Security

ID theft, vulnerabilities, privacy issues, etc

Alleged critical holes in Xvid

Filed under
Security

heise-security: According to reports from several security services, the Xvid 1.1.2 Video Codec Library has a security hole which attackers could use to gain control over a PC. Both Windows and Linux applications are affected.

Detect insider threats with Linux auditing

Filed under
Security

linux.com: Organizations of all sizes need to mitigate the risk of insider threats. Misconduct by authorized users represents a grave threat to an organization. You can secure your network perimeter with intrusion detection systems, firewalls, and virus scanners, but don't neglect to monitor authorized users. The Linux Audit daemon can help you detect violations of your security policies.

Open source: New target of malware?

Filed under
Security

ZDNet: The recent OpenOffice worm may be a sign that malware writers are starting to target the increasingly popular open-source software, industry experts say.

Linux configure point to point tunneling PPTP VPN client for Microsoft PPTP vpn server

Filed under
Linux
Hardware
Software
Security
BSD
Ubuntu
HowTos

With this tip you will be able to work from home using VPN and that too from Linux / FreeBSD system for the proprietary Microsoft Point-to-Point vpn server.

Introducing Remo - An Easy Way to Secure an Insecure Online Application with ModSecurity

Filed under
Linux
Security
HowTos

Say you have a nasty application on your Apache webserver that has been installed by some people from the marketing department and you can neither remove nor patch it. Maybe it is a time problem, a lack of know-how, a lack of source-code, or possibly even political reasons. Consequently you need to protect it without touching it. There is ModSecurity, but they say this is only for experts. A straightforward alternative is Remo, a graphical rule editor for ModSecurity that comes with a whitelist approach.

OpenOffice worm hits Mac, Linux and Windows

Filed under
Security
OOo

builderau: Malware targeting OpenOffice documents is spreading through multiple operating systems including Mac OS, Windows and Linux, according to Symantec.

Windows vs Linux security report card redux

Filed under
Security

zdnet blogs: Jeff Jones has expanded his project to count security flaws (publicly reported and fixed) in the major workstation operating systems and his latest numbers show Windows Vista has by far the best security profile when compared to the major Linux distributions.

How To Block Spam Before It Enters The Server (Postfix)

Filed under
Linux
Security
HowTos

The last few weeks have seen a dramatic increase in spam (once again). Estimates say that spam makes now up for 80 - 90% of all emails, and many mail servers have difficulties in managing the additional load caused by the latest spam, and spam filters such as SpamAssassin do not recognize large parts of that spam as they did before. Fortunately, we can block a big amount of that spam at the MTA level.

A New Vector For Hackers -- Firefox Add-Ons

Filed under
Security

Washington Post: Makers of some of the most popular extensions, or "add-ons," for Mozilla's Firefox Web browser may have inadvertently introduced security holes that criminals could use to steal sensitive data from millions of users.

Owning computers via spelling mistakes

Filed under
Security

infoworld: Symantec researchers have detailed a painfully simple attack method that hackers may already be using to bypass security protections and break into UNIX and Linux-based computers.

OpenOffice worm downloads bunny porn

Filed under
Security

iTNews: A newly-discovered worm targeting OpenOffice attempts to download indecent JPEG images onto compromised Windows, Mac and Linux PCs.

Secure Websites Using SSL And Certificates

Filed under
Security
HowTos

This article will guide you through the entire process of setting up a secure website using SSL and digital certificates. This guide assumes that you already have a fully functional (and configured) server running Apache, BIND, and OpenSSL.

How Safe are Passwords in Internet Explorer, Firefox, and Opera?

Filed under
Security

CybernetNews: I’m sure many of you look kindly upon the fact that your web browser stores your passwords for you. It is no doubt a wonderful time-saving feature, and surely beats having to retype your password every time that it needs to be entered. Have you ever stopped to ask yourself how safe your passwords really are in your browser?

How secure are Linux, Window and Mac OS?

Filed under
Security

Masuran.org: How secure is your favorite operating system? In a time where OS fanatics battle each other on what OS is the best, security is often one of the turning points of discussion. In this article I will be comparing the vulnerabilities listed on Secunia and assessing how serious they are.

Also: What about Linux spyware?

Howto Setup a Lighttpd Chroot Jail Web Server under Debian Linux

Filed under
Linux
Software
Security
Web
Ubuntu
HowTos

Security, speed, compliance, and flexibility--all of these describe LightTPD which is rapidly redefining efficiency of a webserver; as it is designed and optimized for high performance environments.

The potential danger of .desktop files and more

Filed under
Security

In many X11 desktop environments, links to applications are usually represented by files which have the desktop extension in their names. These files, internally, have a format similar to INI files and specify information such as the command to execute and the icon used when representing it.

Mac and Linux attacks set to rise

Filed under
Security

Speaking to consumer PC mag PC Pro, security guru Eugene Kaspersky said that the lukewarm reception of Vista will result in defections to Mac OS and Linux, thus making them more attractive targets for malware writers.

New MacOS and Linux virus found in the wild

Filed under
Security

I have just come across some news while reading my daily news fix of a new virus that has been released into the wild that effect the Mac and Linux operating systems This virus is apparently very virulent and quite destructive. It gains entry through a previously unknown kernel flaw that is inherent in all unix type kernels. So far there is no patch available.

Linux Kernel "tcp_v6_syn_recv_soc()" IPv6 Sockets Local DoS Vulnerability

Filed under
Security

A vulnerability has been identified in Linux Kernel, which could be exploited by local attackers to cause a denial of service.

Debian, Red Hat patch numerous OpenOffice flaws

Filed under
Security

Debian released a patch to fix multiple vulnerabilities in OpenOffice that open up the users' systems to compromise, Secunia reported on Wednesday.

One vulnerability was originally discovered by an anonymous researcher and reported to VeriSign’s iDefense Labs.

iDefense reported that research by Sean Larsson found additional flaws.

Syndicate content