Print

Welcome to Smokey's Security Forums.

Guests have only limited access to the board and it's features, please consider registering to gain full access!

Registration is free and it only takes a few moments to complete.

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Tinker]

Use Wireshark to track your network behavior
11 August 2009, 11:17 am

LinuxSecurity.com: Any time I need network analysis I turn to Wireshark. Wireshark is, in my opinion, the defacto standard for network protocol analyzers . Not only is it incredibly powerful, useful, and user-friendly it is also FREE! But what exactly is Wireshark? Simple: Wireshark is a network protocol analyzer that watches and logs all incoming and outgoing traffic as defined by your needs. This tool can not only read traffic live, it can read traffic from a previous dump. And it can read files from other applications such as tcpdump and Microsoft Network Analyzer.

Source: LinuxSecurity.com - Latest News

[Tinker]

Vulnerability affects all major browsers
10 August 2009, 1:28 pm

LinuxSecurity.com: First reports of a vulnerability apparently discovered by Microsoft at the start of this year, appeared in mid June. The vulnerability could reportedly be used to carry out man-in-the-middle attacks on HTTPS connections. Mozilla classed the risk as high and released corresponding patches for its browser. It has now become clear that the vulnerability affects many other browsers.

Source: LinuxSecurity.com - Latest News

[Tinker]

Holes closed in Subversion version control system
10 August 2009, 1:27 pm

LinuxSecurity.com: New versions of the Subversion version management system fix vulnerabilities in the client and server which could allow an attacker to gain control of a system. The cause of the problems are multiple heap overflows in the libsvn_delta library, which may occur when the library is parsing difference data streams (binary deltas).

Source: LinuxSecurity.com - Latest News

[Tinker]

Secure Passwords Keep You Safer
10 August 2009, 1:26 pm

LinuxSecurity.com: Classic article on choosing a secure password from Bruce Schneier on Wired. It's great reading, even for those of us who have been around a while.Ever since I wrote about the 34,000 MySpace passwords I analyzed, people have been asking how to choose secure passwords.

Source: LinuxSecurity.com - Latest News

[rv56]

Database Administrators Playing Increasingly Crucial Role In Security
7 August 2009, 3:20 pm

LinuxSecurity.com: In the past, database administrators weren't expected to do much with security. Their focus was on the speed, performance, and accuracy of the data. Security was a relatively low priority. Recently, however, that prioritization has begun to shift.

Source: LinuxSecurity.com - Latest News

[rv56]

Taking FOSS Security Seriously
7 August 2009, 2:44 pm

LinuxSecurity.com: Developers of open source software projects should be just as concerned about security as anyone developing a proprietary app. However, the nature of the two development processes can be very different at times, and debate still rages about which is inherently more secure -- a secret code kept by a company, or a public one that all eyes can see. Just as important is how each community reacts once a problem is spotted.

Source: LinuxSecurity.com - Latest News

[rv56]

Twitter DOS Attack Targeted Georgian Blogger
7 August 2009, 2:37 pm

LinuxSecurity.com: Great coverage on the Twitter/FB DDoS on CIO. CNET also has several articlesThe denial of service (DOS) attacks which knocked Twitter offline and slowed down Facebook response times yesterday may have been designed to target just one individual.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Black Hat Wi-Fi network hit by 154 DoS attacks
6 August 2009, 2:45 pm

LinuxSecurity.com: The Wi-Fi network at last week's Black Hat conference in Las Vegas was pummeled by multiple types of attacks -- but the network held (at least that was my experience).

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Facebook, Twitter, Others Down in Possible DDoS?
6 August 2009, 12:56 pm

LinuxSecurity.com: Twitter & Facebook, among others, appear to all be down or having access problems. It doesn't appear to be an infrastructure problem, but something more widespread, such as an ISP problem or distributed denial of attack.Twitter was inaccessible for at least a half hour on Thursday morning, followed by a period of slowness and sporadic timeouts (and more outright downtime). It's not clear what has caused this. My theory is that it was the millions of people tweeting complaints about why it can't be Friday yet.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Irresponsibility Runs Amok at Black Hat, Defcon
5 August 2009, 10:23 pm

LinuxSecurity.com: The annual summer bug parades at Black Hat and Defcon always leave me questioning motives. This year, as in the past, we witnessed a deluge of vulnerability disclosures, and many of them seemed to me to be beyond irresponsible. They were attempts at naked glory mongering, and that just plain stinks.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Researchers: XML Security Flaws are Pervasive
5 August 2009, 10:21 pm

LinuxSecurity.com: Security researchers today unveiled details about a little-known but ubiquitous class of vulnerabilities that may reside in a range of Internet components, from Web applications to mobile and cloud computing platforms to documents, images and instant messaging products.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Hacker charged with domain name theft charged
5 August 2009, 1:18 pm

LinuxSecurity.com: A New Jersey hacker has been arrested after he broke into a site owner's account, transferred the domain name ownership to himself, and then sold it to an NBA player.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Hanging with hackers can make you paranoid
5 August 2009, 1:17 pm

LinuxSecurity.com:  When I first went to Defcon in 1995, the halls were mobbed with teenagers and attendees seemed more concerned with freeing Kevin Mitnick and seeing strippers than hacking each others' computers.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Hacking the Defcon badges
5 August 2009, 1:16 pm

LinuxSecurity.com: Most badges from conferences and trade shows end up in the trash. Not so the badges from the Defcon security show, which are stylized, mysterious, and highly customized electronics equipment designed to be hacked.

Source: LinuxSecurity.com - Latest News

[Quizmaster]

Pirate Bay Co-Founder Steps Down as Spokesman
4 August 2009, 2:23 pm

LinuxSecurity.com: Peter Sunde, a co-founder of the Pirate Bay, said Monday that he's resigning as the file-sharing service's spokesman.

Source: LinuxSecurity.com - Latest News