|
Source: ZDNet - Posted by Bill Keys
|
Rootkits that use virtualization techniques should not present detection problems, according to researchers from Carnegie Mellon and Stanford universities. Working with virtualization technology vendors VMware and XenSource, the researchers produced a study recently called "Compatibility is Not Transparency: VMM Detection Myths and Realities." (PDF)
What do you think does virtual rootkits pose a threat to VM security? The researchers are stating that they are detectable because even if the rootkit is virtual it still leaves a physical footprint. In other words, they consume some of the machine's resources.
Write Comment |
|
|
Source: searchsecurity - Posted by Bill Keys
|
VMWare Inc. is putting a lot of time and effort into assuring attendees at its VMWorld user conference here that security is near the top of the company's agenda. In light of the news in recent months about virtualized rootkits, there has been mounting concern among IT managers and security experts about the security of virtualized environments.
Virtization security has got a lot of attention as of late. Is the problem that vm servers share resources and can lead to memory leaks? Does hardware installs have the same problem? Write Comment |
|
|
Source: infoworld - Posted by Bill Keys
|
Longtime readers of my column know what a honeypot proponent I am. I run several around the world, collecting information on malware and malicious hackers, and I think every company should have one.
I find honeypots quit interesting because you can see what attackers are trying to do but, how useful are they? If system administrators implemented strong security measures then are honeypots useful to them? I feel honeypots should only be used for computer security researchers.
Write Comment |
|
|
Source: blogsecurity - Posted by Bill Keys
|
A few emails have come through about how user’s WordPress installations have been compromised, or where an attacker has found resources he/she shouldn’t have. This article will discuss some security techniques to better harden and secure your WordPress blog; this is especially effective in a hosted environment.
Learning to use the .htaccess file is important not only for web blogs but for any web application. Restricting access is the key here, what users can and can't do on a website. There are other ways to restrict access, do you know any?
Write Comment (1 Comments) |
|
Read more...
|
|
|
Source: Linux.com - Posted by Bill Keys
|
System administrators need to secure their systems while avoiding locking them down so strictly that they become useless. Bastille is a software tool that eases the process of hardening a Linux system, giving you the choice of what to lock down and what not to, depending on your security requirements.
I remember using Bastille a couple of times but after using it I changed many of the changes back to what it was before. Do you use Bastille every time you install a new OS? It sure does help with improving security but does it hurt usability to much for desktop user's to run?
Write Comment (4 Comments) |
|
Read more...
|
|
|
|
<< Start < Prev 1 2 3 Next > End >>
|
| Results 19 - 27 of 729 |