03 April 2007

Apple Computers

Today I interviewed with Apple for a security researcher position, it's a position that has been open since something like August of 2005 and now I know why. Before I detail what occurred in the interview, let me elaborate upon my motivations behind being interested in a position with Apple.

First let me say, I am not a huge Apple fan, honestly the commercials drive me up a wall because they're largely filled with disinformation. I am not part of the 'cult of mac', but I am generally not someone who hates Apple either. However there is one thing that I am fairly certain of, they have the most insecure mainstream operating system currently on the market, and they're about five years behind the curve in regards to security. I'm sure plenty of people will turn their nose up at that statement, but let me explain. If we look at it from a coders perspective, it's NeXT dressed up as Unix for Halloween, except it lacks the evolution that has occurred throughout the Unix world, and the evolution that has made it's way into Redmond as well. On my PPC powerbook, the stack, heap, .data and .bss are all executable, my understanding is that on Intel mac's this is not the case, however they're lacking any form of ASLR, which makes the non-executable stack/et cetera more or less useless. Even more, the GCC on my Apple CD is missing stack smashing protection (SSP formerly ProPolice), which is something that comes in GCC by default, which means that they had to rip the extra security out of the compiler. A lot of people are mistakenly under the impression that SSP is only stack cookies, which is something it does implement, but it also does other rather unique things that make it a really great feature, namely it will reorder variables to minimize the damage of potential overflow.

So we have a relatively soft target platform, we also have an incredible monoculture never dreamed of in the windows world, not only is everyone running the same OS, but they're largely running the same hardware, or rather one of a few different types of hardware, this means that you have only 3 or 4 targets, whether it be userland or kernel exploitation, which means that by and large any exploit found will work fairly well, think about that for a moment in the context of a worm.

But, my dear mac friend, you may say, 'oh but the firewall!', and as previously pointed out by Jay Bealle, the firewall is useless as implemented. To bypass the TCP filter, you just need to fragment your packets because it will accept any fragment, to bypass the UDP filter you just need a source port of 53 or 67, because it allows anything with these source ports through.

So we have a soft platform, with a faulty firewall, and then one of the biggest dangers to OSX- its user base, how many times have you seen a random OSX user make some comment about not needing anti-virus or really to have any true concerns in regards to security, after all everyone is targetting windows, right? That is a very dangerous perspective that one of these days will eat the OSX user base alive, or so one can hope anyways.

So we have an uneducated user base, a soft platform, a faulty firewall and what else? One of the things that came out of the Month of Apple bugs that I found interesting was the format string bugs in the AppKit framework. Why? Because these are APIs written in Cupertino, and used by the same people in Cupertino, and they misused them horribly leading me to believe that they simply don't understand the dangers, for those wondering I'm specifically referring to the following functions:

* NSBeginAlertSheet
* NSBeginCriticalAlertSheet
* NSBeginInformationalAlertSheet
* NSGetAlertPanel
* NSGetCriticalAlertPanel
* NSGetInformationalPanel
* NSReleaseAlertPanel
* NSRunAlertPanel
* NSRunCriticalAlertPanel
* NSRunInformationalAlertPanel
* NSLog

Let me make sure my point is crystal clear here, Apple defined these APIs, then they misused their own APIs in a very elementary way that makes me question the basic comprehension of security by their developers, QA team and security engineers/researchers. Furthermore, while I am on the subject of the Month of Apple Bugs (which to be bluntly honest left me mostly unimpressed), these were bugs that were largely found, as I understand it, by fuzzing, feeding random data in a semi-intelligent manner to the applications.

So we have a faulty firewall, a soft platform, ignorant users and developers that don't truly understand what they're doing and extreme monoculutre; what we really have is a recipe for disaster.

So when I looked at Apple, I saw a company in distress, I see a company whose future is intersects with a major security incident, and naively, I wanted to help. The Apple team is running towards the cliff in a date with destiny, and that's not a threat, thats a prophecy. It's going to happen and it wasn't until maybe 20-30 minutes after my interview that I realized why nothing is being done to prevent it; they believe their own marketing hype. I'll get back to this soon enough though.

So my interview started around 1330 and I was greeted by a gentlemen who told me basically what they do and then proceeded to tell me that their phone was 'half-duplex' and that they could either talk or listen, but not both at the same time. I find this incredibly hard to believe, but I opted to not comment on treating me like an idiot and dumbing down the point that if I give a long answer I should pause every so often, thanks, I almost forgot how to talk to people, but with your guidance I'm sure I'll do great!

The interview started with pretty simple questions, they're going to ask me system calls and I'm going to tell them what they do and any security implications it might have. The first one was fork() .. Okay well it um, fork's a process, or create a child process, security implications would be largely the inheritance of file descriptors and that a fault in either one of the processes wouldn't affect the other, as opposed to threads. They wanted more, but I couldn't think of anything and I still can't, the next was execve() which we talked about some mostly about failure to sanitize possible user-input and relative paths/et cetera, then I was asked how a process would drop its privileges, and I mentioned setuid()/setgid() and we discussed that some and then I was asked how I would drop privileges if I wanted to regain them later, and I commented that it probably wasn't the answer they were directly looking for but that what I would do would be to keep a parent management process that listened on a Unix socket to perform privilege seperation and that if a child wanted to restore it's privileges that it would make a request to the parent to create a new privileged child and pass on the file descriptors.

Here's what shocked me, I was told I was wrong (!!), they were obviously looking for some about saved/effective uid's and such but that's pointless because you might as well never had dropped your privileges, or to say it another way, if you can regain your privileges, you never dropped them.

I was then asked about how if I had this *large* code base of like 30,000 lines of code and like two days to audit it, what would I do. Firstly, let me comment that 30,o00 lines is not large, its fairly common, but whatever. I said that I'd look for usage of functions known to have problems traditionally and look at the core internal API and see if it can be misused. They asked me how I would do that, kind've making it sound like I was oversimplifying the situation and I commented that it typically wasn't that hard, grep or look at the filenames as there is typically things like alloc.c or similar, then work backwards from there. This again was met with resistance and I said that it isn't like this is hypothetical, this is what I do for a living and then they said something like 'While I can appreciate that you supposedly do this for a living, I was asking for a real answer' at which point I had enough and told them that I didn't like their fucking attitude and that this type of arrogance is why Apple is in the midst of such a security nightmare, that I wasn't interested any longer in a position with them and then proceeded to hang up.

Then about five minutes later I got a call back from the recruiter, asking what had happened and she started to laugh when she repeated back my line about the security nightmare and I realized what the problem really is, they're mistaking beginners luck for skill. When I say beginners luck, I don't mean beginner to the computer industry, but rather beginner to the 'real' industry; up until OSX they were a tinker toy OS that was largely disregarded, then they stepped up and put themselves on the same level with Microsoft and Unix, and they seem to think that just because no one has ripped them apart means that no one can. Even worse they don't seem to recognize that their arrogance makes enemies, and generally speaking they're not the types of enemies that a software vendor wants.

So fuck it, here's to you Apple and to your future insecurity, I wanted to help you and instead you just ended up with another person interested in auditing your software.



72 comments:

Anonymous said...

I thought Steve Jobs and Apple were arrogant, but buddy, you have definitely topped them.

cortado said...

But what if he is right?...

Unknown said...

I think what they wanted to hear at the fork() thing was resource exhaustion / DoS. IMHO, even their concept of an attack is as historically deprecated as their OS and their attitude.

I already imagine hordes of Apple users scrambling for a rescue. It won't be a big impact on the internet, but some "typical Apple-using" industries might feel it.

hendrik said...

thank you for posting this interesting insight into apple's arrogrant attitude towards security!
what do you think about the security of windows vista und linux-based operating systems like Ubuntu?

Unknown said...

thank you for this post!

hans3 said...

just wanna sign rudolfs statement. i am convinced this was not the first situation someone you didnt know laughed about your (freaking) behaviour.

its just not the way to go even if their os is medievil.

Unknown said...

Mr. Brilliant Haxor researcher, are you aware that they're no longer called Apple Computer?

lumengentium said...
This comment has been removed by the author.
ZS said...

JF you sound very credible to me, although somewhat arrogant. This is nothing unusual with people of very specialized and complex knowledge. Social schmoozing and negotiations skills are not necessarily the best tools in the repertoire of top programmers. However, a good manager will always focus on the real value of a person and compensate for communication shortcomings. Too bad Apple missed to realize your true motivations.

Andrei Popov said...

So, what do we have here? A random JF, with a a random Blogger blog with just a single entry. I know nothing about your credentials, your history, who you are. And while I may agre with some of your arguments, statements and conclusions -- are you real?

Paul R. Potts said...

I'm not a security expert, but I've been doing software development for some time. I've interviewed and made hiring decisions for a number of people. Give the attitude displayed in the piece, I too would have serious reservations about hiring you. How old are you? You sound about nineteen. I do know some older developers with your attitude, and they are extremely difficult to work with; they are extremely bound to their very strong opinions, and often have a hard time believing that they could have written a bug. They make the entire team miserable, in other words. There are better ways to get things done.

"Up until OSX they were a tinker toy OS that was largely disregarded, then they stepped up and put themselves on the same level with Microsoft and Unix,"

...it's a good thing you're here and you know better than all of them.

Where is the long-awaited catastrophic attack? You have some specific vulnerabilities in mind, and that's interesting, but your insistence that they make Apple's platform less secure than Microsoft's -- with a bazillion effective attacks in the wild turning freshly purchased machines into spambots within minutes -- seems pretty nakedly partisan. Why would Apple want to hire someone who has such a low opinion of their technology?

"Even worse they don't seem to recognize that ... arrogance makes enemies,"

Do _you_ recognize this?

QuantumG said...

It's not just Apple man. Any interview you will be asked a bunch of "expert" questions by someone who thinks he is an expert. You've gotta bullshit them. You've gotta argue your beliefs with them. If you get pissed off with them, obviously you're not getting the job. I know a dude at ISS that just says things that are flat out wrong in interviews to see if the applicant will pick up on it. If they haven't got the balls to say something or they can't keep a cool head, then he doesn't want to work with them.

Chris Wilson said...

While I am 'defender of the faith', I just wanted to point out a few fallacies:

1) Mono-culture: You're right that most mac users run a pretty traditional set up, and often many of us upgrade days after a Apple's new release, but I know plenty of people who's machine's configurations are very, very non-standard. Video Editing Professionals. Music Production Studios. Print Shops. All of them are going to end up running some specialized software like Final Cut Pro, Quark, or Pro Tools. This might also involve configuring things like font-caches, tuning swap, or other tiny 'hacks' to make the software run that much better. You never know when a poorly coded worm might stop due to a bug that can't handle a symlink made by the user to speed up the system. Or because the user runs FileVault or encrypted VM. Someone might catch the worm/virus's first attempt to infect another Mac with Little Snitch.

2) Aside from various linux distros, no mainstream OS ships hardened out of the box. There are offical NSA guides out there for Mac heads who need security. Just like there's hardening guides for Windows. No doubt people would start hardening their boxes the second a virus was known.

3) The "classic" OS was not a toy. And I can think of no better example than the fact that there was something like 50,000 virii out there for "classic" Mac OS. And this is back in the pre-internet days, where Virii had to make their rounds by floppy drive and AppleTalk networks.

Today there are more mac users out there than ever, with the user base growing larger by the minute. We are at the most connected point in the history of Mac, with most users online. They're either very lucky, or they're doing something right, like putting a firewalled router in front of their firewall.

Also, you forgot to pick up and mention that "InputManagers" can be installed by any program, and they can be used for "Haxies" that have systemwide impact. There would be no easier way to develop a keylogger trojan than with an InputManager, which is why Apple is banning them with leopard.

Also, what's stopping some unix-savy programming from writing an distributing a "Kill and delete the first OS X worm" script the second the process is identified and kill -9'd? To say that the OS X community user base would be helplessly dependent on Apple for a resolution is a bit of an exaggeration. And as arrogant as Apple may be, nobody loves forcing other people to eat crow (and worship them) than "computer security profressionals". I have no doubt that some of these "professionals" would no doubt help dissect any worm/virus and release a solution, if just because a safer, cleaner net is a good thing(tm) for all of us.

Justin Ryan said...

This is an interesting piece, but I've got to comment on a couple of things:

(a) GNU's Not UNIX. ;)

(b) GNU/Linux and other systems have just as much of a false sense of security. Sadly, we can't choose what software our banks run, and common worms often take entire banks or other large businesses down for a day or more.

(c) Apple's application development teams are just as prone as any other application group to misuse an API. If you're so great at finding bugs, I'd like to see how you are at creating features.

(d) Apple is using a commercial VoIP system which, in fact, may be set up as half-duplex. When someone tells you about the paramaters of communicating with them, they may not be "telling you how to communicate". I have this same problem myself insofar that hiring managers are sometimes annoyed at my various phone solutions.

(e) You really do come across as a bit of an arrogant asshole, and coming from me that's a strong statement you should consider over a couple of beers.

jorge castro said...

I'm just want to agreed with this blog. To work in security is the same to do the hard task, usually exist the good cop and the bad cop, security is always to do the role of bad cop, you are not finding friends but finding enemies, usually lazy programmers (and every programmer is lazy).

Paul R. Potts : in some cases you can find a tamed worker or you can required a untamed beast and it's true for a self-managed worker.

Anonymous said...

Have you heared about a game which you need use priston tale Gold to play, and you can also borrow priston tale Money from other players? But you can buy priston tale Gold, or you will lose the choice if you do not have cheap priston tale Gold. If you get it, you can continue this game.
Have you heared about 9Dragons which you need use 9Dragons gold to play, and you can also borrow 9 Dragons gold from other players? But you can buy 9 Dragons gold, or you will lose the choice if you do not have cheap 9Dragons gold. If you get 9Dragons money, you can continue this game.

Anonymous said...

Do you want to know the magic of online games, and here you can get more aoc gold. Do you want to have a try? Come on and conan gold can make you happy. You can change a lot age of conan gold for play games. And you will enjoy yourself at the same time. Playing online games can make much cheap aoc gold. Come and have a try. You will feel a different feeling. And you can aoc money do what you want to do in the online game.

Do you want to know the magic of online games, and here you can get more FFXI Gil. Do you want to have a try? Come on and FFXI gold can make you happy. You can change a lot Final Fantasy XI gold for play games. Playing online games can make much buy FFXI Gil. And you will be happy at the same time. And you can use the cheap Final Fantasy XI Gold do what you want to do in the online game.

Anonymous said...

Buy Rom Gold is the chance. I always have a bad dream when my account was theft, since I buy Rom Gold ; I had not had the bad memory. At present, I want to say thanks to the people who stole my account, if he did not to do that, I would not play game, I would not have Runes of Magic Gold . Although I have little Runes of Magic money , I will on the way of the game for long time. At one time or another, I am a pessimistic person, but when I have cheap Runes of Magic Gold , it changes my attitude of life.

Remembered the first time I played the game and bought wonderland Gold , it is about two years. Since the first day I bought wonderland online Gold , we should know that the day will come sooner or later. And I will not leave my wonderland money . My friends forever, even though I will leave you one day, I will remember you forever. At that time, I was a naive; I must used money to buy wonderland Gold , as that I would not depend on myself. But I was not regret to buy cheap wonderland online Gold . It is just a way bring me to the success.

Anonymous said...

Do you know tcos Gold? I like it.
My brother often go to the internet bar to buy chronicles of spellborn gol and play it.
After school, He likes playing games using these the chronicles of spellborn Gold with his friend.
I do not like to play it. Because I think that it not only costs much money but also spend much time. One day, he give me many tcos money and play the game with me.
I came to the bar following him and found chronicles of spellborn money was so cheap. After that, I also go to play game with him.
Do you know cabal online alz? I like it.
My brother often go to the internet bar to buy cabal alz and play it.
After school, He likes playing games using these cabal gold with his friend.
I do not like to play it. Because I think that it not only costs much money but also spend much time. One day, he give me many cabal money and play the game with me.
I came to the bar following him and found buy cabal alz was so cheap. After that, I also go to play game with him.

Anonymous said...

I am grateful to you for this great content.aöf thanks radyo dinle cool hikaye very nice ssk sorgulama only cinsellik very nice ehliyet only home free kadın last go korku jomax med olsaoy hikaye lesto go müzik dinle free only film izle love aşk only mp3 indir only radyolar lest go açıköğretim free net only filmler

Anonymous said...

christian louboutin
christian louboutin shoes
christian louboutin sale
discount christian louboutin
Christian Louboutin Boots
Christian Louboutin Pumps
Christian Louboutin Sandals
christian louboutin heels
Christian Louboutin Short Boots
Christian Louboutin Spring Collection
Christian Louboutin Tall Boots
discount Christian Louboutin Boots
discount Christian Louboutin Pumps
discount Christian Louboutin Sandals
discount christian louboutin heels
discount Christian Louboutin Short Boots
discount Christian Louboutin Tall Boots
http://www.christianlouboutinshoes88.com/

Anonymous said...

I am grateful to you for this great content

araç sorgulama
sorgulama
ehliyet
açıköğretim
bağkur sorgulama
ssk sorgulama
emekli sandığı
cinsellik
radyo dinle
korku
evlilik
hikaye
gazeteler
ilan

ai said...

discount chanel outlet
is one of the most famous and renowned fashion houses, offering its wide range of products, all over the world. Among all the fashion related accessories and items, cheap chanel outletare the most demanding and popular ones. chanel 2010
Women have always been in love with newest chanel
, as these are the most important accessories, which help in making a woman look stylish and impressive. With a stylish and matchingracoste polo with your outfit, you are all set to leave your home, whether you are going on work or are going to attend a formal or informal occasion; your discount ralph lauren outletwill help you in grabbing the attention of the people, towards you.

trustme said...

Helo, your blog is really good, I like it very much!By the way, if you like nike chaussures tn you

can come here to have a look!
nike tn
tn chaussures
nike tn requin chaussures
nike air max tn chaussures
nike homme chaussures
nike femme chaususres
nike enfant chaussres
MBT France
tn chaussures
nike air max
nike shox TL1
nike shox TL3
nike shox TL3
nike tn 8
nike dunk low femme
nike air max 92
nike shox r4 cartoon
nike tn 10
nike tn limpide
nike tn net
nike tn 8 homme
You also can choose the most fashionable sunglasses here, it really can make you different from other

people.
sunglasses
designer sunglasses
wholesale sunglasses
sunglasses discount in USA
men's sunglasses
women's sunglasses
burbbery sunglasses
bvlgari sunglasses
chanel sunglasses
coach sunglasses
dg sunglasses

Christian Hymon said...

hi,buddy.thanks for the post,a nice job and be keepin' eyes on it.

Air Max Chaussures

Air Max Chaussures

Air Max 1 Chaussures

Air Max light chaussures

Air Max 90 chaussures

Air 180 chaussures

Air classic BW chaussures

Air max 93 chaussures

Air max 95 chaussures

Air max 97 chaussures

Air max 360 chaussures

Air Max Schuhe

Air Max 2009 Schuhe

Air max ltd chaussures

Air max tn chaussures

aai333 said...

Nice article written by you
Nicediscount nike dunk
articlecheap nike shoes
writtennike dunk outlet
byChristian Louboutin shoes
youChloe outlet
cheap Chloe bags
discount Chloe bags
newest Chloe shoes
Chloe bags 2010
Chloe totes
bape shoes outlet
bape clothing
discount bape shoes
cheap bape shoes
bape jackets
wholesale ed hardy
ed hardy wholesale
discount ed hardy
MBT boots
MBT shoes in fashion
cheap mbt shoes sale
discount mbt outlet 2010
MBT Walking Shoes
Purple GHD
Moncler
Moncler jackets
Moncler coats
Moncler Vest
Moncler outlet
discount moncler Tshirt
air jordan 2010
cheap jordan shoes
discount jordan shoes
jump man 23
cheap ugg boots
discount ugg boots
ugg boots

janewangleilei said...

You can have a look at it.
jordan shoes
jordan ajf shoes
There are cheap shoes to choose
jordan 6
jordan 7
Good quality with low price.
air jordan 2010
Air Jordan 2009
If you like,you can contact us.
jordan 3
jordan 4
We offer different styles.
jordan 1
jordan 2
Thanks.
jordan 5
jumpman
I can't believe it.
nike outlet
You can have a look at it.
adidas outlet
puma outlet
north face
moncler
Wow
ak jackets
spyder jackets
Beautiful!
Columbia Sportswear
quiksilver jackets
Enjoy it.
burton jacket
powder room jackets
Thanks.
karbon jacket
goldwin jackets
I can't believe it.
eider jackets
You can have a look at it.
sportalm jackets
Wonderful!
west scout
stylish design
Ed Hardy Wholesale
fashion excellent quality
wholesale Ed Hardy
ED Hardy clothing bring you a super surprise!
ed hardy wholesale clothing
I can't believe it.
abercrombie outlet
You can have a look at it.
abercrombie fitch outlet
Wonderful!
coats & jackets

Unknown said...

NewStreetFashion
Ed Hardy
stylish design
Ed Hardy Wholesale
fashion excellent quality
wholesale Ed Hardy
ED Hardy clothing bring you a super surprise!
ed hardy wholesale clothing
The quality is so good
christian audigier

combattery84 said...

Dell Latitude D820 battery
Dell Latitude D610 Battery
Dell Latitude D620 battery
Dell Latitude D630 battery
Dell xps m1210 battery
Dell e1705 battery
Dell d830 battery
Dell inspiron 2200 battery
Dell inspiron 640m battery
Dell inspiron b120 battery
Dell xps m1210 battery
Dell inspiron xps m1710 battery
Dell inspiron 1100 battery

Dell 310-6321 battery
Dell 1691p battery
Dell Inspiron 500m battery
Dell 6Y270 battery
Dell inspiron 8600 battery
Latitude x300 series battery
Dell latitude cpi battery
Dell 1x793 battery
dell Inspiron 1501 battery
Dell 75UYF Battery
Dell Inspiron 1720 battery
dell Latitude C640 battery
Dell XPS M140 battery
Dell Inspiron E1405 battery
dell 700m battery
dell C1295 battery

combattery84 said...

Toshiba PA3084U-1BRS battery
Toshiba PA3098U battery
PA3107U-1BAS battery
PA3107U-1BRS battery
PA3166U-1BRS battery
PA3176U-1BAS battery
TOSHIBA PABAS076 Battery
Toshiba pa3399u-1brs battery
TOSHIBA PA3399U-2BAS Battery
TOSHIBA PA3421U-1BRS Battery
TOSHIBA PA3456U-1BRS Battery
TOSHIBA Pa3356u-1brs battery
Satellite a10 battery
Pa3331u-1brs battery
Satellite m30 series battery
Satellite pro m30 battery
TOSHIBA PA3399U-1BRS Battery
Portege m300 battery
TOSHIBA PA3285U-1BRS Battery
Canon BP-2L5 Battery
Canon BP-508 Battery
JVC BN-VF707U Battery
JVC BN-VF707 Battery
JVC BN-VF733 Battery
JVC BN-V408U Battery
BN-V408 Battery
CANON NB-2L Battery
CANON NB-2LH Battery
CANON BP-511A battery

combattery84 said...

SONY VGP-BPS5 battery
SONY VGP-BPL2C battery
SONY VGP-BPS2A battery
SONY VGP-BPS2B battery
SONY PCGA-BP1N battery
SONY PCGA-BP2E battery
SONY PCGA-BP2NX battery
SONY PCGA-BP2S battery
SONY PCGA-BP2SA battery
SONY PCGA-BP2T battery
SONY PCGA-BP2V battery
SONY PCGA-BP4V battery
SONY PCGA-BP71 battery
SONY PCGA-BP71A battery
SONY VGP-BPL1 battery
SONY VGP-BPL2 battery
Sony vgn-t2xp/s battery
Sony vaio vgn-s4xp battery
Sony vaio pcg-z1rsp battery
SONY NP-FT1 battery
SONY NP-FC10 Battery
SONY NP-F330 Battery
SONY NP-F550 Battery
SONY NP-FM50 Battery
SONY NP-FP50 Battery
SONY NP-55 Battery

combattery84 said...

IBM 92P1089 battery
IBM Thinkpad 390 Series battery
IBM Thinkpad 390X battery
IBM ThinkPad Z61m Battery
IBM 02K7018 Battery
IBM thinkpad t41p battery
IBM THINKPAD T42 Battery
IBM ThinkPad R60 Battery
IBM ThinkPad T60 Battery
IBM ThinkPad T41 Battery
IBM ThinkPad T43 Battery


IBM ThinkPad X40 Battery
Thinkpad x24 battery
ThinkPad G41 battery
IBM thinkpad r52 battery
Thinkpad x22 battery
IBM thinkpad t42 battery
IBM thinkpad r51 battery
Thinkpad r50 battery
IBM thinkpad r32 battery
Thinkpad x41 battery
SONY VGP-BPS2 Battery
SONY VGP-BPS2C Battery

yanjun said...

Ladies,Christian Louboutin Pumpswanna own a pair of sexy shoes as the celebrities?herve leger Guys, Monclerare you still drain your brains for what presents to choose for your girls?
christian louboutin heels
Here comes the best Christian Louboutin high heels with the most competitive prices.Christian Louboutin Sandals Christian Louboutin high heels are your best choicechristian louboutin black. A good amount of fashionable styles are here for you to choose from,Hermes Birkin come and find the on es thatbelongt oyou. Christian Louboutin Boots You will find it is absolutely worth purchasing! christian louboutin discount

arkuda2 said...

Choose our replica watches and save your money

Anonymous said...

Fashion is beautiful, it is popular, personality, is to lead the elements.
Believe that modern nobody Herve Leger Clothing will miss, so fashionable and not wrong, but we need to create a unique individual glamour, reflect their personality and body, and his unique style, in a herve leger sale word, we should fashion, but we should be more different, suit oneself style is the ultimate fashion and trend ~ ~

sara chen said...
This comment has been removed by the author.
sara chen said...
This comment has been removed by the author.
sara chen said...

Roberto Cavalli has been popular for their creative and luxurious designs that many fashion-conscious ladies truly admire. They have produced some of the most distinctive and luxurious designer shoes in the world and that includes their latest Roberto Cavalli Thigh High Calf Hair Boots.

This Thigh High Calf Hair Boots by Roberto Cavalli owns a one of a kind design that combines tiger and giraffe prints together. The front part of the shaft, including the vamp and toe cap, features the tiger print christian louboutin shoes while the back section displays the giraffe print. These animal prints are set on a calf hair material that constructs the boots. This simply pull-on Thigh High Calf…

sara chen said...

Sumptuous and luxurious, this black Moncler coat
with raccoon fur lined hood is the perfect choice for a stylish transition into the cooler months. complete the look with these mih jeans, crumpet jumper, marc jacobs bag and belstaff boots.

Opt for this practical blue Women jackets from Moncler grenoble for all your aw10 needs. with a buttoned funnel neck and thumbhole sleeves it?ll ensure you keep out the cold in style. work a chic day time look by wearing with a u t-shirt, helmut lang leggings, burberry brit boots and a balenciaga bag.

Long sleeved black padded jacket from Moncler men down 2010 Gamme Rouge with a funnel neck and a zip-through fastening. Please note that for this brand our size conversion chart does not apply. Moncler items are sized one size smaller than our chart displays.

Anonymous said...

Man, I support you ,Cheap moncler jackets

Anonymous said...

Man, I support you ,Cheap moncler jackets

arkuda2 said...

generic viagra advantages are a great safety track record and proven side effects

arkuda2 said...

A distinctive feature of phentermine is its accessibility and cheapness

arkuda2 said...

led flashlight are the way of the future

vanesaaqiqi said...

Good brief and this publish helped me alot. Say thank you I looking for your facts….and i recommand
Moncler
so wonderful!
Moncler Jackets
and evryone like

discount moncler

please go to
moncler outlet

sara chen said...

We all know by now how Christian Louboutin complicatedly created their masterpieces and they’ve shown it through some of their works that we have featured here. Amazingly, they are still able to think of new designs that gets better and better every time like the Christian louboutin
If this Christian Louboutin Bianca platform shoes is not a work of brilliance then I don’t know what it is. This intricately designed pump features a tan leather base upper overlaid with laser-cut black patent leather that creates the lace-effect detailing. The laser-cut overlay exhibits a unique pattern throughout the upper and gives this pair a one of a kind look. This same detailing is also adorned on the skyscraping 5 inch heel. Facade of this pump also has patent leather trims surrounding the cut out detail on the lace-up eyelets. Finishing this lovely pair are the black leather lining and nude leather sole. black louboutin shoes .

Anonymous said...

karen millen
karen millen dresses
karen millen outlet

alice said...

thanks you share! ugg outlet
ugg classic
ugg classic boots
ugg online
ugg boots
cheap ugg boots
discount ugg boots
australia ugg boots
wholesale ugg boots
sheepskin ugg boots
ugg boots 5815
ugg boots size 9
ugg snowboots
womens ugg boots
classic tall ugg boots
short ugg boots
new ugg boots
winter ugg boots
Is t fast enough? I`ve tried qemu 3 months ago with my 512MB ram pc but it was too slow to be used.

winnie said...

ipod to mac
ipod to mac transfer
best ipod to mac transfer
zune vs ipod touch
how to transfer songs from ipod to itunes
transferring music from ipod to computer
iPod to PC Transfer
jailbreak ipad

luck said...

"Nike air max 2011 Air yeezy, a name taken from Kanye West's nickname yeezy, Nike Air Max 1 implanted in Air Max Griffey 1 Nike's innovative elements, Nike Air Max 180 through stage testing and adjustment, Nike Air Max 2009 through integration into the past to challenge theNike Air Max 2010 traditional classical elements, Nike Air Max 24 7create a new see lots, and this can.Nike Air Max 87,Nike Air Max 90,Nike Air Max 2011,Nike Air Max Shoes.

sara chen said...

Available in black leather, grey leather and towering a 4 ½” height is this urban inspired sandal lifted with adjustable laces and brushed metal hardware front. The Christian Louboutin Pumps is built with an ultra-slim stacked heel supporting the full leather upper and sole. This stunning shoe is a perfect adornment to your glam rock fashion that you can parade in daytime to evening affairs. Let everyone’s eyes glued on you as you confidently display your funky, hip style. Christian Louboutin Studded Pumps

Movies Gallery 2011 said...

Thanks for the post. it was very interesting and useful. Keep posting.
Angry birds flash| MLB Standings| Clone Script|

Anonymous said...
This comment has been removed by the author.
sara chen said...

Christian Louboutin pumps
Christian Louboutin Cate boots: black leather, stacked heel measures approximately 25mm/ 1 inch, gunmetal chain detail at back, seam and panel detail, round toe, signature red leather sole. Pull on. Christian Louboutin Balota 150 Suede Black Sandals
Christian Louboutin Lady Peep Sling Black/Red Pumps
Christian Louboutin Daffodile 160mm Pumps
Christian Louboutin Une Plume Slingback
Christian Louboutin lady peep toe spikes 150 pumps

Anonymous said...

http://c64music.blogspot.com/2009/11/more-soundchip-hacking-realtime-sid.html
http://c86eric.blogspot.com/2006/02/just-like-honey.html
http://c9c3.blogspot.com/2007/04/apple-computers.html
http://cabayan.blogspot.com/2008/05/2nd-cab-kitakits.html
http://cactusquid.blogspot.com/2008/12/some-old-games-i-never-finished.html
http://cactusquid.blogspot.com/2009/02/ping-pong_27.html
http://cafecomsobremesas.blogspot.com/2008/03/brownie-cheesecake-de-morango.html
http://cafeunkown.blogspot.com/2006/10/wreck-of-marquam-grand-marquam.html
http://cajistas.blogspot.com/2009/07/gunshots-explosions-and-fear.html
http://cakeandpolka.blogspot.com/2005/02/ridiculous-trio-plays-stooges.html
http://cakewardrobe.blogspot.com/2008/10/lifetime-crush-on-pink.html
http://californiatraining.blogspot.com/2008/09/welcome-to-oc.html
http://calivewire.blogspot.com/2006/08/carnival-of-education-week-79-special.html
http://calliope-books.blogspot.com/2007/11/imaginary-places.html
http://callmeclassical.blogspot.com/2007/07/richard-wagner-1843.html
http://calquezine.blogspot.com/2009/01/conversation-with-dwayne-d-hayes-editor.html
http://cal-reservorio.blogspot.com/2007/07/la-mas-grandes.html
http://calscommissioncorner.blogspot.com/2008/06/surf-fink-possibly-one-of-whackiest-of.html
http://camelpoker.blogspot.com/2006/11/alternative-wikipedia-entry.html
http://cammytv.blogspot.com/2008/01/viagra.html
http://canadianbaker.blogspot.com/2008/03/dixie-bars.html
http://canarywoof.blogspot.com/2009/01/blog-post.html
http://canberrasgotstyle.blogspot.com/2010/10/frocktober-31-final-frock.html
http://cancertalk.blogspot.com/
http://candorville.blogspot.com/2006/06/will-ferrell-on-george-bush-on-global.html
http://canetehoy.blogspot.com/2006/10/haciendo-corto.html
http://cantontruth.blogspot.com/2008/02/billy-graham-is-33-degree-freemason.html
http://canyonofheroes.blogspot.com/2006/06/doldrums.html

Seduco said...

I am grateful to you for this great content.aöf thanks kullanıcı yorumları cool kadınlar portalı very nice ssk only cinsellik very nice pembe maske yorumları turhoq home free otomobil yorumları last go korku jomax med olsaoy kullanıcı yorumları lesto go mp3 indir free only film izle

greatisforyou said...

When looking to choose Kobe Dream Season 2 II a shoe there are things you need to know. What you need New Balance 1400 to know will depend on who is actuallyCheap Supra Cruizer Shoes looking for the shoes and who will be using them. There will beAdidas EQT Basketball Shoes different shoes for different age groups such asCheap Nike Lebron Shoes kids in middle school, people in high school, and a collegiate player. Recreational players also chooseLes Femmes de UGG Ashur a different one than the others.

sara chen said...

Christian Louboutin Bianca 140 platform pumps
Christian Louboutin Daffodile Aurora Boreale Pumps Hematite
Rocker-chic Christian Louboutin Lady Peep Spikes 150 Black Leather Pumps
Christian Louboutin LADY PEEP platform pumps
Christian Louboutin Bambou 140 Black Suede Platform Pumps
Christian Louboutin Figurina 140mm/ 5.5 inches embossed heel suede black suede pumps
Christian Louboutin Daffodil 160 chartreuse or blue suede platform pumps
Christian Louboutin Daffodil 160 calf hair platform pumps
Christian Louboutin Discuta 120 studded peep toe pump
Christian Louboutin Bianca 140 black patent leather pumps
Christian Louboutin Daffodile 160mm Black Leather Pumps
Christian Louboutin Madame Butterfly 150mm Three Bow-embellished Black Bootie Pumps
Christian Louboutin Bianca 140 black patent leather pumps
Christian Louboutin Bianca 140 black patent leather pumps

Promotional items said...

Los Angeles - "Emmy comprou o" cheap sex toys Mad Men ". 1960 é vendido, o lendário Madison Dildos Lesbian Avenue ganhou seu prêmio teatro quarto melhor consecutivos (domingo), e grandes boa brincadeira" The Jetsons alegação "é a sua Vibrating Dildos O troféu segundo melhor comédia.
"Os Jetsons" produtor , fotografias de famílias norte-americanas hoje, incluindo casais homossexuais e famílias de cores diferentes, no Sex Dolls toque de disparo em casal gay na vida real, eles querem agradecer a dizer.
"Blinders & Gags Eles disseram, 'Você não apenas fazer as pessoas rirem, é torná-las Breast Clamps mais tolerantes", "Levitan diz, o show recebeu um total de cinco prêmios.
Apesar de "Mad Men" ganhou o prêmio de drama mais, não pode puxar a estrela Jon Hamm, Elisabeth Moss, ou honra.

escort ankara said...

Nice information,Ankara escort
many thanks to the author.Ankara escort
It is incomprehensible to me nowAnkara escort
, but in general,Escort ankara bayan
the usefulness and significance is overwhelming.Ankara escort
Thanks again and good luck!
Ankara escort
became the first designer in Wimbledon's 133-year history to create official uniforms for the tournamentescort ankara
As part of this year's event, which starts next week.
will introduces the first ...Escort ankara
determinationEscort ankara
to maintain and enhance the values for which our two brands are famous throughout the world.Eskort ankara
The rugby ralph lauren brand brings to Wimbledon the look of timeless elegance,Escort ankara
drawing on our rich history and traditionsEscort ankara
expert and i like your blog and the information you have
mentioned in this post about the Google tools is really great!
Ankara Escort Bayan
Escort Bayan Ankara
escort bayan
escort
escort istanbul
Bayan Escort
escort bayan ankara
escort bayan ankara
escort ankara ilan
Escort ankara bayan
escort bayan ankara çankaya
Ankara escort bayan
Escort Bayan Ankara
Ankara Escort,
Ankara Eskort

Thanks for sharing. Very impressive

logo bench said...

Recently i ran into your website and so are already reading along. I think I’d leave my first comment. I don’t understand what to share with the exception that I’ve enjoyed reading. Nice blog. For certain i will keep visiting your blog really often.

Food Logo

Seduco said...

şikayetleri - eskişehir rehberi

Seduco said...

şikayetleri - eskişehir rehberi

Seduco said...

solante - solante

Knox Karter said...

Oh my goodness! Thank you so much! They are just beautiful! I will be trying this very soon.

Buy A Ready-Made Logo

justin albert said...

Great article, it was very helpful! I just started in this and I'm getting to know it better! Cheers, keep up the good work!

Facebook Game

rscredits said...

If a job is worth doing it is worth doing well.What runescape gold you share here just prove this saying, i like your thought here, rs gold which is special and informative.

This topic is pretty good and the writer's views are buy runescape gold unique and not so hard to understand.I like it very much, and by the cheap rs gold way I want to share some interesting and very useful websites to you:www.rsorder.com! Iam sure you can find out funny things there.

Alastair Alex said...
This comment has been removed by the author.
Unknown said...

What a great post! Just one suggestion:If you add some pics, it would be easiler to follow!
Polo tshirts

Richard Ressinger said...

Way to go bro! You showed those guys at apple, make them get down to earth, otherwise core positions will remain vacant for eons to come, even for allcheap osrs gold in the world they couldn't find someone for such a position.

Cadencealida said...

Buy POE Currency online
Quickly increase the combat effectiveness, allowing you to quickly establish an advantage in the game, this is a quality game that every player should experience.

Buy POE Orbs at poecurrency.com, you will be able to get a better gaming experience, which will be of great help to you.

Anonymous said...

Very Nice Information
Matilda Theatre Tickets
Matilda Tickets
wordpress development agency