Researchers to shed light on a new generation of attacks that exploit the relationship between browsers and their plug-ins -- or between any applications that share information -- and take over a victim's computer.
A little-known class of vulnerabilities can be used to hack the trust between browsers and their plug-ins, as well as other applications, according to new research on tap at Black Hat USA next week in Las Vegas.
A security researcher has released zero-day code for a flaw in the Linux kernel, saying that it bypasses security protections in the operating system.
The source code for the exploit was made available last week by researcher Brad Spengler on the Dailydave mailing list. According to the researcher, the code exploits a vulnerability in Linux version 2.6.30, and 2.6.18, and affects both 32-bit and 64-bit versions. The 2.6.18 kernel is used in Red Hat Enterprise Linux 5.
This article talks about a rescue Live Linux CDROM that boots into a Kaspersky antivirus scanner for infected Windows machines. Neat article.
Now this Live CD is absolutely cool, it's a customized build of Gentoo linux (w00t!) that automagically detected the hardware, connected to the network, started an X server, launched a customized icewm environment with Kaspersky's "K" logo as the "start" button down below. I was impressed, and through that GUI I could launch Kaspersky's AntiVirus tool.
The first thing it did was to auto-update itself over the internet. Most definitely needed. Afterwards it located and mounted all Windows NTFS partitions, and I was presented with options to scan them. I chose to scan the c: drive. Scan has begun, the scan tool sports a nice looking GUI, although it can be a bit confusing. Anyway scanning has started churning on the hard-disk. It was a bit slow, took around 3 hours for a 100G c: drive!
Source: EnGarde Secure Linux - Posted by Dave Wreski
Here is a brief abstract put together by Guardian Digital that shows security can be achieved with complete functionality, and what other platforms would look like after secure concepts are implemented.
Ubuntu Server has one of the cleanest and easiest Linux distribution installers. However, in many cases, its designers choose to ignore security in favor of ease-of-use. The result? An install that is not secure by default.
Nice article, but rest assured that it's very likely whichever distro you're using is insecure. The folks at linuxsecurity are actively involved in the development of EnGarde Secure Linux, if you were looking for a platform specifically designed to be secure.
There are quite a few anti-virus packages that work with Linux, such as ClamAV, AVG, Avast!, Panda, NOD32, Avira, F-Prot, Kaspersky, eScan and Sophos. I got these names from a quick Google search and it may not be an exhaustive list. Most of those packages are proprietary, some are free and open source. Many of them charge licence fees. However, this article is about ClamAV, so lets get on with it!
Have you ever thought about using an Anti-Virus software on your Linux machine? This article takes a look at one popular one called ClamAV. Do you use any others?
Here is my question: Are “cyEma7;IkmH!” or “hot1BA-Bitso69” secure passwords? Yes definitely, but who (the hell) can remember it! YOU WILL - after reading this article! Your passwords play a crucial role in protecting your computing accounts and the personal information that can be accessed through them.
One of the problems with passwords is that users forget them. For that reason people use simple password phrases like their dog’s name, their kid’s first name and birthdates, the name of the current month or everything in different combinations.
I feel that secure passwords are one of the most important security practice any computer user can do. What do you think? How secure and useful are your passwords?
Security is based on three characteristics: prevention, protection and detection. Grsecurity is a patch for Linux kernel that allows you to increase each of these points.
This howto was performed on a Debian Lenny system. Thus some tools are Debian specific. However, tasks can be performed with other distro specific tools or even with universal tools (make).
Have you ever thought about testing Grsecurity? It takes some work what this article will walk you through it.
sqlmap is an automatic SQL injection tool developed in Python. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user’s specific DBMS tables/columns, run his own SQL SELECT statement, read specific files on the file system and much more.
Have you ever used any security tools for detecting SQL injection attack. This article discusses some of the features of sqlmap.
This article will cover basic security in CentOS, from securing SSH to installing and configuring a basic firewall. Since your VPS is pretty bare when we activate it, it is important to implement security as soon as you can to avoid being compromised. You will learn how to restrict access to your VPS to a small number of selected individuals (or PCs) and design a very simple but effective firewall solution.
Is CentOS your Linux distribution of choice? This article is for you, it talks about ways to make you installation more secure.
