shakespeare quotes tossed in here and there, the author has left only one avenue for the plot to follow.
Also, I would have respected the work more if she wouldn’t have failed on the fine details of the computer stuff.  This was set in the 80’s, so there is talk about computers and programs.  I feel that the research on that subject was done through one email to a friend who responded with a couple name brands and buzzwords.  It’s  a shame too because she almost got that part of it right.
I guess if this was meant to be a comedy, she needed to be a little less accurate.  Treading the line between true satire and accurate portrayal, gives the reader nothing on which to make any traction.  To straight for a farse, to sloppy to be taken seriously, this novel is a worth reading if you can get it for free.
I always feel bad when I don’t finish, or if even I don’t want to finish, a book.  This novel is another reminder that it is not my fault that the author writes a bad book.  I will say that I REALLY felt like I was one of the people hosting a convention, time dilation and all.  I decided 3/4 of the way through the book that someone should take this exact setting and characters, and make something exciting happen.  There’s plenty of potential in a full rewrite.

Code Cave:The Theme – Feature #1

These are ideas I will be putting in a theme I plan to release for the next BIG Word Press theme competition.  I’m not going to be able to do anything about the 2.0 release competitions, but maybe 2.5 or 3.0 in a year.  If you take these ideas and build them into your new theme, please just point a link back to this blog in the read me or preferably in the header code.

Feature one: Optional handling of the blog description and keyword metatags.

The Description meta tag should  done through a check box and an entry field on the theme options tab. 

Keywords should be, if enabled, automatically generated for each post by the category descriptions linked to the post.  Duplicate words would have to be filtered.  If the category description is a bad idea, code the theme add a field to that table or would that be a VERY bad idea?

Hello world!

I offer you my blog. 

See the problem is that I am losing stuff.  Over the last year I’ve done a bunch of neat stuff in forum development, in blog development, paypal, CVS, and Delphi.  But all of it was 1 time stuff.  Things that I have used and put in place and never need to think about again. 

I don’t want to lose any more of that knowlege. Here enters: The Code Cave.  A place for cold storage of my best one off solutions that I may nevaer need again, but you might.

If you use something here, please let me know.  If I am doing something wrong, or the hard way let me know that too.

I expect over the next few months, I’ll be busy cataloging my “[Mental Notes]” emails and turning them in to blog entries.  Some of what I put up here will be free, some will not.  I expect I will toss AdSense on here eventually and use that money to buy another seat license for VBulletin, if I get enough readership.  Maybe I’ll allow others to post in specific topical areas.  I’ll probably have a

Continue reading Hello world!