Wednesday, October 1st, 2008 Researchers at Finnish security firm Outpost 24 claim to have discovered a flaw in the Internet Protocol that can disrupt any computer or server.After keeping the flaw quiet for years, the researchers hope that going public will help accelerate the creation of a solution.The flaw allows attackers to cripple computers ...
Posted in Internet, Linux, Networking, Security, Windows | No Comments
Tuesday, August 12th, 2008 Google has released Keyczar, billed as a "Toolkit for safe and simple cryptography", under an Apache 2.0 open source licence. Keyczar has been developed by members of the Google security team and aims to make cryptography more accessible to application developers.Keyczar's design goals were to manage the complexity of cryptography ...
Posted in General BS, Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
Monday, August 11th, 2008 Say hello to a new security tool called “Surf Jack” which demonstrates a security flaw found in many public sites. The proof of concept tool allows testers to steal session cookies on HTTP and HTTPS sites that do not set the Cookie secure flag. I’ve been working with two banks ...
Posted in Internet, Linux, Networking, Privacy, Security, Windows | No Comments
Sunday, August 10th, 2008 The big security news of Summer 2008 has been Dan Kaminsky's discovery of a serious vulnerability in DNS. This vulnerability could allow an attacker to redirect network clients to alternate servers of his own choosing, presumably for ill ends.This all led to a mad dash to patch DNS servers worldwide, ...
Posted in Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
Thursday, August 7th, 2008 A recently found flaw in the internet's addressing system is worse than first feared, so Dan Kaminsky said when speaking publicly about his discovery at the Black Hat conference in Las Vegas.He said fixes for the flaw in the net's Domain Name System (DNS) had focused on web browsers but ...
Posted in Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
