|
Source: infoworld - Posted by Bill Keys
|
Longtime readers of my column know what a honeypot proponent I am. I run several around the world, collecting information on malware and malicious hackers, and I think every company should have one.
I find honeypots quit interesting because you can see what attackers are trying to do but, how useful are they? If system administrators implemented strong security measures then are honeypots useful to them? I feel honeypots should only be used for computer security researchers.
Write Comment |
|
|
Source: blogsecurity - Posted by Bill Keys
|
|
A few emails have come through about how user’s WordPress installations have been compromised, or where an attacker has found resources he/she shouldn’t have. This article will discuss some security techniques to better harden and secure your WordPress blog; this is especially effective in a hosted environment.
Learning to use the .htaccess file is important not only for web blogs but for any web application. Restricting access is the key here, what users can and can't do on a website. There are other ways to restrict access, do you know any?
Write Comment (1 Comments) |
|
Read more...
|
|
|
Source: Linux.com - Posted by Bill Keys
|
|
System administrators need to secure their systems while avoiding locking them down so strictly that they become useless. Bastille is a software tool that eases the process of hardening a Linux system, giving you the choice of what to lock down and what not to, depending on your security requirements.
I remember using Bastille a couple of times but after using it I changed many of the changes back to what it was before. Do you use Bastille every time you install a new OS? It sure does help with improving security but does it hurt usability to much for desktop user's to run?
Write Comment (4 Comments) |
|
Read more...
|
|
|
Source: ITWire - Posted by Bill Keys
|
|
How can you be sure your network is secure? Before you can patch vulnerabilities you need to discover them. You need to think like a cracker might. You need to hack your own system. This is known as “penetration testing” – a more palatable term to corporations – and the rich tool set of Linux makes it a superb platform for doing this.
Nmap is a simple tool for penetration testing but it does a great job of letting you know what the attackers are seeing. I find my self finding opening in my network that I have never seen before while using this tool. Do you think Nmap can be our only penetration testing tool or should users use other as well?
Write Comment (2 Comments) |
|
Read more...
|
|
|
Source: InfoWorld - Posted by Bill Keys
|
|
On July 26, McAfee will begin offering a new application called Rootkit Detective, designed to detect and remove dangerous rootkit attacks. The software will also help end-users ward off the threats, as well as funnel new intelligence into the company's ongoing research operations. Have you test drove McAfee's Rootkit Detective software? The feature that made me think about trying it out is McAfree says that it has the ability to detect self-cloaking malware attacks that install themselves as kernel modules or drivers. Since any attack that installs them self's in the kernel are very hard for software to detect, I am in interested in how effective they are in finding them. Also, how does this software rank up against other rootkit finders for example, chkrootkit?
Write Comment |
|
Read more...
|
|
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 28 - 36 of 736 |
