Print

Welcome to Smokey's Security Forums.

Guests have only limited access to the board and it's features, please consider registering to gain full access!

Registration is free and it only takes a few moments to complete.

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Chubb]

It's Time To Think Like A Hacker
11 May 2010, 11:05 am

LinuxSecurity.com: Security Consultant and Trainer Joe McCray has been hacking into the Department of Defense (DoD), Federal Agencies, Financial Institutions, and other big companies for years - legally of course. He's a Penetration Tester, a term used to describe a computer security consultant that hacks into companies in order to demonstrate security weaknesses.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

Battling the Cyber Warmongers
10 May 2010, 3:06 pm

LinuxSecurity.com: A recent simulation of a devastating cyberattack on America was crying for a Bruce Willis lead: A series of mysterious attacks-probably sanctioned by China but traced to servers in the Russian city of Irkutsk-crippled much of the national infrastructure, including air traffic, financial markets and even basic email. If this was not bad enough, an unrelated electricity outage took down whatever remained of the already unplugged East Coast.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

Large-scale attack on WordPress
10 May 2010, 3:02 pm

LinuxSecurity.com: According to various reports, in the past few days a number of websites created using WordPress have been hacked. While the attack initially appeared to be limited to web sites hosted by American ISP DreamHost, it has since become apparent that blogs hosted at GoDaddy, Bluehost and Media Temple have also been affected.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

Botnets exploit Linux owners' ignorance
10 May 2010, 3:00 pm

LinuxSecurity.com: A lack of knowledge and awareness about how to use Linux mail servers could be contributing to the disproportionately large number of Linux machines being exploited to send spam, according to new Symantec Hosted Services research.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

Bruce Schneier: that's not what I meant!
10 May 2010, 2:59 pm

LinuxSecurity.com: In a soberly worded response to Friday's edition of The Long View, Bruce Schneier clarifies that he didn't expect anyone to think he believes that 9/11 made us safer.  I'm indebted to Bruce for clearing that up.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

Symantec study misses the point over Linux spam
10 May 2010, 2:56 pm

LinuxSecurity.com: The latest MessageLabs Intelligence Report from Symantec Hosted Services is filled with interesting and useful information regarding the current state of malware and e-mail borne threats as well as the trends over time. Of particular interest to me is the assertion in the report that "any given Linux machine is five times more likely to be sending spam than any given Windows machine."

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[Chubb]

DNSSEC on all root servers - updated
10 May 2010, 2:55 pm

LinuxSecurity.com: On Wednesday (5th May) the last of the 13 authoritative root servers for the domain name system  switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

Symantec Study Mischaracterizes Linux Spam
7 May 2010, 9:04 pm

LinuxSecurity.com: The latest MessageLabs Intelligence Report from Symantec Hosted Services is filled with interesting and useful information regarding the current state of malware and e-mail borne threats as well as the trends over time. Of particular interest to me is the assertion in the report that "any given Linux machine is five times more likely to be sending spam than any given Windows machine."

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

FedRAMP Seeks to Unify Cloud Computing Security Standards Across the U.S. Government
7 May 2010, 12:37 pm

LinuxSecurity.com: Yesterday, I hosted a panel at the Cloud Computing summit focused on cloud security for the federal government. The panel was made up of some smart folks: Alex Hart from VMware, Bob Wambach from EMC and one of the primary authors of the Cloud Security Alliance guidelines, Chris Hoff from Cisco.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

IPv6 tunnel basics
7 May 2010, 12:34 pm

LinuxSecurity.com: More Internet traffic is expected to be carried via tunnels as the Internet infrastructure migrates from IPv4, the current version of the Internet protocol, to the long-anticipated upgrade known as IPv6.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

Spammers ordered to pay tiny ISP whopping $2.6m
7 May 2010, 12:33 pm

LinuxSecurity.com: A small internet service provider has been awarded nearly $2.6m in a lawsuit it filed against a company that sent just under 25,000 spam messages over an 18-month period.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

The HacKid Conference: An idea whose time has come
7 May 2010, 12:31 pm

LinuxSecurity.com:   I go to a lot of security conferences, almost always without my family in tow. The logistics and money involved with trekking them from one part of the country to the next is usually beyond my resources. But when a conference is local and there's something in it for the kids, I'm in 100 percent.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

The DDoS attack survival guide
7 May 2010, 12:30 pm

LinuxSecurity.com: Government websites. Fortune-500 companies. All are victims of crippling distributed denial-of-service (DDoS) attacks. The attacks have grown in reach and intensity thanks to botnets and a bounty of application flaws. This collection of articles will bring you up to speed on how the threat has evolved and what you can do to better protect your organization.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

Jarlsberg - Learn Web Application Exploits and Defenses
7 May 2010, 12:28 pm

LinuxSecurity.com: This codelab is built around Jarlsberg /yrlz'bərg/, a small, cheesy web application that allows its users to publish snippets of text and store assorted files. "Unfortunately," Jarlsberg has multiple security bugs ranging from cross-site scripting and cross-site request forgery, to information disclosure, denial of service, and remote code execution. The goal of this codelab is to guide you through discovering some of these bugs and learning ways to fix them both in Jarlsberg and in general.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<

[MaB69]

Coder Journeys From Wall Street to Prison
7 May 2010, 12:27 pm

LinuxSecurity.com: Over a month has elapsed since the years-long investigation and prosecution of TJX hacker Albert Gonzalez came to a dramatic end, with Gonzalez sentenced to 20 years in prison for the largest identity theft case in U.S. history.

Source: LinuxSecurity.com - Latest News

>> To obtain the full Linux Security article, click the link in the first post line <<