Linux Network Security - Page 12

Discover Network Security News

Hackers Are Internet Shock Troops

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Cyber-attack is an ever-present threat that can result in major damage to government and business web sites, as the following examples show. U.S. and South Korea, 2009: Officials in both countries reported attacks in the summer, aimed mainly at government web sites, as well as financial services sites.

Alex
May 14, 2010

Google coding tool advances cloud computing

Google has released a programming tool to help move its Native Client project--and more broadly, its cloud-computing ambitions--from abstract idea to practical reality.

Anthony Pell
May 13, 2010

New generation of DDoS attack has already infected hundreds of web servers

A new type of DDoS attack has currently infected hundreds of web servers. Unlike traditional DDoS methods that capitalize on bot-infected PCs, the attackers have turned the web servers themselves into payload-throwing bots.

Alex
May 13, 2010

DNSSEC on all root servers - updated

On Wednesday (5th May) the last of the 13 authoritative root servers for the domain name system switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed.

Anthony Pell
May 10, 2010

IPv6 tunnel basics

More Internet traffic is expected to be carried via tunnels as the Internet infrastructure migrates from IPv4, the current version of the Internet protocol, to the long-anticipated upgrade known as IPv6.

Anthony Pell
May 07, 2010

Google tightens cloud security for Apps users

Google has released a new tool that allows administrators at firms using Google Apps to remotely reset cookies to ensure that sensitive data cannot be accessed if a device is lost or stolen.

Alex
May 04, 2010

Understanding Malware: Impact on businesses

Malware attacks are a growing concern amongst enterprises. It not only results in downtime but also poses the threat of data theft. In the second of this four part series on malware attacks on enterprises, we bring to you the implications of malware attacks on businesses.

Alex
Apr 27, 2010

Metasploit Goes Commercial in New Express Edition

A new version of the open source Metasploit Framework penetration testing tool is set to debut next month with the release of Metasploit Express -- ushering in new enhancements for ease-of-use and management that come courtesy of its new commercial underpinnings.

Anthony Pell
Apr 23, 2010

More Than One-Third Of Network Devices Show Vulnerabilities, Study Says

Nearly 40 percent of enterprise network devices exhibit some form of security vulnerability, according to a study published today.

Anthony Pell
Apr 22, 2010

Open source lessons could help move to the cloud

We continue our conversation today with Gunnar Hellekson, chief technology strategist for Red Hat

Alex
Apr 21, 2010

Amazon Brute Force SIP Attacks

Nice interview discussing the Amazon ECS cloud and info on the SIP attacks. Shortly After my "SIP Brute Force Attack Originating From Amazon EC2 Hosts" post, Dave Michels interviewed me for an article Dark Side of the Cloud. This is that interview: Dave: What do you believe the intent was of the attacks? Free long distance?

Anthony Pell
Apr 20, 2010

Botnets Keep Spam Volume High: Google

Botnets cranked out more spam and larger individual files containing spam in the first quarter of this year, according to the latest report from Postini, Google's e-mail filtering and security service.

Anthony Pell
Apr 16, 2010

Cloud security: The good, bad and ugly

Everyone is talking about cloud computing, but security issues are stalling widespread adoption. While vendors work to address enterprise concerns (the good), experts warn there

Anthony Pell
Apr 05, 2010

Isolated security zones yield stronger network protection

Twice in recent weeks, I've been onsite at a company where a sizable division of the organization has been hit by a fast-roving computer worm. All that prevented the worm from quickly spreading across the enterprise was the company's isolated security zones. These scenarios served only to strengthen my belief that establishing isolated security zones is among the few strategies that reap a return on the investment of planning, resources, and money.

Anthony Pell
Mar 29, 2010

Use ssh_config To Simplify Your Life

When using multiple systems the indispensable tool is, as we all know, ssh. Using ssh you can login to other (remote) systems and work with them as if you were sitting in front of them. Even if some of your systems exist behind firewalls you can still get to them with ssh, but getting there can end up requiring a number of command line options and the more systems you have the more difficult it gets to remember them. However, you don't have to remember them, at least not more than once: you can just enter them into ssh's config file and be done with it.

Alex
Mar 26, 2010

Spam goes down well

According to a recent study by the Messaging Anti-Abuse Working Group (MAAWG) spammers on both sides of the Atlantic are being kept happy by users email behaviour. The MAAWG warning seems necessary as there are clearly more than enough users who click on spam email because it somehow looks interesting, in spite of all the danger signs.

Anthony Pell
Mar 25, 2010

OpenDNS reaches milestone in DNS services

Internet infrastructure and services company OpenDNS has reached a major landmark by snagging one percent of all Internet users worldwide, according to analytics firm Quantcast. While it doesn't sound like very much, that adds up to 18 million global users, and given that most organisations get their DNS services from their ISPs, OpenDNS is the largest single provider of DNS services. Furthermore, its use has doubled in the past year, despite the emergence of a powerful new competitor after Google launched its own DNS service last December.

Alex
Mar 25, 2010

Analyze your hosts and ports with nmap, Nessus, and netcat

Do you know all of the hosts on your network? Are you *sure*? Do you know if all of those hosts are secure from malicious tampering? In this article, you will learn how to find that information for yourself using three tools: nmap, nessus, and netcat.

Anthony Pell
Mar 24, 2010

What Are the Most Underrated Security Technologies?

Last week we looked at security technology some readers consider overvalued. This week we're back to study the other side of the coin. Here are four techniques and related technologies several cited as underrated in today's security fight. Since one security pro's miracle tool is another's waste of budget, it's no surprise that a couple of the technologies panned last week are praised here.

Alex
Mar 19, 2010

DNSSEC Moving Ahead at .Org and ICANN

The march to secure the Internet's core DNS (define) infrastructure with DNSSEC (define) is moving forward. Since at least the summer of 2008, when security researcher Dan Kaminksy disclosed a critical vulnerability in DNS, the global Internet domain routing ecosystem has been moving to implement DNSSEC, which provides is a digitally signed mechanism to authenticate the integrity of DNS information, secure the system and prevent attacks.

Alex
Mar 16, 2010

Linux Network Security - Page 12

Harnessing Proxies for Enhanced Threat Intelligence: A Guide with Open Source Tools

Understanding HTTP Proxy Servers: A Vital Linux Network Security Tool

Exploring Vulnerability Scanners: Tools & Strategies for a Secure Network