Source: Tao Security - Posted by Eckie Silapaswang
Nearly three years after the initial post describing the idea , I am happy to report that OpenPacket.org 1.0 is ready for public use, free of charge.
The mission of OpenPacket.org is to provide quality network traffic traces to researchers, analysts, and other members of the digital security community. One of the most difficult problems facing researchers, analysts, and others is understanding traffic carried by networks. At present there is no central repository of traces from which a student of network traffic could draw samples. OpenPacket.org will provide one possible solution to this problem.
For all the Snort, Wireshark, and TcpDump enthusiasts out there, OpenPacket.org provides fresh packets for research and analyzing purposes. Looking for a particular traffic pattern? Check out OpenPacket.org!
Malicious SSH login attempts have been appearing in some administrators' logs for several years. This article revisits the use of honeypots to analyze malicious SSH login attempts and see what can be learned about this activity. The article then offers recommendations on how to secure one's system against these attacks.
We have all see in your log files attempts on trying to login in to our Linux machines through ssh. If you are interesting in learning more about what they are doing then trying to login in to your machine, setting up a honeypot is a great way to learn. This article explains everything you need to know about honeypots.
Source: SearchEnterpriseLinux.com - Posted by Eckie Silapaswang
Now that IM servers are ready for the enterprise data center, isn't it time to learn how to install, configure and manage one? This walkthrough will show how to install the Open Source version of Openfire Chat Server 3.4.4 on Ubuntu Linux 7.10 Gusty Gibbon amd64, and guide readers along the steps necessary to initially configure Openfire. The article will also show IT administrators how to successfully connect a chat client to their new enterprise Openfire chat server.
Read on for a HowTo on setting up a secure instant messaging server that utilizes TLS for encryption methods and user authentication based off of LDAP. How does this implementation match up to the security settings required for your company?
Malicious SSH login attempts have been appearing in some administrators' logs for several years. This article revisits the use of honeypots to analyze malicious SSH login attempts and see what can be learned about this activity. The article then offers recommendations on how to secure one's system against these attacks.
Honeypots are an interesting way to learn about the threat from the outside world to your network. Do you think they are very useful for a Linux system administrator.
Nipper performs security audits of network device configuration files. The report produced by Nipper includes; detailed security-related issues with recommendations, a configuration report and various appendices. Nipper has a large number of configuration options which are described on this page.
Have you heard about the networking security tool called Nipper? If not test it out, there are links to where you can download it and learn more about all the configuration options it has.
Mozilla, the company behind the open-source browser Firefox, announced previously that the next version of it browser, Firefox 3, will include a host of security features, among them protection against malicious downloads from Web sites. Dubbed malware protection, the feature will use a hash of the Web site's address, or URL, to compare against a list of sites known to host malicious downloads.
I am glad to see web browsers are starting to take Internet security seriously. Do you think they are on the right direct as far as helping Internet security?
Source: www.linuxquestions.org - Posted by Ryan Berens
The votes are in, and for 2007, Nmap has been voted by the community over at Linuxquestions.org as the most popular Network Security Application. To some, it may have seemed that Nmap had this award locked up, but this was not the case. Coming in at a hair under 25% of the total vote, it beat out its nearest competitor Wireshark by only 4%, hardly a resounding victory.
What it means is that open source network security applications are getting to a very mature state where the competition is healthy and competitive; it's great to see. In all, there were a total of 12 entrants in to the category including Snort, ClamAV, Nessus and Firestarter among others in this wide-ranging category.
As a side note, many suggestions mentioned the need to create a Firewall Distro Poll, as opposed to just an application poll. Do you think there should be a separate poll? Would your list have included other network security applications?
Well seen as though we were talking about breaking passwords, here’s a tool for Firefox to help you manage your more secure passwords.Better security without bursting your brain
Password Hasher is a Firefox security extension for generating site-specific strong passwords from one (or a few) master key(s).
I am glad to see Firefox extensions for helping network security. Do you have any favorites?
Published reports of an information leakage vulnerability affecting fully patched versions of the open-source Firefox browser have been greatly exaggerated, according to Mozilla chief evangelist Mike Shaver.
Shaver's sharp retort follows the release of an advisory by hacker Ronald van den Heetkamp claiming that the most recent Firefox 2.0.0.12 is susceptible to a bug that allows hackers to view sensitive information on a target machine.
Who needs network security? Why don't we just build encryption and antimalware protection into end-points and simply enjoy open networks? From a security perspective that's always best and it's in line with the Jericho Forum vision. But in the real world it's not so simple. At the very least we need protective measures in networks to guarantee availability and performance. Beyond that there is huge potential to deliver value through security features in networks.
I found this article to be a interesting read. The author points out many different parts of network security. What do you think about the future of network security?
