Multi-platform malware loose on Windows, Mac, and Linux machines – gmanetwork.com
Computer users regardless of what operating system they are using were warned this week against a new multi-platform malware that uses social engineering to spread. Security vendor F-Secure said it came across the malware, which affects machines running ... Read the full story here. … Read entire article »
Filed under: Linux News, Security
Why Mosh is better than SSH?
Mosh is replacement of SSH for remote connections to Unix/Linux systems. It brings a few noticeable advantages over well known SSH connections. In brief, it’s faster and more responsive, especially on long delay and/or unreliable links. In this article you’ll see advantages of Mosh over plain SSH. Full Story: http://www.linuxscrew.com/2012/04/11/why-mosh-is-better-than-ssh/ … Read entire article »
Automatically Updating Banned IPs With hosts.deny (or iptables)
First let me start off by saying that this can be used for iptables with some minor tweaking, but I chose to implement this using tcp_wrappers instead (/etc/hosts.allow; hosts.deny). Main reason being is I wrote this for Rob to make his task of updating a list of banned IPs that much easier. Requirements Before getting started, there are some requirements. One of them being that this was written with Bash in mind, so if you use Zsh or some other shell, there's no guarantees it will work right out of the box. Secondly, cURL OR wget must be installed. Originally I wrote this with only cURL support, but also decided to work in wget since it was trivial. Notes … Read entire article »
Filed under: Linux News, Security
Context serves up new CANAPE security assessment tool at Black Hat Europe
March 16th 2012 – Context Information Security has been presenting its latest Windows security assessment tool at Black Hat Europe this week in Amsterdam. CANAPE extends the functionality of existing web application testing tools such as CAT, Burp or Fiddler in order to analyse complex network protocols. “Testing and exploiting binary network protocols can be both complex and time consuming,” says Michael Jordon, research and development manager at Context. “In most cases, custom software needs to be developed to proxy, parse and manipulate the traffic; but CANAPE provides a simple user interface that facilitates the capture and replaying of binary network traffic, whilst delivering a powerful framework to develop parsers and fuzzers.” Context has been showcasing CANAPE in the famous Black Hat Arsenal event that allows independent researchers and the open source … Read entire article »
Filed under: Security
What Zorp is good for?
A marketing specialist would claim that it is “good for everything”. Not being one of them, we would rather say that Zorp is not the philosopher’s stone, however, it can solve almost any issue that can be expected from a deep protocol analyzer proxy firewall. The most important cases are the following: Access control Access control is a basic functionality of proxy firewalls, but Zorp has an extra feature compared with other firewall suites. Access to the services can be controlled by the attributes of lower layers of the ISO/OSI model, like IP addresses or ports, but in case of Zorp there is a possibility to define sets of IP subnetworks, called zones. Zones are IP subnetwork groups that administratively belong together (for example all those who are permitted to access FTP servers for upload) and can be linked to a tree hierarchy. Access control … Read entire article »
Filed under: Linux News, Security
Set up passwordless SSH
Let’s say you have four servers: keyserver, server1, server2, server3. You want to put keyserver’s keys in server1, server2 and server3.. that way you can connect to keyserver from your workstation and then passwordlessly connect to any of your 3 other servers. … Read entire article »
Linux vendors rush to patch privilege escalation flaw after root exploits emerge
Linux vendors are rushing to patch a privilege escalation vulnerability in the Linux kernel that can be exploited by local attackers to gain root access on the system. The vulnerability, which is identified as CVE-2012-0056 ... Read the full story here. … Read entire article »
Filed under: Security
Locking down Linux.conf.au – ITnews
Conference organisers zero in on rogue wireless access points. Give five hundred very technically proficient Linux enthusiasts unfettered access to the same Wi-Fi network and you might be asking for trouble. Nearly every year, network administrators at ... Read the full story here. … Read entire article »
Filed under: Security
PHP 5.4 @ Debian
PHP 5.4.0 is around the corner, with RC6 released this weekend. With the courtesy of Ondřej Surý it’s already available in experimental.Read more here Read the full story here. … Read entire article »
Filed under: Security