February 16, 2007 – 9:50 pm
My old pal’s from the System Network and Attack Center at the NSA have a great guide on securing routers. The Router Security Configuration Guide has a good amount of the networking basics and then goes into a lot of hands on configurations and best practices. Cisco routers are covered specifically but I would imagine […]
November 1, 2006 – 9:23 pm
Web browsers understand all sorts of URL formats. If you want to go to Google you put www.google.com in your browser. These URL’s are also valid for Google as well:
http://1208930147
and
http://%67%6f%6f%67%6c%65%2e%63%6f%6d
For a good explanation as to why this is and what URL obfuscation is used for, check out this post.
–Chris
Technorati Tags: URL, obfuscation, […]
October 16, 2006 – 11:50 am
I use Skype fairly regularly as do many people I know. In fact, you can Skype me at chrisharringtonor leave me voicemail at 603-397-3392 (also Skype). Over the past couple months I have seen some interesting information and links on Skype and it’s security and anonymity. I thought I would share some of these.
Anonymity
Skype is […]
October 12, 2006 – 11:07 am
SecurityFocus has posted a two part article on securing Microsoft Office, written by Khushbu Jithra. It’s a pretty good article combo with the first article talking about Office’s security issues and the second article covering the forensics involved.
–Chris
Technorati tags: Microsoft Office, Security, vulnerability, security focus
Share This
September 18, 2006 – 10:58 pm
I came across this white paper by Fluke Networks. It does a great job of visually representing the components in 802.1x, how the various handshake’s work and different protocols involved.
Definitely worth a read if you want a cheat sheet on 802.1x. It’s through Bitpipe so you will have to register to download it.
–Chris
Technorati Tags: […]
August 31, 2006 – 2:45 pm
Have you ever telnet’d to an MS Exchange server and wondered what Service Pack or Release version it was? I know I have. It can be a good way to double check what Nessus or another VA tool told you was a vulnerable version. CDOLive has a nice table that matches Version, Service Pack and […]
August 3, 2006 – 10:50 pm
Ok…it’s probably not EVERYTHING but I thought it was a pretty good article. Besides, that is their title to the article, not mine. I like that it covered not only execution of a SQL injection attack but also how to detect it and tips to prevent such an attack. Application security is not my […]
