We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Update: For millions of websites that were vulnerable care of ISS, Apache is not too happy. ISS (Internet Security Systems) released an insufficient patch along with their advisory to the Apache Web . . .
Watching pf logs can be exciting for the first few hours, but it soon becomes a boring activity best left to the machines. But first we need to know how OpenBSD manages pf logs. The pf packet logging mechanism uses the standard system logger daemon syslogd to store packet information in /var/log/pflog.. . .
VPNs often are heralded as one of the most cutting-edge, cost-saving solutions to various applications, and they are widely deployed in the areas of security, infrastructure expansion and inter-networking. A VPN adds more dimension to networking and infrastructure because it enables . . .
"This version of Apache is principally a security and bug fix release. A summary of the bug fixes is given at the end of this document. Of particular note is that 1.3.26 addresses and fixes the issues noted in CAN-2002-0392 (mitre.org) [CERT VU#944335] regarding a vulnerability in the handling of chunked transfer encoding.. . .
The creators of Apache Web Server software said today that all Apache users are potentially affected by security vulnerabilities that were announced yesterday, even as a controversy continues about how the flaws were initially made public.. . .
Two security alerts about new vulnerabilities affecting the popular open-source Apache Web Server have been posted by two groups today. The nonprofit Apache HTTP Server Project group has issued a bulletin about a vulnerability that can allow distributed denial-of-service attacks in . . .
While testing for Oracle vulnerabilities, Mark Litchfield discovered a denial of service attack for Apache on Windows. Investigation by the Apache Software Foundation showed that this issue has a wider scope, which on some platforms results in a denial of service vulnerability, while on some other platforms presents a potential a remote exploit vulnerability.. . .
Security is one of the highest profile issues in IT and there has been constant baiting between the Microsoft and Linux camps over who has the more secure operating system. At the start of the year we saw Bill Gates wake up to the fact that security is a good thing and now there is news that the US National Security Agency has been working on a security module that plugs straight into a Linux distribution.. . .
The problem is that filters do not always prevent mail from bad sources, and the whole "opt-in" farce has resulted in spammers sending whatever messages they want. Yahoo, MSN and many other free (and even paid) e-mail services seem to be repositories for spammers. Even when customers pony up dollars for better accounts, the results are often the same.. . .
"So, there's probably a whole bunch of people out there who're interested in the form new security infrastructure will take. So, what's the solution? Converting security.debian.org to be run by katie [and] Modifiying the central wanna-build infrastructure to do "Accepted-Autobuilding". Read more below.. . .
Peter Sergeant sent in a link on some Linux security basics. "If you count Trojan horses and rootkits, Linux (as a Unix derivative) crossed this line a long time ago. So it is high time that we designed and implemented some anti-virus schemes for Linux hosts. While there are hundreds of papers describing the process of securing or strengthening Linux (and, yes, this is another indication that Linux is popular), very few of them consider security from the perspective of an institution's anti-virus policy. The aim of this article is to shed some light on this subject.. . .
Super-secure additions to the Linux operating system are inching closer to the mainstream. Developers have turned Security-Enhanced Linux (SELinux), a prototype created in part by the National Security Agency, into a module that operates almost seamlessly on the Linux operating system.. . .
What you are about to read is a solution to spam that requires no reengineering of e-mail, the Web or any other systems. It could be set up to guarantee spam blocking using simple, existing technologies. I've dealt with corporate . . .
Like lots of network administrators, Gerald Posey would love to install commercial firewalls, IDSes and vulnerability assessment tools on his system. But he can't. His law enforcement agency in Louisiana lacks the money and manpower to guard an entire network, so instead he looks for less expensive options--free ones, actually. "We're looking for tools that are 'reasonably priced,'" jokes Posey, a data processing operations manager.. . .
Wouldn't it be great to have the ability to stop email-borne virus traffic, arguably the most ubiquitous kind, at the server level where you control the action? If this idea appeals to you, read on.. . .
Guardian Digital's Engarde Secure Linux Professional offers a lightweight, robust, and secure Linux Distribution for small and large networks. This distribution is really great for small to large business. Ease of administration and added security means less man hours. The . . .
Welcome to the home page of the Procmail Email Sanitizer. The Sanitizer is a tool for preventing attacks on your computer's security via email messages. It has proven to be very effective against the latest crop of Microsoft email worms that have gotten so much attention in the popular press.. . .
A flaw in BIND, a widely used software for locating Internet servers, could allow hackers to take companies' Web sites offline. Researchers have discovered a flaw in widely used software for locating Internet servers, which could allow the software to . . .
Security organizations have issued an alert about a BIND vulnerability which could see companies face denial-of-service attacks. The vulnerability is found in version 9 of the Internet Software Consortium's BIND (Berkeley Internet Name Domain) server. If it's exploited by an . . .
PAM stands for Pluggable Authentication Modules and is a system for providing application independence for authentication. A PAM-enabled application calls a stack of PAM modules to run authentication, open and close sessions, and check account validity.. . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
