Welcome to the ThreatPerspective Security Information Center

Welcome to the ThreatPerspective Security Information Center Vulnerability Info http://www.securityfocus.com Security Focus http://www.osvdb.org OSVDB http://nvd.nist.gov Nist NVD http://cve.mitre.org Mitre http://ciac.llnl.gov CIAC http://www.cert.org CERT http://iase.disa.mil ISAE Exploit Info http://www.milw0rm.com Milw0rm http://www.packetstormsecurity.nl Packet Storm http://www.elsenot.com Else Not Active Research Groups http://www.shmoo.com The Shmoo Group http://www.thc.org THC http://www.phenoelit.de Phenoelit Commercial Groups http://www.ngssoftware.com NGS http://www.immunitysec.com Immunitysec http://www.secunia.com Secunia http://www.securiteam.com Securiteam http://xforce.iss.net Xforce http://www.idefense.com Idefense http://www.eeye.com Eeye http://www.2600.com 2600 Security Organizations http://www.owasp.org OWASP http://www.isc2.org ISC2 http://www.isecom.org ISECOM http://www.sans.org SANS http://www.infragard.com Infragard Methodologies http://www.osissg.org OISSG http://www.isecom.org/ ISECOM http://www.osstmm.org OSSTMM Free "Auditing" Tools http://www.nessus.org Nessus http://www.insecure.org Nmap http://www.cqure.net Cqure Tools http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=26 MS SQL Utilities http://www.cirt.net Nikto http://www.sysinternals.com Sysinternals Tools http://www.bindview.com/services/razor/utilities/ Bindview Tools http://thc.org/releases.php THC Tools http://www.metasploit.org Metasploit http://www.parosproxy.org/ Paros Proxy http://www.portswigger.net/proxy/ Burp Proxy http://www.securityforest.com Exploit Tree http://www.tank.net Spork http://ettercap.sourceforge.net/ Ettercap http://www.cirt.net/code/nikto.shtml nikto http://www.sensepost.com/research/wikto/ wikto http://www.nstalker.com/eng/products/nstealth/ nStealth http://www.foofus.net/fizzgig/fgdump/ fgdump (Obtain MS Hashes) http://www.off-by-one.net/misc/cachedump.html Cachedump (Obtain MS Hashes) http://studenti.unina.it/~ncuomo/syskey/ samdump2 http://www.ethereal.com/ Ethereal http://www.immunitysec.com/resources-freesoftware.shtml Free Immunitysec Tools http://www.foundstone.com/resources/freetools.htm Free Foundstone Tools http://www.eeye.com/html/Research/Tools/index.html Free Eeye Tools http://sectools.org/ Sectools.org Free Virtualization Tools http://www.vmware.com/products/server/ VMWare Server http://bochs.sourceforge.net/ Bochs http://pearpc.sourceforge.net/ PearPC http://www.microsoft.com/windows/virtualpc/default.mspx MS Virtual PC Free Reverse Engineering/Debugging Tools http://directory.fsf.org/GNU/binutils.html binutils http://www.gnu.org/software/gdb/ GDB http://directory.fsf.org/GNU/GUSS.html Guss http://www.gnu.org/software/ddd/ DDD http://www.ollydbg.de/ Ollydbg http://labs.idefense.com/labs-software.php iDefense Labs Tools http://oss.coresecurity.com/projects/uhooker.htm CORE Tools Defaced Websites http://www.zone-h.org/component/option,com_attacks/Itemid,43/ Zone H Default Password Lists http://www.cirt.net/cgi-bin/passwd.pl Cirt's Passwords http://www.phenoelit.de/dpl/dpl.html Phenoelit's Passwords http://www.petefinnigan.com/default/default_password_list.htm Pete Finnigan's Default Oracle Passwords http://www.governmentsecurity.org/articles/DefaultLoginsandPasswordsforNetworkedDevices.php GovernmentSecurity.org http://defaultpassword.com/ defaultpassword.com http://www.cyxla.com/passwords/passwords.html Cyxla's Password Database http://www.e-tech.ca/017-Default_Passwords_ad.asp e-tech Default Passwords http://www.uktsupport.co.uk/reference/biosp.htm Bios Passwords Technical Conferences http://www.defcon.org DefCon http://www.blackhat.com Blackhat http://www.cansecwest.com CanSecWest http://toorcon.com Toorcon http://www.shmoocon.org/ ShmooCon http://www.hopenumbersix.net/ H.O.P.E. http://www.ccc.de/calendar/2006/23c3?language=en Chaos Computer Congress http://conference.hackinthebox.org/ Hack in the Box CD Distros http://www.remote-exploit.org/index.php/Auditor_main Auditor http://www.knoppix.org Knoppix http://www.whoppix.net/index.php/Tools Whoppix / Whax http://www.remote-exploit.org/index.php/Main_Page BackTrack Wireless Tools http://www.netstumbler.com Netstumbler http://prismstumbler.sourceforge.net Prismstubler http://www.kismetwireless.net Kismet http://kismac.de/ Kismac (For Macs) http://airsnort.shmoo.com Airsnort http://wepcrack.sourceforge.net WEPCrack http://www.aircrack-ng.org/doku.php Aircrack-ng http://csrc.nist.gov/publications/nistpubs/800-48/NIST_SP-48.pdf Wireless SP http://www.blackalchemy.to/project/fakeap/ FakeAP http://www.802.11mercenary.net/lorcon/ Lorcon http://theta44.org/karma/index.html Karma Checklists / Hardening Guides http://csrc.nist.gov NIST CSRC http://nvd.nist.gov/cvss.cfm?version=2 NIST NVD Common Vulnerability Scoring System (Risk Rating Standardization) http://checklists.nist.gov NIST Checklists http://www.cisecurity.org Center for Internet Security http://www.nsa.gov/snac/index.cfm?MenuID=scg10.3.1 NSA Security Configuration Guides http://otn.oracle.com/deploy/security/oracle9i/pdf/9i_checklist.pdf Oracle's 9i Checklist http://www.petefinnigan.com/orasec.htm PF's Checklists http://www.microsoft.com/technet/archive/security/chklist/default.mspx Microsoft Checklists http://www.openna.com/pdfs/Securing-Optimizing-Linux-The-Ultimate-Solution-v2.0.pdf Securing and Optimizing Linux OS and Service Hardening Tools http://www.sun.com/software/security/jass/ Solaris - JASS http://www.sun.com/service/serviceplans/software/patchmanagement/patchmanager.html Solaris - Patch Manager http://www.bastille-linux.org/ Linux - Bastille http://www.microsoft.com/technet/security/tools/default.mspx#EZE Microsoft Security Tools Defunct Research Groups ? http://www.attrition.org Attrition http://www.w00w00.org w00w00 http://adm.freelsd.net/ADM/ ADM http://www.cultdeadcow.com CDC http://en.wikipedia.org/wiki/TESO TESO http://en.wikipedia.org/wiki/Gobbles Gobbles Professional Security Programs http://corporate.visa.com/st/programs.jsp Visa Security Programs https://sdp.mastercardintl.com/ MasterCard Site Data Protection Program Password Crackers/Auditors http://www.insecure.org/stf/lc5-setup.exe LC5 http://www.insecure.org/stf/lc5-crack.zip LC5 Keygen http://www.oxid.it/cain.html Cain and Abel http://www.openwall.com/john/ John the Ripper http://www.banquise.net/misc/patch-john.html John Bigpatch (For more hash types) http://en.wikipedia.org/wiki/RainbowCrack RainbowCrack http://rainbowtables.shmoo.com/ Rainbow Tables Open Source Intelligence http://johnny.ihackstuff.com/ Google Hacking http://news.netcraft.com/ NetCraft http://www.archive.org/ Way Back Machine http://www.domaintools.com DomainTools http://whois.webhosting.info Web Hosting dot info Compliance Resources http://www.hhs.gov/ocr/hipaa/ HIPAA http://www.aicpa.org/info/sarbanes_oxley_summary.htm SOX http://banking.senate.gov/conf/ FMA (GLBA) http://csrc.nist.gov/sec-cert/ FISMA http://www.iso.org/iso/en/prods-services/popstds/informationsecurity.html ISO 17799 http://csrc.nist.gov/fasp/ NIST FASP Resources http://usa.visa.com/business/accepting_visa/ops_risk_management/cisp.html Visa PCI http://www.sans.org/resources/policies/ SANS Security Policies Email Lists http://www.securityfocus.com/archive Security Focus E-mail Lists http://lists.grok.org.uk/mailman/listinfo/full-disclosure Full Disclosure (Unmoderated) http://www.immunitysec.com/mailman/listinfo/dailydave Daily Dave http://www.seclists.org Security List Archives Defense / IDS http://www.snort.org Snort http://www.bleedingsnort.com "Bleeding Edge" Snort http://acidlab.sourceforge.net/ ACID Snort Interface Load Testing / Denial of Service Info http://staff.washington.edu/dittrich/misc/ddos/ DDOS Info IDS Testing/Tuning Tools ftp://ftp.st.ryuAkoku.ac.jp/pub/security/tool/snot/ Snot http://securityfocus.com/data/tools/stick.tgz Stick Firewall Ruleset Testing Tools http://www.packetfactory.net/projects/firewalk/ Firewalk http://dev.inversepath.com/trac/ftester FTester Welcome to the ThreatPerspective Security Information Center. This is a portal site created by ThreatPerspective to enable our clients and other interested parties to learn more about Information Security. http://seclists.org/#bugtraq The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently! Re: Re: Re: Re: Opera 9.6x file: overflowPosted by Zack Payton on Nov 19 http://seclists.org/bugtraq/2008/Nov/0144.htmlhttp://seclists.org/bugtraq/2008/Nov/0144.html Wed, 19 Nov 2008 16:05:53 -0600 Re: [ MDVSA-2008:232 ] dovecotPosted by Eygene Ryabinkin on Nov 20 > unauthorized 'parent/child/child' mailboxes... http://seclists.org/bugtraq/2008/Nov/0143.htmlhttp://seclists.org/bugtraq/2008/Nov/0143.html Thu, 20 Nov 2008 00:52:45 +0300 Re: Re: Re: Re: Opera 9.6x file: overflowPosted by peterjohan_at_ukr.net on Nov 19 http://seclists.org/bugtraq/2008/Nov/0142.htmlhttp://seclists.org/bugtraq/2008/Nov/0142.html Wed, 19 Nov 2008 23:27:12 +0200 [ MDVSA-2008:232 ] dovecotPosted by security_at_mandriva.com on Nov 19  Package :... http://seclists.org/bugtraq/2008/Nov/0141.htmlhttp://seclists.org/bugtraq/2008/Nov/0141.html Wed, 19 Nov 2008 14:00:00 -0700 [USN-674-1] HPLIP vulnerabilitiesPosted by Marc Deslauriers on Nov 19 ... http://seclists.org/bugtraq/2008/Nov/0140.htmlhttp://seclists.org/bugtraq/2008/Nov/0140.html Wed, 19 Nov 2008 15:36:02 -0500 Re: [ MDVSA-2008:231 ] libxml2Posted by Eygene Ryabinkin on Nov 19 http://seclists.org/bugtraq/2008/Nov/0139.htmlhttp://seclists.org/bugtraq/2008/Nov/0139.html Wed, 19 Nov 2008 23:42:36 +0300 rPSA-2008-0325-1 libxml2Posted by rPath Update Announcements on Nov 19 ... http://seclists.org/bugtraq/2008/Nov/0138.htmlhttp://seclists.org/bugtraq/2008/Nov/0138.html Wed, 19 Nov 2008 13:11:30 -0500 [SECURITY] [DSA 1667-1] New python2.4 packages fix several vulnerabilitiesPosted by Moritz Muehlenhoff on Nov 19 November 19, 2008 ... http://seclists.org/bugtraq/2008/Nov/0137.htmlhttp://seclists.org/bugtraq/2008/Nov/0137.html Wed, 19 Nov 2008 19:23:36 +0100 PR07-40: Authentication Bypass, Passwords Leakage and SNMP Injection on 3Com AP 8760Posted by ProCheckUp Research on Nov 19 ... http://seclists.org/bugtraq/2008/Nov/0136.htmlhttp://seclists.org/bugtraq/2008/Nov/0136.html Wed, 19 Nov 2008 11:58:26 +0000 [ MDVSA-2008:231 ] libxml2Posted by security_at_mandriva.com on Nov 18  Package :... http://seclists.org/bugtraq/2008/Nov/0135.htmlhttp://seclists.org/bugtraq/2008/Nov/0135.html Tue, 18 Nov 2008 17:54:00 -0700 PR08-09: Unauthenticated File Retrieval on Sun Java System Identity Manager quotextquot parameterPosted by ProCheckUp Research on Nov 19 ProCheckUp... http://seclists.org/bugtraq/2008/Nov/0134.htmlhttp://seclists.org/bugtraq/2008/Nov/0134.html Wed, 19 Nov 2008 12:01:03 +0000 Secunia Research: Streamripper Multiple Buffer OverflowsPosted by Secunia Research on Nov 19 ... http://seclists.org/bugtraq/2008/Nov/0133.htmlhttp://seclists.org/bugtraq/2008/Nov/0133.html Wed, 19 Nov 2008 12:15:23 +0100 Re: Opera 9.6x file: overflowPosted by xiashing_at_gmail.com on Nov 18 You tried to access the address... http://seclists.org/bugtraq/2008/Nov/0132.htmlhttp://seclists.org/bugtraq/2008/Nov/0132.html Tue, 18 Nov 2008 20:24:33 -0700 PR07-11: Cross-site Request Forgery (CSRF) on Sun Java System Identity ManagerPosted by ProCheckUp Research on Nov 19 ProCheckUp thanks Sun... http://seclists.org/bugtraq/2008/Nov/0131.htmlhttp://seclists.org/bugtraq/2008/Nov/0131.html Wed, 19 Nov 2008 11:52:39 +0000 Metasploit Framework 3.2 ReleasedPosted by H D Moore on Nov 19 ... http://seclists.org/bugtraq/2008/Nov/0130.htmlhttp://seclists.org/bugtraq/2008/Nov/0130.html Wed, 19 Nov 2008 03:40:35 -0600 http://seclists.org/#dailydave This technical discussion list covers vulnerability research, exploit development, and security events/gossip. It was started by ImmunitySec founder Dave Aitel and many security luminaries particpate. Many posts simply advertise Immunity products, but you can't really fault Dave for being self-promotional on a list named DailyDave. Flashy.Posted by Dave Aitel on Nov 13 to inspect. Flash... http://seclists.org/dailydave/2008/q4/0064.htmlhttp://seclists.org/dailydave/2008/q4/0064.html Thu, 13 Nov 2008 18:19:27 -0500 H2HC papers onlinePosted by Dave Aitel on Nov 12 particular is quite interesting. At first it seems like... http://seclists.org/dailydave/2008/q4/0063.htmlhttp://seclists.org/dailydave/2008/q4/0063.html Wed, 12 Nov 2008 15:03:44 -0500 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by neal wise on Nov 12 ... http://seclists.org/dailydave/2008/q4/0062.htmlhttp://seclists.org/dailydave/2008/q4/0062.html Wed, 12 Nov 2008 14:14:29 +1100 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by wishi on Nov 11 > You can find a... http://seclists.org/dailydave/2008/q4/0061.htmlhttp://seclists.org/dailydave/2008/q4/0061.html Tue, 11 Nov 2008 19:07:30 +0100 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by Cedric Blancher on Nov 09 ... http://seclists.org/dailydave/2008/q4/0060.htmlhttp://seclists.org/dailydave/2008/q4/0060.html Sun, 09 Nov 2008 23:14:08 +0100 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by Raul Siles on Nov 9 http://seclists.org/dailydave/2008/q4/0059.htmlhttp://seclists.org/dailydave/2008/q4/0059.html Sun, 9 Nov 2008 00:52:02 +0100 Hackers to Hackers (Brazil)Posted by Dave Aitel on Nov 07 security push. It's good to have a... http://seclists.org/dailydave/2008/q4/0058.htmlhttp://seclists.org/dailydave/2008/q4/0058.html Fri, 07 Nov 2008 16:37:24 -0500 Re: [Full-disclosure] Once thought safe, WPA Wi-Fi encryption is crackedPosted by Dragos Ruiu on Nov 7 The attack lets AP -> Client... http://seclists.org/dailydave/2008/q4/0057.htmlhttp://seclists.org/dailydave/2008/q4/0057.html Fri, 7 Nov 2008 11:33:08 -0800 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by Stephen John Smoogen on Nov 7 > to Japan. While good work, it's not going to worry me if I have a... http://seclists.org/dailydave/2008/q4/0056.htmlhttp://seclists.org/dailydave/2008/q4/0056.html Fri, 7 Nov 2008 09:41:52 -0700 Re: All Ur WiFi(WPA) R Belong 2 PacSecPosted by Dave Aitel on Nov 07 The other mitigating factors according to... http://seclists.org/dailydave/2008/q4/0055.htmlhttp://seclists.org/dailydave/2008/q4/0055.html Fri, 07 Nov 2008 10:27:21 -0500 All Ur WiFi(WPA) R Belong 2 PacSecPosted by Dragos Ruiu on Nov 6 Thursday next week. More specifically, his... http://seclists.org/dailydave/2008/q4/0054.htmlhttp://seclists.org/dailydave/2008/q4/0054.html Thu, 6 Nov 2008 22:54:50 -0800 Re: TechTarget Information Security Decisions ConferencePosted by J Wilder on Nov 6 security programs for the Department of Defense,... http://seclists.org/dailydave/2008/q4/0053.htmlhttp://seclists.org/dailydave/2008/q4/0053.html Thu, 6 Nov 2008 10:06:25 -0500 TechTarget Information Security Decisions ConferencePosted by Dave Aitel on Nov 06 One interesting thing... http://seclists.org/dailydave/2008/q4/0052.htmlhttp://seclists.org/dailydave/2008/q4/0052.html Thu, 06 Nov 2008 09:09:41 -0500 Reflective DLL InjectionPosted by Stephen Fewer on Oct 31 library is... http://seclists.org/dailydave/2008/q4/0051.htmlhttp://seclists.org/dailydave/2008/q4/0051.html Fri, 31 Oct 2008 17:58:02 +0000 Deadline extension: ICNS 2009 1st Workshop LMPCNAP April 21-25, 2009 - Valencia, SpainPosted by Jaime Lloret Mauri on Oct 31 publish original... http://seclists.org/dailydave/2008/q4/0050.htmlhttp://seclists.org/dailydave/2008/q4/0050.html Fri, 31 Oct 2008 15:02:29 +0100 http://seclists.org/#firewall-wizards Tips and tricks for firewall administrators Re: msgtag read receiptsPosted by Jim Seymour on Oct 14 > parent IP in my perimeter firewall but the image still renders, and... http://seclists.org/firewall-wizards/2008/Oct/0009.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0009.html Tue, 14 Oct 2008 13:22:45 -0400 (EDT) point to point tunnel asa to pix for all trafficPosted by Lord Sporkton on Oct 23 some general... http://seclists.org/firewall-wizards/2008/Oct/0008.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0008.html Thu, 23 Oct 2008 22:49:19 -0700 Re: Cisco ASA 8.0(3) with RSA SecurIDPosted by Craig Van Tassle on Oct 23 >... http://seclists.org/firewall-wizards/2008/Oct/0007.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0007.html Thu, 23 Oct 2008 09:22:49 -0500 Re: msgtag read receiptsPosted by Chuck Swiger on Oct 14 > message with one earlier today. Basically it embeds a... http://seclists.org/firewall-wizards/2008/Oct/0006.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0006.html Tue, 14 Oct 2008 10:33:33 -0700 Re: msgtag read receiptsPosted by Carson Gaspar on Oct 19 http://seclists.org/firewall-wizards/2008/Oct/0005.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0005.html Sun, 19 Oct 2008 13:29:06 -0700 msgtag read receiptsPosted by Ken Fox on Oct 9 that... http://seclists.org/firewall-wizards/2008/Oct/0004.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0004.html Thu, 9 Oct 2008 14:46:07 -0400 Re: ASA 5505 - Allow DMZ to Access Internal networkPosted by Fetch Brandon on Oct 10 of a... http://seclists.org/firewall-wizards/2008/Oct/0003.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0003.html Fri, 10 Oct 2008 18:54:13 -0400 Re: ASA 5505 - Allow DMZ to Access Internal networkPosted by Arne Svennevik on Oct 13 The static in... http://seclists.org/firewall-wizards/2008/Oct/0002.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0002.html Mon, 13 Oct 2008 15:11:01 +0200 Dynamic Firewall DaemonPosted by Travis on Oct 3 The general idea is... http://seclists.org/firewall-wizards/2008/Oct/0001.htmlhttp://seclists.org/firewall-wizards/2008/Oct/0001.html Fri, 3 Oct 2008 16:49:36 -0500 http://seclists.org/#focus-ids Technical discussion about Intrusion Detection Systems. You can also read the archives of a previous IDS list Re: tesis thopic : IDS using mobile agents... What do you think about it?Posted by Stefano Zanero on Nov 18 They are all papers related to very different topics, results of a... http://seclists.org/focus-ids/2008/Nov/0008.htmlhttp://seclists.org/focus-ids/2008/Nov/0008.html Tue, 18 Nov 2008 22:03:40 +0100 Re: tesis thopic : IDS using mobile agents... What do you think about it?Posted by saintarmin_at_hotmail.com on Nov 17 Analysis of... http://seclists.org/focus-ids/2008/Nov/0007.htmlhttp://seclists.org/focus-ids/2008/Nov/0007.html 17 Nov 2008 23:50:35 -0000 Re: tesis thopic : IDS using mobile agents... What do you think about it?Posted by Stefano Zanero on Nov 17 What do you want to demonstrate or show ?... http://seclists.org/focus-ids/2008/Nov/0006.htmlhttp://seclists.org/focus-ids/2008/Nov/0006.html Mon, 17 Nov 2008 21:04:14 +0100 tesis thopic : IDS using mobile agents... What do you think about it?Posted by saintarmin_at_hotmail.com on Nov 12 1. - I want to know what does think all... http://seclists.org/focus-ids/2008/Nov/0005.htmlhttp://seclists.org/focus-ids/2008/Nov/0005.html 12 Nov 2008 21:25:22 -0000 On-Demand Penetration Testing Webcasts with Ed Skoudis of SANSPosted by sfa_at_securityfocus.com on Nov 11 As a security pro, it's important to periodically stop, take a break, and refuel your brain. Once per month, Core Security Technologies does the same thing and invites industry thought leaders to share their insights through educational webcasts offering security testing tips, tricks and... http://seclists.org/focus-ids/2008/Nov/0004.htmlhttp://seclists.org/focus-ids/2008/Nov/0004.html 11 Nov 2008 15:51:01 -0000 Re: Malicous Domains and IDSIPS signaturesPosted by Sanjay R on Nov 8 > They may be... http://seclists.org/focus-ids/2008/Nov/0003.htmlhttp://seclists.org/focus-ids/2008/Nov/0003.html Sat, 8 Nov 2008 20:30:36 +0530 [Suspected Spam]Re: Malicous Domains and IDSIPS signaturesPosted by Rishi Narang on Nov 8 IMHO, the blacklists should be regularly monitored. For product companies it is a little hard with the limited resources, so usually they club into a consortium or uses database available online. There are different database for different purposes like SenderBase for Spam Rules,... http://seclists.org/focus-ids/2008/Nov/0002.htmlhttp://seclists.org/focus-ids/2008/Nov/0002.html Sat, 8 Nov 2008 12:06:31 +0530 Career ExplorationPosted by Anton Dobrin on Nov 04 they got into it, etc.... http://seclists.org/focus-ids/2008/Nov/0001.htmlhttp://seclists.org/focus-ids/2008/Nov/0001.html Tue, 04 Nov 2008 22:56:43 -0500 Re: IDS vs Application Proxy FirewalPosted by Stefano Zanero on Oct 29 > announced by one of the McAfee guys that... http://seclists.org/focus-ids/2008/Oct/0049.htmlhttp://seclists.org/focus-ids/2008/Oct/0049.html Wed, 29 Oct 2008 20:55:49 +0100 Re: Majorly OT IDS vs Application Proxy FirewallPosted by Arian J. Evans on Oct 28 could be a huge hit in Asia,... http://seclists.org/focus-ids/2008/Oct/0048.htmlhttp://seclists.org/focus-ids/2008/Oct/0048.html Tue, 28 Oct 2008 15:38:09 -0700 Upgrading snort to latest version-things required?Posted by Aseem Kumar on Oct 29 Or will... http://seclists.org/focus-ids/2008/Oct/0047.htmlhttp://seclists.org/focus-ids/2008/Oct/0047.html Wed, 29 Oct 2008 23:19:47 +0530 RE: IDS vs Application Proxy FirewalPosted by Kamra Ashish on Oct 29 > If you want to get your PhD, then debating is quite... http://seclists.org/focus-ids/2008/Oct/0046.htmlhttp://seclists.org/focus-ids/2008/Oct/0046.html Wed, 29 Oct 2008 12:54:53 -0400 Re: IDS vs Application Proxy FirewalPosted by Stefano Zanero on Oct 29 > I was at the Recent Advances in... http://seclists.org/focus-ids/2008/Oct/0045.htmlhttp://seclists.org/focus-ids/2008/Oct/0045.html Wed, 29 Oct 2008 17:07:03 +0100 Re: IDS vs Application Proxy FirewalPosted by Ashish Kamra on Oct 28 2008) recently where one of the topics for a panel discussion was... http://seclists.org/focus-ids/2008/Oct/0044.htmlhttp://seclists.org/focus-ids/2008/Oct/0044.html Tue, 28 Oct 2008 19:37:05 -0400 Re: IDS vs Application Proxy FirewalPosted by Arian J. Evans on Oct 28 up to speed with... http://seclists.org/focus-ids/2008/Oct/0043.htmlhttp://seclists.org/focus-ids/2008/Oct/0043.html Tue, 28 Oct 2008 15:44:52 -0700 http://seclists.org/#fulldisclosure An unmoderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately 80% of the posts are worthless drivel, so finding the gems takes patience. Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by n3td3v on Nov 19 http://seclists.org/fulldisclosure/2008/Nov/0420.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0420.html Wed, 19 Nov 2008 21:47:52 +0000 Fredrick Diggle Security is looking for a few good men (or mediocre women)Posted by Fredrick Diggle on Nov 19 Due to the massive feedback they have... http://seclists.org/fulldisclosure/2008/Nov/0419.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0419.html Wed, 19 Nov 2008 15:43:03 -0600 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by Valdis.Kletnieks_at_vt.edu on Nov 19 > you talk about cut-n-paste bloggers when... http://seclists.org/fulldisclosure/2008/Nov/0418.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0418.html Wed, 19 Nov 2008 16:34:13 -0500 [ MDVSA-2008:232 ] dovecotPosted by security_at_mandriva.com on Nov 19  Package :... http://seclists.org/fulldisclosure/2008/Nov/0417.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0417.html Wed, 19 Nov 2008 14:00:00 -0700 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by n3td3v on Nov 19 >> you're the only one who... http://seclists.org/fulldisclosure/2008/Nov/0416.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0416.html Wed, 19 Nov 2008 20:45:34 +0000 [USN-674-1] HPLIP vulnerabilitiesPosted by Marc Deslauriers on Nov 19 ... http://seclists.org/fulldisclosure/2008/Nov/0415.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0415.html Wed, 19 Nov 2008 15:36:02 -0500 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by Valdis.Kletnieks_at_vt.edu on Nov 19 > you're the only one who mentioned personal... http://seclists.org/fulldisclosure/2008/Nov/0414.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0414.html Wed, 19 Nov 2008 15:14:57 -0500 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by n3td3v on Nov 19 > Hint: When trying to make it look like you have actual personal... http://seclists.org/fulldisclosure/2008/Nov/0413.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0413.html Wed, 19 Nov 2008 20:01:14 +0000 [SECURITY] [DSA 1667-1] New python2.4 packages fix several vulnerabilitiesPosted by Moritz Muehlenhoff on Nov 19 November 19, 2008 ... http://seclists.org/fulldisclosure/2008/Nov/0412.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0412.html Wed, 19 Nov 2008 19:23:36 +0100 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by Valdis.Kletnieks_at_vt.edu on Nov 19 your "source" from.... http://seclists.org/fulldisclosure/2008/Nov/0411.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0411.html Wed, 19 Nov 2008 13:08:13 -0500 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by n3td3v on Nov 19 >> computer systems for at least 24 hours after being hit... http://seclists.org/fulldisclosure/2008/Nov/0410.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0410.html Wed, 19 Nov 2008 17:14:28 +0000 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by Valdis.Kletnieks_at_vt.edu on Nov 19 He's using the term "self-contained" to mean... http://seclists.org/fulldisclosure/2008/Nov/0409.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0409.html Wed, 19 Nov 2008 11:47:52 -0500 Re: Fwd: Three London hospitals have been forced to shut down their entire computer systems for at least 24 hours after being hit by a virusPosted by Jeff MacDonald on Nov 19 > The spokesman said the virus was "not malicious", and the... http://seclists.org/fulldisclosure/2008/Nov/0408.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0408.html Wed, 19 Nov 2008 11:32:53 -0400 Fwd: BNP members targeted by threatsPosted by n3td3v on Nov 19 abusive... http://seclists.org/fulldisclosure/2008/Nov/0407.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0407.html Wed, 19 Nov 2008 14:27:23 +0000 Secunia Research: Streamripper Multiple Buffer OverflowsPosted by Secunia Research on Nov 19 ... http://seclists.org/fulldisclosure/2008/Nov/0406.htmlhttp://seclists.org/fulldisclosure/2008/Nov/0406.html Wed, 19 Nov 2008 12:15:20 +0100 http://seclists.org/#honeypots Discussions about tracking attackers by setting up decoy honeypots or entire honeynet networks. DateTime issue on HoneywallPosted by secpuffy on Nov 17 http://seclists.org/honeypots/2008/q4/0022.htmlhttp://seclists.org/honeypots/2008/q4/0022.html Mon, 17 Nov 2008 19:36:18 -0800 Re: botnet logsPosted by Valdis.Kletnieks_at_vt.edu on Nov 17 ... http://seclists.org/honeypots/2008/q4/0021.htmlhttp://seclists.org/honeypots/2008/q4/0021.html Mon, 17 Nov 2008 12:48:53 -0500 Re: botnet logsPosted by Nathan on Nov 17 watch... http://seclists.org/honeypots/2008/q4/0020.htmlhttp://seclists.org/honeypots/2008/q4/0020.html Mon, 17 Nov 2008 16:31:32 +0100 Re: botnet logsPosted by Gabriele Zanoni on Nov 17 ... http://seclists.org/honeypots/2008/q4/0019.htmlhttp://seclists.org/honeypots/2008/q4/0019.html Mon, 17 Nov 2008 10:40:00 +0100 Re: botnet logsPosted by Valdis.Kletnieks_at_vt.edu on Nov 16 > gather any valueable... http://seclists.org/honeypots/2008/q4/0018.htmlhttp://seclists.org/honeypots/2008/q4/0018.html Sun, 16 Nov 2008 22:51:52 -0500 botnet logsPosted by Nathan on Nov 15 I would be pleased, if anyone could send me a... http://seclists.org/honeypots/2008/q4/0017.htmlhttp://seclists.org/honeypots/2008/q4/0017.html Sat, 15 Nov 2008 13:20:21 +0100 Re: Stealth VMPosted by Thorsten Holz on Nov 10 > Wildlist may be, it is... http://seclists.org/honeypots/2008/q4/0016.htmlhttp://seclists.org/honeypots/2008/q4/0016.html Mon, 10 Nov 2008 22:09:45 +0100 Re: Stealth VMPosted by Robert Sandilands on Nov 10 there. It is easy to criticize something and I think the Wildlist... http://seclists.org/honeypots/2008/q4/0015.htmlhttp://seclists.org/honeypots/2008/q4/0015.html Mon, 10 Nov 2008 10:33:22 -0500 Re: Stealth VMPosted by Thorsten Holz on Nov 8 we observed that less than 10% of the samples did not run... http://seclists.org/honeypots/2008/q4/0014.htmlhttp://seclists.org/honeypots/2008/q4/0014.html Sat, 8 Nov 2008 08:49:56 +0100 Re: Stealth VMPosted by Robert Sandilands on Nov 07 >... http://seclists.org/honeypots/2008/q4/0013.htmlhttp://seclists.org/honeypots/2008/q4/0013.html Fri, 07 Nov 2008 09:53:44 -0500 Re: Stealth VMPosted by Stuart Thomas on Nov 07 >>> e.g. Timing... http://seclists.org/honeypots/2008/q4/0012.htmlhttp://seclists.org/honeypots/2008/q4/0012.html Fri, 07 Nov 2008 06:28:08 +0000 Re: Stealth VMPosted by Earl on Nov 06 not bad guys still... http://seclists.org/honeypots/2008/q4/0011.htmlhttp://seclists.org/honeypots/2008/q4/0011.html Thu, 06 Nov 2008 20:38:01 -0500 RE: Stealth VMPosted by Michael Owen on Nov 6 > > e.g. Timing metrics can give away a VM, and that you can manually... http://seclists.org/honeypots/2008/q4/0010.htmlhttp://seclists.org/honeypots/2008/q4/0010.html Thu, 6 Nov 2008 13:54:03 -0800 Re: Stealth VMPosted by Javier Fernandez-Sanguino on Nov 06 > alter peripheral identities... http://seclists.org/honeypots/2008/q4/0009.htmlhttp://seclists.org/honeypots/2008/q4/0009.html Thu, 06 Nov 2008 13:19:07 +0100 Re: regarding malicious domains becoming inactivePosted by yelukati mahendra on Nov 5 These websites operate as one night shops,they have a range of domain names and IP's,they use the domain names or IP's randomly - I mean per activity basis,like for one kind of malware they use a particular name or a particular IP and when this activity gets traced,that particular domain name /... http://seclists.org/honeypots/2008/q4/0008.htmlhttp://seclists.org/honeypots/2008/q4/0008.html Wed, 5 Nov 2008 11:46:58 +0530 (IST) http://seclists.org/#incidents Lightly moderated list for dicussing actual security incidents (unexplained probes, breakins, etc). Topics include information about new rootkits, backdoors, trojans, virii, and worms. Re: Ssh break that claims it was me?Posted by makkalot_at_gmail.com on Oct 27 guessed it could be... http://seclists.org/incidents/2008/Oct/0003.htmlhttp://seclists.org/incidents/2008/Oct/0003.html Mon, 27 Oct 2008 18:45:38 +0200 RE: Ssh break that claims it was me?Posted by Viktor Larionov on Oct 27 I absolutely agree with Kevin on this, especially as one may propose that the damage caused, may not necessarily be the "unknown hacker"'s deed, but a system administrator fault or error, and eventually a result of his/her "pushing the blame to someone... http://seclists.org/incidents/2008/Oct/0002.htmlhttp://seclists.org/incidents/2008/Oct/0002.html Mon, 27 Oct 2008 17:21:28 +0200 RE: Ssh break that claims it was me?Posted by Viktor Larionov on Oct 27 And of course first of all check that it was really your user who did that. (if the... http://seclists.org/incidents/2008/Oct/0001.htmlhttp://seclists.org/incidents/2008/Oct/0001.html Mon, 27 Oct 2008 15:35:03 +0200 [ISN] InfoSec News Mailing List http://www.infosecnews.org/mailman/listinfo/isn InfoSecNews Secure OS Gets Highest NSA Rating, Goes Commercial http://www.infosecnews.org/pipermail/isn/2008-November/017100.html InfoSec News: Secure OS Gets Highest NSA Rating, Goes Commercial: http://www.darkreading.com/security/app-security/showArticle.jhtml?articleID=212100421 for system security as a new commercial offering. [...] Teen hacker confesses three-year crime spree http://www.infosecnews.org/pipermail/isn/2008-November/017099.html InfoSec News: Teen hacker confesses three-year crime spree: http://www.theregister.co.uk/2008/11/19/dshocker_pleads_guilty/ gaming groups has admitted to multiple computer felonies, including [...] Hospital's systems hit by computer virus http://www.infosecnews.org/pipermail/isn/2008-November/017098.html InfoSec News: Hospital's systems hit by computer virus: http://software.silicon.com/malware/0,3800003100,39345606,00.htm The Trust, which covers three hospitals - St Bartholomew's in the City, [...] Lessons from Intel's Trade-Secret Case http://www.infosecnews.org/pipermail/isn/2008-November/017097.html InfoSec News: Lessons from Intel's Trade-Secret Case: http://www.businessweek.com/technology/content/nov2008/tc20081118_067329.htm (INTC) shed light on the surprising vulnerability of one of the world's [...] Srizbi botnet flounders after McColo shutdown http://www.infosecnews.org/pipermail/isn/2008-November/017096.html InfoSec News: Srizbi botnet flounders after McColo shutdown: http://www.techworld.com/security/news/index.cfm?newsID=107278 security vendor has found. [...] Black Hat November News: CFPS Now Open, Webinar 5 and Japan on-line. http://www.infosecnews.org/pipermail/isn/2008-November/017095.html InfoSec News: Black Hat November News: CFPS Now Open, Webinar 5 and Japan on-line.: Forwarded from: "jmoss" <jmoss (at) blackhat.com> ISN Readers of new and old, here are some updates on upcoming Black Hat [...] Hackers step up attacks http://www.infosecnews.org/pipermail/isn/2008-November/017094.html InfoSec News: Hackers step up attacks: http://www.thestandard.com.hk/breaking_news_detail.asp?id=9829&icid=3&d_str=20081119 Student charged with hacking, blackmail scheme http://www.infosecnews.org/pipermail/isn/2008-November/017093.html InfoSec News: Student charged with hacking, blackmail scheme: http://www.kentucky.com/181/story/595802.html Cybercrooks launch DDoS assault on anti-fraud site http://www.infosecnews.org/pipermail/isn/2008-November/017092.html InfoSec News: Cybercrooks launch DDoS assault on anti-fraud site: http://www.theregister.co.uk/2008/11/17/bobbear_ddos/ Bobbear.co.uk, which fights money laundering by warning about groups [...] Information Operations Multiply With the Value of Information http://www.infosecnews.org/pipermail/isn/2008-November/017091.html InfoSec News: Information Operations Multiply With the Value of Information: http://www.afcea.org/signal/articles/templates/signal_connections.asp?articleid=1762&zoneid=220 information age, so too have operations against it. Information [...] Computer virus attacks 'to peak next Monday' http://www.infosecnews.org/pipermail/isn/2008-November/017090.html InfoSec News: Computer virus attacks 'to peak next Monday': http://www.guardian.co.uk/technology/2008/nov/17/malware-trojan-virus-peak attacks. [...] Spam drop could boost Trojan attacks http://www.infosecnews.org/pipermail/isn/2008-November/017089.html InfoSec News: Spam drop could boost Trojan attacks: http://www.techworld.com/security/news/index.cfm?newsID=107159 ISP McColo was taken offline will only be a temporary reprieve and could [...] Dodgy ISP McColo briefly comes online, updates botnet http://www.infosecnews.org/pipermail/isn/2008-November/017088.html InfoSec News: Dodgy ISP McColo briefly comes online, updates botnet: http://www.computerworld.com/action/article.do?command=viewArticleBasic&taxonomyName=security&articleId=9120538 EXCLUSIVE: Cyber-Hackers Break Into IMF Computer System http://www.infosecnews.org/pipermail/isn/2008-November/017087.html InfoSec News: EXCLUSIVE: Cyber-Hackers Break Into IMF Computer System: http://www.foxnews.com/story/0,2933,452348,00.html MILF restores defaced website http://www.infosecnews.org/pipermail/isn/2008-November/017086.html InfoSec News: MILF restores defaced website: http://www.mindanaoexaminer.com/news.php?news_id=20081114082735 it was defaced by hackers. [...] Federal Reserve spam attack emerges http://www.infosecnews.org/pipermail/isn/2008-November/017085.html InfoSec News: Federal Reserve spam attack emerges: http://www.vnu.co.uk/vnunet/news/2230518/federal-reserve-spam-attack arriving in emails purporting to come from the US Federal Reserve. [...] Joe the Plumber case still dripping http://www.infosecnews.org/pipermail/isn/2008-November/017084.html InfoSec News: Joe the Plumber case still dripping: http://www.ohio.com/news/34453464.html Ohio Inspector General Tom Charles said his office is now looking at a [...] Children’s contact details stolen http://www.infosecnews.org/pipermail/isn/2008-November/017083.html InfoSec News: Children’s contact details stolen: http://www.timesonline.co.uk/tol/life_and_style/education/article5158994.ece stolen from a car. [...] Air Force scales back cyberwar plans http://www.infosecnews.org/pipermail/isn/2008-November/017082.html InfoSec News: Air Force scales back cyberwar plans: http://www.washingtontimes.com/news/2008/nov/13/usaf-scales-back-cyberwar-plans/ plans for his unit have been scaled back because staff who would have [...] Three security breaches is too many http://www.infosecnews.org/pipermail/isn/2008-November/017081.html InfoSec News: Three security breaches is too many: http://www.alligator.org/articles/2008/11/13/opinion/editorials/081112_eddy1.txt wrong. [...] The Importance of 24x7 Event Monitoring in Process Control Systems http://www.infosecnews.org/pipermail/isn/2008-November/017080.html InfoSec News: The Importance of 24x7 Event Monitoring in Process Control Systems: http://www.controleng.com/blog/590000659/post/420036442.html http://www.fandango. [...] Attorneys for Palin email hacker: 'Don't call him hacker' http://www.infosecnews.org/pipermail/isn/2008-November/017079.html InfoSec News: Attorneys for Palin email hacker: 'Don't call him hacker': http://www.theregister.co.uk/2008/11/13/palin_email_hacker_motions/ into Alaska Governor Sarah Palin's email account have filed a small [...] Secunia Weekly Summary - Issue: 2008-46 http://www.infosecnews.org/pipermail/isn/2008-November/017078.html InfoSec News: Secunia Weekly Summary - Issue: 2008-46: ======================================================================== [...] Espionage claims by telecoms company http://www.infosecnews.org/pipermail/isn/2008-November/017077.html InfoSec News: Espionage claims by telecoms company: http://www.telegraph.co.uk/finance/newsbysector/mediatechnologyandtelecoms/telecoms/3448534/Espionage-claims-by-telecoms-company.html Altimo, whose advisory board includes a former head of Britain's GCHQ [...] Disney star's nude scandal exposed as a fake http://www.infosecnews.org/pipermail/isn/2008-November/017076.html InfoSec News: Disney star's nude scandal exposed as a fake: http://news.ninemsn.com.au/article.aspx?id=664834 http://seclists.org/#microsoft Beware that MS often uses these security bulletins as marketing propaganda to downplay serious vulnerabilities in their products -- note how most have a prominent and often-misleading "mitigating factors" section. Microsoft Security Bulletin Major RevisionsPosted by Microsoft on Oct 16 The following bulletins have undergone a major revision... http://seclists.org/microsoft/2008/q4/0002.htmlhttp://seclists.org/microsoft/2008/q4/0002.html Thu, 16 Oct 2008 04:11:09 -0700 Microsoft Security Bulletin Summary for October 2008Posted by Microsoft on Oct 14 ... http://seclists.org/microsoft/2008/q4/0001.htmlhttp://seclists.org/microsoft/2008/q4/0001.html Tue, 14 Oct 2008 12:01:38 -0700 Microsoft Security Bulletin Major RevisionsPosted by Microsoft on Sep 15 The following bulletins have undergone a major revision... http://seclists.org/microsoft/2008/q3/0005.htmlhttp://seclists.org/microsoft/2008/q3/0005.html Mon, 15 Sep 2008 16:32:17 -0700 Microsoft Security Bulletin Major RevisionsPosted by Microsoft on Sep 12 The following bulletins have undergone a major revision... http://seclists.org/microsoft/2008/q3/0004.htmlhttp://seclists.org/microsoft/2008/q3/0004.html Fri, 12 Sep 2008 22:12:31 -0700 Microsoft Security Bulletin Summary for September 2008Posted by Microsoft on Sep 9 September... http://seclists.org/microsoft/2008/q3/0003.htmlhttp://seclists.org/microsoft/2008/q3/0003.html Tue, 9 Sep 2008 10:57:41 -0700 Microsoft Security Bulletin Major RevisionsPosted by Microsoft on Jul 16 The following bulletins have undergone a major revision... http://seclists.org/microsoft/2008/q3/0002.htmlhttp://seclists.org/microsoft/2008/q3/0002.html Wed, 16 Jul 2008 16:42:25 -0700 Microsoft Security Bulletin Major RevisionsPosted by Microsoft on Jul 10 The following bulletins have undergone a major revision... http://seclists.org/microsoft/2008/q3/0001.htmlhttp://seclists.org/microsoft/2008/q3/0001.html Thu, 10 Jul 2008 17:36:48 -0700 NANOG@merit.edu http://www.merit.edu/mail.archives/nanog/index.html Latest posts to NANOG Mailing List Quagga on Xen or VMWare etc http://www.merit.edu/mail.archives/nanog/msg13001.html David Curran (11/19/08) Re: IPv6 routing /48s http://www.merit.edu/mail.archives/nanog/msg13000.html Jack Bates (11/19/08) Re: Verizon outage between Baltimore and http://www.merit.edu/mail.archives/nanog/msg12999.html Steven Fischer (11/19/08) Re: IPv6 routing /48s http://www.merit.edu/mail.archives/nanog/msg12998.html trejrco (11/19/08) Re: Verizon outage between Baltimore and http://www.merit.edu/mail.archives/nanog/msg12997.html Joel Esler (11/19/08) Re: IPv6 routing /48s http://www.merit.edu/mail.archives/nanog/msg12996.html Nathan Ward (11/19/08) Re: Verizon outage between Baltimore and http://www.merit.edu/mail.archives/nanog/msg12995.html Justin M. Streiner (11/19/08) Re: IPv6 routing /48s http://www.merit.edu/mail.archives/nanog/msg12994.html trejrco (11/19/08) Re: IPv6 routing /48s http://www.merit.edu/mail.archives/nanog/msg12993.html Nathan Ward (11/19/08) Re: Verizon outage between Baltimore and http://www.merit.edu/mail.archives/nanog/msg12992.html Steven Fischer (11/19/08) Re: Verizon outage between Baltimore and http://www.merit.edu/mail.archives/nanog/msg12991.html Valdis.Kletnieks (11/19/08) Verizon outage between Baltimore and Was http://www.merit.edu/mail.archives/nanog/msg12990.html Steven Fischer (11/19/08) Re: NAT66 and the subscriber prefix leng http://www.merit.edu/mail.archives/nanog/msg12989.html Leo Vegoda (11/19/08) New Internet study released http://www.merit.edu/mail.archives/nanog/msg12988.html Irwin.Lazar (11/19/08) Adobe contact http://www.merit.edu/mail.archives/nanog/msg12987.html Jeff Calvert (11/19/08) netsec@merit.edu http://www.merit.edu/mail.archives/netsec/index.html Latest posts to netsec mailing list SANS NewsBites Vol. 10 Num. 91 http://www.merit.edu/mail.archives/netsec/msg03000.html The SANS Institute (11/18/08) FW: [ISN] Computer virus attacks 'to pea http://www.merit.edu/mail.archives/netsec/msg02999.html Howell, Paul (11/18/08) FW: US-CERT Cyber Security Bulletin SB08 http://www.merit.edu/mail.archives/netsec/msg02998.html Howell, Paul (11/17/08) FW: CRYPTO-GRAM, November 15, 2008 http://www.merit.edu/mail.archives/netsec/msg02997.html Howell, Paul (11/15/08) FW: US-CERT Technical Cyber Security Ale http://www.merit.edu/mail.archives/netsec/msg02996.html Howell, Paul (11/15/08) The Dark Art of Cyberwar http://www.merit.edu/mail.archives/netsec/msg02995.html Howell, Paul (11/14/08) SANS NewsBites Vol. 10 Num. 90 http://www.merit.edu/mail.archives/netsec/msg02994.html The SANS Institute (11/14/08) FW: [ISN] Attorneys for Palin email hack http://www.merit.edu/mail.archives/netsec/msg02993.html Howell, Paul (11/14/08) UF officials notify dental patients of c http://www.merit.edu/mail.archives/netsec/msg02992.html Howell, Paul (11/13/08) FW: US-CERT Technical Cyber Security Ale http://www.merit.edu/mail.archives/netsec/msg02991.html Howell, Paul (11/12/08) SANS NewsBites Vol. 10 Num. 89 http://www.merit.edu/mail.archives/netsec/msg02990.html The SANS Institute (11/11/08) FW: [ISN] Study shows how spammers cash http://www.merit.edu/mail.archives/netsec/msg02989.html Howell, Paul (11/11/08) FW: [ISN] Many DNS Servers Still Vulnera http://www.merit.edu/mail.archives/netsec/msg02988.html Howell, Paul (11/11/08) FW: US-CERT Cyber Security Bulletin SB08 http://www.merit.edu/mail.archives/netsec/msg02987.html Howell, Paul (11/10/08) Myth or truism? Security experts judge c http://www.merit.edu/mail.archives/netsec/msg02986.html Howell, Paul (11/10/08) SANS ISC SecNewsFeed http://isc.sans.org SANS Internet Storm Center http://isc.sans.org/images/status.gif http://isc.sans.org MyTopix &lt; 1.3.0 (notes send) Remote SQL Injection Exploit (milw0rm) http://www.milw0rm.com/exploits/7160 How to Handle DDoS Incidents? We're Looking for Tips., (Wed, Nov 19th) (InternetStormCenter) http://isc.sans.org/diary.php?storyid=5375&rss Cybercrime as destructive as credit crisis: experts (Reuters) (Yahoo Security) http://us.rd.yahoo.com/dailynews/rss/security/*http://news.yahoo.com/s/nm/20081119/wr_nm/us_cybercrime Bugtraq: Secunia Research: Streamripper Multiple Buffer Overflows (SecurityFocus Vulnerabilities) http://www.securityfocus.com/archive/1/498486 Citigroup's Account Management Nightmare: 50,000 Layoffs Means Closing Up To 1 Million Accounts (E-Week Security) http://feeds.ziffdavisenterprise.com/~r/RSS/eweeksecurity/~3/OaOXVIiGgmM/ RIAA Lawsuits May Be Unconstitutional (Schneier blog) http://www.schneier.com/blog/archives/2008/11/riaa_lawsuits_m.html Automated security testing & its limitations (CGISecurity.com) http://www.cgisecurity.net/2008/11/automated-secur.html SecurityFocus News http://www.securityfocus.com SecurityFocus http://www.securityfocus.com/rss/SFLogo_v1.gif http://www.securityfocus.com News: Researchers find more flaws in wireless security http://www.securityfocus.com/news/11537?ref=rss Researchers find more flaws in wireless security News: Secure hash competition kicks off http://www.securityfocus.com/news/11536?ref=rss Secure hash competition kicks off News: You don't know (click)jack http://www.securityfocus.com/news/11535?ref=rss
]]> News: Researchers weigh "clickjacking" threat http://www.securityfocus.com/news/11534?ref=rss Researchers weigh "clickjacking" threat Brief: Microsoft to replace OneCare with free service http://www.securityfocus.com/brief/857?ref=rss Microsoft to replace OneCare with free service Brief: Microsoft sees value in exploitability index http://www.securityfocus.com/brief/856?ref=rss
]]> Brief: McColo takedown nets massive drop in spam http://www.securityfocus.com/brief/855?ref=rss McColo takedown nets massive drop in spam Brief: Firm offers $1 million bounty for blackmailers http://www.securityfocus.com/brief/854?ref=rss Firm offers $1 million bounty for blackmailers News: TJX employee fired for exposing shoddy security http://www.securityfocus.com/news/11520?ref=rss
]]> News: Thoughts of a Teenage Bot Master http://www.securityfocus.com/news/11517?ref=rss Thoughts of a Teenage Bot Master News: Radio Free Europe hit by DDoS attack http://www.securityfocus.com/news/11515?ref=rss Radio Free Europe hit by DDoS attack News: Flash vuln fells Vista http://www.securityfocus.com/news/11512?ref=rss
]]> Infocus: Data Recovery on Linux and ext3 http://www.securityfocus.com/infocus/1902?ref=rss Data Recovery on Linux and ext3 Infocus: WiMax: Just Another Security Challenge? http://www.securityfocus.com/infocus/1901?ref=rss WiMax: Just Another Security Challenge? Infocus: Blocking Traffic by Country on Production Networks http://www.securityfocus.com/infocus/1900?ref=rss
]]> Infocus: Integrating More Intelligence into Your IDS, Part 2 http://www.securityfocus.com/infocus/1899?ref=rss Integrating More Intelligence into Your IDS, Part 2 Oliver Day: Microsoft's Stance on Piracy Affects Us All http://www.securityfocus.com/columnists/484?ref=rss Microsoft's Stance on Piracy Affects Us All Chris Wysopal: Clicking to the Past http://www.securityfocus.com/columnists/483?ref=rss
]]> Mark Rasch: The Vice of Vice Presidential E-Mail http://www.securityfocus.com/columnists/482?ref=rss The Vice of Vice Presidential E-Mail Houston Carr: Blaming the Good Samaritan http://www.securityfocus.com/columnists/481?ref=rss Blaming the Good Samaritan More rss feeds from SecurityFocus http://www.securityfocus.com/rss/index.shtml News, Infocus, Columns, Vulnerabilities, Bugtraq ... http://seclists.org/#nmap-dev Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to Nmap and related projects. Fix for stack overflow in dns.luaPosted by David Fifield on Nov 19 message;... http://seclists.org/nmap-dev/2008/q4/0526.htmlhttp://seclists.org/nmap-dev/2008/q4/0526.html Wed, 19 Nov 2008 13:41:35 -0700 Re: nMapPosted by David Fifield on Nov 19 > > > Starting Nmap 4.11 ( ... http://seclists.org/nmap-dev/2008/q4/0525.htmlhttp://seclists.org/nmap-dev/2008/q4/0525.html Wed, 19 Nov 2008 12:57:50 -0700 Nmap - reliability of OS400 detectionPosted by Michael Condon on Nov 18 http://seclists.org/nmap-dev/2008/q4/0524.htmlhttp://seclists.org/nmap-dev/2008/q4/0524.html Tue, 18 Nov 2008 22:10:17 -0600 Re: Persistent NSE registryPosted by David Fifield on Nov 18 > nmap --script=whois -sP... http://seclists.org/nmap-dev/2008/q4/0523.htmlhttp://seclists.org/nmap-dev/2008/q4/0523.html Tue, 18 Nov 2008 19:40:46 -0700 Re: Port FilteredPosted by Ron on Nov 18 ... http://seclists.org/nmap-dev/2008/q4/0522.htmlhttp://seclists.org/nmap-dev/2008/q4/0522.html Tue, 18 Nov 2008 18:11:44 -0600 Re: [NSE] Local IP geolocation scriptPosted by Ron on Nov 18 It does <domain>\<computer>. If... http://seclists.org/nmap-dev/2008/q4/0521.htmlhttp://seclists.org/nmap-dev/2008/q4/0521.html Tue, 18 Nov 2008 18:09:06 -0600 Zenmap - Maimon ScanPosted by Michael Condon on Nov 18 http://seclists.org/nmap-dev/2008/q4/0520.htmlhttp://seclists.org/nmap-dev/2008/q4/0520.html Tue, 18 Nov 2008 16:47:24 -0600 Port FilteredPosted by Michael Condon on Nov 18 http://seclists.org/nmap-dev/2008/q4/0519.htmlhttp://seclists.org/nmap-dev/2008/q4/0519.html Tue, 18 Nov 2008 15:51:06 -0600 Re: nMapPosted by David Fifield on Nov 18 ... http://seclists.org/nmap-dev/2008/q4/0518.htmlhttp://seclists.org/nmap-dev/2008/q4/0518.html Tue, 18 Nov 2008 14:28:00 -0700 Re: [NSE] Local IP geolocation scriptPosted by Fyodor on Nov 18 > standard terminal window the script name is more than... http://seclists.org/nmap-dev/2008/q4/0517.htmlhttp://seclists.org/nmap-dev/2008/q4/0517.html Tue, 18 Nov 2008 13:05:15 -0800 nMapPosted by Chris Keith on Nov 18 First of all, I downloaded and installed nmap... http://seclists.org/nmap-dev/2008/q4/0516.htmlhttp://seclists.org/nmap-dev/2008/q4/0516.html Tue, 18 Nov 2008 12:52:48 -0800 Re: Persistent NSE registryPosted by Patrick Donnelly on Nov 18 > That is a... http://seclists.org/nmap-dev/2008/q4/0515.htmlhttp://seclists.org/nmap-dev/2008/q4/0515.html Tue, 18 Nov 2008 13:35:46 -0700 Re: [NSE] Local IP geolocation scriptPosted by Philipp Emanuel Weidmann on Nov 18 line which IMO is serious overkill. If the only concern... http://seclists.org/nmap-dev/2008/q4/0514.htmlhttp://seclists.org/nmap-dev/2008/q4/0514.html Tue, 18 Nov 2008 21:23:35 +0100 Re: Persistent NSE registryPosted by David Fifield on Nov 18 scans is the registry. Everything else can be... http://seclists.org/nmap-dev/2008/q4/0513.htmlhttp://seclists.org/nmap-dev/2008/q4/0513.html Tue, 18 Nov 2008 12:57:58 -0700 Re: [NSE] script IDsPosted by jah on Nov 18 >... http://seclists.org/nmap-dev/2008/q4/0512.htmlhttp://seclists.org/nmap-dev/2008/q4/0512.html Tue, 18 Nov 2008 19:42:05 +0000 http://seclists.org/#nmap-hackers Moderated list for announcements, patches, and light discussion regarding the Nmap Security Scanner and related projects. Nmap News: 4.76 release, Defcon presentation online, Is port scanning legal?Posted by Fyodor on Sep 23 improvements. If 4.75 is... http://seclists.org/nmap-hackers/2008/0005.htmlhttp://seclists.org/nmap-hackers/2008/0005.html Tue, 23 Sep 2008 13:11:16 -0700 Nmap 4.75 releasedPosted by Fyodor on Sep 8   actually draw you a map of the... http://seclists.org/nmap-hackers/2008/0004.htmlhttp://seclists.org/nmap-hackers/2008/0004.html Mon, 8 Sep 2008 14:14:31 -0700 Nmap 4.68 releasePosted by Fyodor on Jul 31 resolve in the next... http://seclists.org/nmap-hackers/2008/0003.htmlhttp://seclists.org/nmap-hackers/2008/0003.html Thu, 31 Jul 2008 23:06:28 -0700 Lots of Nmap NewsPosted by Fyodor on Jul 31 nmap-hackers... http://seclists.org/nmap-hackers/2008/0002.htmlhttp://seclists.org/nmap-hackers/2008/0002.html Thu, 31 Jul 2008 14:45:38 -0700 Nmap accepting applications for Summer of Code developersPosted by Fyodor on Mar 24 generous and innovative program... http://seclists.org/nmap-hackers/2008/0001.htmlhttp://seclists.org/nmap-hackers/2008/0001.html Mon, 24 Mar 2008 21:04:25 -0700 Nmap 4.50 (10th Anniversary Edition) releasedPosted by Fyodor on Dec 13 releases), and the first... http://seclists.org/nmap-hackers/2007/0004.htmlhttp://seclists.org/nmap-hackers/2007/0004.html Thu, 13 Dec 2007 11:42:05 -0800 Introducing the 2007 NmapGoogle Summer of Code Team!Posted by Fyodor on Apr 12 features developed in a... http://seclists.org/nmap-hackers/2007/0003.htmlhttp://seclists.org/nmap-hackers/2007/0003.html Thu, 12 Apr 2007 15:34:51 -0700 Nmap News: GoDaddy, 4.21ALPHA4, Google SoC, Training, and MorePosted by Fyodor on Mar 21  o New... http://seclists.org/nmap-hackers/2007/0002.htmlhttp://seclists.org/nmap-hackers/2007/0002.html Wed, 21 Mar 2007 15:26:50 -0700 Online Nmap training announcement and webinar invitationPosted by Professor Messer on Feb 20 materials. Based on your feedback, I'm now ready to... http://seclists.org/nmap-hackers/2007/0001.htmlhttp://seclists.org/nmap-hackers/2007/0001.html Tue, 20 Feb 2007 08:51:09 -0500 Latest Secunia Advisories http://secunia.com/ Secunia collects, evaluates, verifies, and analyses vulnerability information. Secunia.com http://secunia.com/gfx/logo.jpg http://secunia.com/ <![CDATA[ [2/5] KimsON Cross-Site Scripting Vulnerability ]]> http://secunia.com/Advisories/32779/ <![CDATA[ [3/5] Streamripper Multiple Buffer Overflow Vulnerabilities ]]> http://secunia.com/Advisories/32562/ <![CDATA[ [2/5] No-IP Linux Dynamic Update Client Buffer Overflow Vulnerability ]]> http://secunia.com/Advisories/32761/ <![CDATA[ [4/5] Free Directory Script "API_HOME_DIR" File Inclusion Vulnerability ]]> http://secunia.com/Advisories/32745/ <![CDATA[ [3/5] E-topbiz Link Back Checker "auth" Cookie Security Bypass ]]> http://secunia.com/Advisories/32659/ <![CDATA[ [3/5] MDaemon Server WorldClient Script Insertion Vulnerabilities ]]> http://secunia.com/Advisories/32142/ <![CDATA[ [2/5] Citrix XenServer Ext2/Ext3 Processing Security Bypass Vulnerability ]]> http://secunia.com/Advisories/32774/ <![CDATA[ [4/5] Ubuntu update for firefox, firefox-3.0, and xulrunner-1.9 ]]> http://secunia.com/Advisories/32778/ <![CDATA[ [4/5] Ubuntu update for libxml2 ]]> http://secunia.com/Advisories/32764/ <![CDATA[ [1/5] vBulletin SQL Injection Vulnerabilities ]]> http://secunia.com/Advisories/32775/ <![CDATA[ [1/5] vBulletin Calender SQL Injection Vulnerability ]]> http://secunia.com/Advisories/32735/ <![CDATA[ [1/5] Opera "file://" URI Handling Buffer Overflow Vulnerability ]]> http://secunia.com/Advisories/32752/ <![CDATA[ [3/5] mxCamArchive Information Disclosure and PHP Code Execution ]]> http://secunia.com/Advisories/32751/ <![CDATA[ [3/5] Jadu Galaxies "categoryID" SQL Injection Vulnerability ]]> http://secunia.com/Advisories/32733/ <![CDATA[ [2/5] Dovecot ManageSieve Directory Traversal Security Issue ]]> http://secunia.com/Advisories/32768/ http://seclists.org/#pen-test While this list is intended for "professionals", participants frequenly disclose techniques and strategies that would be useful to anyone with a practical interest in security and network auditing. Re: hash-injectionpass-the-hash countermeasurePosted by gum 5h03 on Nov 18 > authentication system for... http://seclists.org/pen-test/2008/Nov/0076.htmlhttp://seclists.org/pen-test/2008/Nov/0076.html Tue, 18 Nov 2008 19:57:32 -0800 Re: oscp training location??Posted by Pedro Drimel on Nov 19 > place.... http://seclists.org/pen-test/2008/Nov/0075.htmlhttp://seclists.org/pen-test/2008/Nov/0075.html Wed, 19 Nov 2008 09:29:22 -0200 Metasploit Framework 3.2 ReleasedPosted by H D Moore on Nov 19 ... http://seclists.org/pen-test/2008/Nov/0074.htmlhttp://seclists.org/pen-test/2008/Nov/0074.html Wed, 19 Nov 2008 03:39:47 -0600 Getting around mutual Certificate authentication using safenet 2032 tokens enforced in a webappPosted by Matthew Zimmerman on Nov 19 safenet 2032 tokens enforced... http://seclists.org/pen-test/2008/Nov/0073.htmlhttp://seclists.org/pen-test/2008/Nov/0073.html Wed, 19 Nov 2008 07:38:19 -0500 Re: SQLMAPPosted by Taras P. Ivashchenko on Nov 19 > -----... http://seclists.org/pen-test/2008/Nov/0072.htmlhttp://seclists.org/pen-test/2008/Nov/0072.html Wed, 19 Nov 2008 00:47:58 +0300 Re: OSCPPosted by Taras P. Ivashchenko on Nov 18 > but does it have the same recognition as... http://seclists.org/pen-test/2008/Nov/0071.htmlhttp://seclists.org/pen-test/2008/Nov/0071.html Tue, 18 Nov 2008 23:47:49 +0300 Re: OSCPPosted by Robin Wood on Nov 18 ... http://seclists.org/pen-test/2008/Nov/0070.htmlhttp://seclists.org/pen-test/2008/Nov/0070.html Tue, 18 Nov 2008 19:44:35 +0000 Re: oscp training location??Posted by Gmail on Nov 18 > There has been many discussion about OSCP , but I had... http://seclists.org/pen-test/2008/Nov/0069.htmlhttp://seclists.org/pen-test/2008/Nov/0069.html Tue, 18 Nov 2008 14:28:20 -0500 Re: oscp training location??Posted by m0rebel on Nov 18 channel is also very... http://seclists.org/pen-test/2008/Nov/0068.htmlhttp://seclists.org/pen-test/2008/Nov/0068.html Tue, 18 Nov 2008 14:10:10 -0500 Re: OSCPPosted by Chris Griffin on Nov 18 > SANS also has... http://seclists.org/pen-test/2008/Nov/0067.htmlhttp://seclists.org/pen-test/2008/Nov/0067.html Tue, 18 Nov 2008 14:14:14 -0500 Re: OSCPPosted by J. Oquendo on Nov 18 > And if one program reports an OS detection of a router... http://seclists.org/pen-test/2008/Nov/0066.htmlhttp://seclists.org/pen-test/2008/Nov/0066.html Tue, 18 Nov 2008 12:32:18 -0600 oscp training location??Posted by Daniel Curry on Nov 18 http://seclists.org/pen-test/2008/Nov/0065.htmlhttp://seclists.org/pen-test/2008/Nov/0065.html Tue, 18 Nov 2008 10:42:43 -0800 Re: OSCPPosted by acey deucey on Nov 18 > CISSP anyday; why and... http://seclists.org/pen-test/2008/Nov/0064.htmlhttp://seclists.org/pen-test/2008/Nov/0064.html Tue, 18 Nov 2008 11:31:51 -0500 Re: Re: OSCPPosted by prdiez_at_gmail.com on Nov 18 I would take the two of them. As stated by others, they are two different certifications aimed at different objectives. The CISSP is more oriented to the general knowledge in the 10 domains covered; the OSCP is more a technical certification... http://seclists.org/pen-test/2008/Nov/0063.htmlhttp://seclists.org/pen-test/2008/Nov/0063.html 18 Nov 2008 14:18:58 -0000 RE: OSCPPosted by John Babio on Nov 18 Cc:... http://seclists.org/pen-test/2008/Nov/0062.htmlhttp://seclists.org/pen-test/2008/Nov/0062.html Tue, 18 Nov 2008 07:34:41 -0500 SANS Internet Storm Center, InfoCON: green http://isc.sans.org SANS Internet Storm Center http://isc.sans.org/images/status.gif http://isc.sans.org Infocon: green http://isc.sans.org/diary.php?rss Are We Doomed? Are We Doomed?, (Wed, Nov 19th) http://isc.sans.org/diary.php?storyid=5372&rss In no particular order: ...(more)... How to Handle DDoS Incidents?, (Wed, Nov 19th) http://isc.sans.org/diary.php?storyid=5375&rss The incident handling cheat sheets in an earlier diary applied to many types of security incidents. ...(more)... An Ad for DDoS Services - Network, Phone, Competition, (Wed, Nov 19th) http://isc.sans.org/diary.php?storyid=5380&rss The oldfashioned way to launch a network DDoS attack involved building one's own bot network that wo ...(more)... 2 Cheat Sheets for Incident Handling, (Wed, Nov 19th) http://isc.sans.org/diary.php?storyid=5354&rss Maybe your syste ...(more)... Security Awareness Training is Boring, (Wed, Nov 19th) http://isc.sans.org/diary.php?storyid=5369&rss I love the directness of Marcum Ranum's perspective on security awareness training. If it was ...(more)... Nessus.org Plugins http://www.nessus.org/scripts.php All the newest security checks for the Nessus scanner Nessus Plugins http://www.nessus.org/images/RssLogo.jpg http://www.nessus.org/ Adobe AIR APSB08-23 / APSB08-22 / APSB08-20 / APSB08-18 (CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)]]> http://www.nessus.org/plugins/index.php?view=single&id=34815 SuSE Security Update: squirrelmail: session hijacking vulnerability (squirrelmail-5778) High]]> http://www.nessus.org/plugins/index.php?view=single&id=34814 SuSE Security Update: phpMyAdmin: multiple securty issues were fixed (phpMyAdmin-5781) High]]> http://www.nessus.org/plugins/index.php?view=single&id=34813 SuSE Security Update: lighttpd: fixed CVE-2008-4298, CVE-2008-4359 and CVE-2008-4360 (lighttpd-5785) High]]> http://www.nessus.org/plugins/index.php?view=single&id=34812 RHSA-2008-0988: libxml Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34811 [DSA1666] DSA-1666-1 libxml2 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34810 Solaris 10 (i386) : 138877-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34809 Solaris 10 (i386) : 138374-02 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34808 Solaris 10 (i386) : 138362-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34807 Solaris 10 (i386) : 138323-02 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34806 Solaris 10 (i386) : 138270-02 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34805 Solaris 10 (i386) : 138266-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34804 Solaris 10 (i386) : 138254-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34803 Solaris 10 (i386) : 138224-02 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34802 Solaris 10 (i386) : 138105-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34801 Solaris 10 (i386) : 137138-09 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34800 Solaris 10 (i386) : 137122-03 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34799 Solaris 10 (sparc) : 138876-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34798 Solaris 10 (sparc) : 138387-01 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34797 Solaris 10 (sparc) : 138373-02 Risk factor : High]]> http://www.nessus.org/plugins/index.php?view=single&id=34796 SecuriTeam http://www.securiteam.com Beyond Security will help you expose your security holes and will show you what the bad guys already know about your hosts and network. Use our Automated Scanning service to perform a full security audit of your site, and find the latest security news and tools on Beyond Security's SecuriTeam web site. SecuriTeam.com http://www.securiteam.com/beyond-logo-small.png http://www.securiteam.com Checkpoint VPN-1 PAT Information Disclosure http://www.securiteam.com/securitynews/6U00B2AN5W.html VMware Emulation Flaw x64 Guest Privilege Escalation (IRET) http://www.securiteam.com/securitynews/6U00D0AN5G.html Openfire Jabber-Server Multiple Vulnerabilities http://www.securiteam.com/securitynews/6T00C0AN5G.html ClamAV get_unicode_name() Off-By-One Buffer Overflow http://www.securiteam.com/securitynews/6S00B0AN5E.html 2WIRE DSL Router (xslt) Denial of Service Vulnerability http://www.securiteam.com/securitynews/6Q0042KN5K.html MP3 TAG Fuzzer http://www.securiteam.com/tools/6W00D2AN5O.html PDFuzzer - PDF File Standard Fuzzer http://www.securiteam.com/tools/6R0052KN5I.html Miranda - UPNP Administration and Audit Tool http://www.securiteam.com/tools/6N0012KN5Q.html CVS Fuzzer http://www.securiteam.com/tools/6Q0060KN5O.html SSHFuZZ - Perl Based SSH Fuzzer http://www.securiteam.com/tools/6V00N2KMUS.html VLC Media Player RealText Processing Stack Overflow Vulnerability http://www.securiteam.com/unixfocus/6S0062KN5U.html LibSPF2 DNS TXT Record Parsing Bug http://www.securiteam.com/unixfocus/6N0020KN6U.html GNU Enscript "setfilename" Special Escape Buffer Overflow http://www.securiteam.com/unixfocus/6M0010KN6G.html File-Find-Object Format String Vulnerability http://www.securiteam.com/unixfocus/6S00L20MUE.html Veritas Storage Foundation Arbitrary File Read Vulnerability http://www.securiteam.com/unixfocus/6D00N0UMUK.html Microsoft Windows Active Directory LDAP Server Information Disclosure Vulnerability http://www.securiteam.com/windowsntfocus/6V00C2AN5S.html Vulnerabilities in Microsoft XML Core Services Allow Code Execution (MS08-069) http://www.securiteam.com/windowsntfocus/6E00D0KN5W.html Vulnerability in SMB Allows Code Execution (MS08-068) http://www.securiteam.com/windowsntfocus/6C00B0KN5K.html Multiple Vendor NOS Microsystems getPlus Downloader Stack Buffer Overflow Vulnerability http://www.securiteam.com/windowsntfocus/6U0082KN5Y.html Orb Media Server Directory Traversal http://www.securiteam.com/windowsntfocus/6T0072KN5W.html Opera file:// Overflow http://www.securiteam.com/exploits/6X00E2AN5M.html Stack-Based Buffer Overflow in the Network Manager of Castle Rock Computing (SNMPc) http://www.securiteam.com/exploits/6F00E0KN5O.html PacketTrap TFTPD DoS http://www.securiteam.com/exploits/6T00L2KMUI.html Vulnerability in Server Service Allows Code Execution (MS08-067, PoC) http://www.securiteam.com/exploits/6W00L15MUQ.html Microsoft Windows AFD.sys Privilege Escalation (Kartoffel Plugin, Exploit, MS08-066) http://www.securiteam.com/exploits/6O00C1PMUE.html Hacking SOHO Routers http://www.securiteam.com/securityreviews/6D00C0KN5S.html Reflective Dll Injection http://www.securiteam.com/securityreviews/6P0050KN5U.html Achieving Persistent HTML Injection via SNMP on Embedded Devices http://www.securiteam.com/securityreviews/6B00L0UMUW.html Lateral SQL Injection: a New Class of Vulnerability in Oracle http://www.securiteam.com/securityreviews/5QP0N20O0Y.html Microsoft Windows DNS Stub Resolver Cache Poisoning (MS08-020) http://www.securiteam.com/securityreviews/5QP022KO1E.html http://seclists.org/#basics A high-volume list which permits people to ask "stupid questions" without being derided as "n00bs". I recommend this list to network security newbies, but be sure to read Bugtraq and other lists as well. Re: Hardware FirewallPosted by Francois Yang on Nov 18 Gartner's magic quadrant. Do... http://seclists.org/basics/2008/Nov/0187.htmlhttp://seclists.org/basics/2008/Nov/0187.html Tue, 18 Nov 2008 09:21:34 -0600 Re: Hardware FirewallPosted by Craig Van Tassle on Nov 18 > view, using at the present time PIX firewalls... http://seclists.org/basics/2008/Nov/0186.htmlhttp://seclists.org/basics/2008/Nov/0186.html Tue, 18 Nov 2008 09:23:09 -0600 amount of money stolen using ATM scamsfraudPosted by Ali Saqib on Nov 18 http://seclists.org/basics/2008/Nov/0185.htmlhttp://seclists.org/basics/2008/Nov/0185.html Tue, 18 Nov 2008 21:35:53 -0800 RE: Hardware FirewallPosted by Earl Ogden on Nov 18 -----Original... http://seclists.org/basics/2008/Nov/0184.htmlhttp://seclists.org/basics/2008/Nov/0184.html Tue, 18 Nov 2008 10:35:06 -0800 RE: Firewalls and PCIPosted by Anthony_Cicalla_at_McAfee.com on Nov 18 of the time. Do a proper code review of your web application and make... http://seclists.org/basics/2008/Nov/0183.htmlhttp://seclists.org/basics/2008/Nov/0183.html Tue, 18 Nov 2008 10:12:59 -0800 Re: Hardware FirewallPosted by Ivan . on Nov 18 On Tue,... http://seclists.org/basics/2008/Nov/0182.htmlhttp://seclists.org/basics/2008/Nov/0182.html Tue, 18 Nov 2008 11:11:25 +1100 Web Content filteringPosted by Ivan . on Nov 18 or Clearswift offer... http://seclists.org/basics/2008/Nov/0181.htmlhttp://seclists.org/basics/2008/Nov/0181.html Tue, 18 Nov 2008 15:33:41 +1100 Re: Hardware FirewallPosted by Kelly Keeton on Nov 18 reputable hardware firewalls here is some to... http://seclists.org/basics/2008/Nov/0180.htmlhttp://seclists.org/basics/2008/Nov/0180.html Tue, 18 Nov 2008 09:05:10 -0800 RE: Hardware FirewallPosted by David Crandell on Nov 18 I love the ASDM configuration interface. It makes the device... http://seclists.org/basics/2008/Nov/0179.htmlhttp://seclists.org/basics/2008/Nov/0179.html Tue, 18 Nov 2008 12:55:17 -0600 RE: Hardware FirewallPosted by Rajaie Issaid on Nov 18 To:... http://seclists.org/basics/2008/Nov/0178.htmlhttp://seclists.org/basics/2008/Nov/0178.html Tue, 18 Nov 2008 08:49:50 +0200 Re: TruecryptPosted by Alexander Klimov on Nov 19 Be careful what programs you install: malware (or... http://seclists.org/basics/2008/Nov/0177.htmlhttp://seclists.org/basics/2008/Nov/0177.html Wed, 19 Nov 2008 16:12:53 +0200 (IST) Re: Hardware FirewallPosted by Ale x on Nov 18 antivirus/antispam, etc.. Fair enough a router... http://seclists.org/basics/2008/Nov/0176.htmlhttp://seclists.org/basics/2008/Nov/0176.html Tue, 18 Nov 2008 19:41:41 +1100 Re: Web Traffic Security and EavesdroppingPosted by mojorising on Nov 17 > simplest way can be to... http://seclists.org/basics/2008/Nov/0175.htmlhttp://seclists.org/basics/2008/Nov/0175.html Mon, 17 Nov 2008 15:53:18 -0800 Hardware FirewallPosted by h.carpentier_at_yahoo.co.uk on Nov 17 I am very familiar... http://seclists.org/basics/2008/Nov/0174.htmlhttp://seclists.org/basics/2008/Nov/0174.html Mon, 17 Nov 2008 14:40:50 -0700 RE: Some Questions about the firewall selectionPosted by Murda Mcloud on Nov 18 > >From:... http://seclists.org/basics/2008/Nov/0173.htmlhttp://seclists.org/basics/2008/Nov/0173.html Tue, 18 Nov 2008 09:06:11 +1000 http://seclists.org/#jobs A popular list for advertising or finding jobs in the security field. Employers post openings and job seekers post resumes (run by SecurityFocus). For privacy reasons, only the current year is archived. [SJ-JOB] Manager, Information Security, Bedford HeightsPosted by aduncan_at_securestate.com on Nov 18 Position: Manager,... http://seclists.org/jobs/2008/Nov/0036.htmlhttp://seclists.org/jobs/2008/Nov/0036.html 18 Nov 2008 00:10:28 -0000 [SJ-JOB] Software Engineer, St. PaulPosted by nomail_at_securityfocus.com on Nov 18 Position: Software... http://seclists.org/jobs/2008/Nov/0035.htmlhttp://seclists.org/jobs/2008/Nov/0035.html 18 Nov 2008 00:10:28 -0000 [SJ-JOB] Penetration Engineer, San FranciscoPosted by Phanmaly.Somsanith_at_sf.frb.org on Nov 18 Position: Penetration... http://seclists.org/jobs/2008/Nov/0034.htmlhttp://seclists.org/jobs/2008/Nov/0034.html 18 Nov 2008 00:10:25 -0000 [SJ-JOB] Security Consultant, San FranciscoPosted by Phanmaly.Somsanith_at_sf.frb.org on Nov 18 Position: Security... http://seclists.org/jobs/2008/Nov/0033.htmlhttp://seclists.org/jobs/2008/Nov/0033.html 18 Nov 2008 00:10:26 -0000 [SJ-JOB] Compliance Officer, Pentagon CityPosted by andrea.rodway_at_knowledgecg.com on Nov 18 Position: Compliance... http://seclists.org/jobs/2008/Nov/0032.htmlhttp://seclists.org/jobs/2008/Nov/0032.html 18 Nov 2008 00:10:28 -0000 [SJ-JOB] Sr. Security Engineer, St LouisPosted by dee_at_qualifiedconsultantsllc.com on Nov 18 Position: Sr. Security... http://seclists.org/jobs/2008/Nov/0031.htmlhttp://secli