Adam forwarded me a link to his latest blog post about Linux security. It's quite amusing to read (I suspect someone must have told him how uber secure Linux is). Anyways, it's completely true so for all the pundits who preach on how much more secure Linux is than Windows …
more ...Some statistics, before I go on holidays until the end of the year.
Looking at bugfix updates, we've seen a steady increase since I've kept track (going back to 1999, although I think in 1999 it was only a half-year of doing updates).
This week's techmail is Get a complete security toolkit with BackTrack 3. I was approached a month or so ago by an individual who does forensic work, mostly on Windows and Mac computers and he was in need of something to do forensics with Linux, and wanted a tool that …
more ...Found another good comic inspired by the Debian OpenSSL issue (no, it will never get too old for me). Forget where I came across this one though... just saw it in my downloads folder as I was doing some cleaning up. It's quite funny though, because it also pokes at …
more ...The announcement just went out for the newly formed oss-security group (which is a similar concept to the private vendor-sec group, but open to anyone interested in helping promote and work with security in open source projects). I've mentioned oss-security before, but the "official" PR just came out (thanks to …
more ...In light of the recent Debian debacle and to get the word out to more people, this week's Techmail is Find and fix weak OpenSSL/OpenSSH keys: Debian-based Linux vulnerability which more or less reiterates what happened with the Debian OpenSSL... fun... and points to the dowkd.pl script that …
more ...It's been an amusing morning reading more takes on the Debian OpenSSL issue. While I was in the know before most others due to vendor-sec, and was able to quickly verify this didn't affect Mandriva, the fallout still continues. For those that think otherwise, this is a big issue, and …
more .../start rant
Switching my servers from Annvix to Mandriva is absolutely maddening. The biggest problem is dynamic uid/gid mappings. Do you know how frustrating it is to have apache uid 77 on one machine and uid 92 on another? Or svn is gid 75 on one and gid 76 …
more ...This week's TechMail is Configure Snort to log packets to MySQL which looks at using MySQL to store snort logs and BASE to view them. Already there's a comment there about someone wanting to know how to do it on Windows. I'm sure it's possible, but my first instinct was …
more ...This past week's TechMail tip is Detect intruders on your network with Snort which is a quick primer on how to use the Snort IDS (Intrusion Detection System). Snort is pretty cool if you have the patience to deal with it and the time to invest in setting it up …
more ...