I ran across a pretty sweet product today. It is called Yoggie Pico and it is a security suite for your laptop that is based off of a USB stick. It is a hardened Linux box running off a 520MHz processor is a USB stick. It is supposed to provide all of the security you need […]
There are two major Denial-of-Service (DoS) advisories out today.
Cisco IOS SSL Vulnerability
Affects:
Hyper Text Transfer Protocol over SSL (HTTPS). This is the most commonly used protocol that employs SSL.
Cisco Network Security (CNS) Agent with SSL support
Firewall Support of HTTPS Authentication Proxy
Cisco IOS Clientless SSL VPN (WebVPN) support
Cisco Crypto Library Vulnerability
Affects:
Cisco IOS
Cisco IOS XR
Cisco PIX and […]
Right now I am trying to determine if I should continue on with this site. The hosting provider renewal is coming up and I am not sure if I should renew or not.
I would like some feedback from readers of this blog. Do you find this website helpful? Would you like me to continue this […]
Need to burn an ISO to CD but don’t want to burn third party software to do it? Check out ISO Recorder, it allows you to right-click on an ISO and burn it to CD. There is a version of this software for Windows XP and Vista. It supports DVD recording and CD recording. Best of […]
The U.S. Computer Emergency Response Team (US-CERT) has reported a network evasion technique using full-width and half-width unicode characters that affects several Cisco products. The US-CERT advisory is available at the following link:
http://www.kb.cert.org/vuls/id/739224
By encoding attacks using a full-width or half-width unicode character set, an attacker can exploit this vulnerability to evade detection by an […]
The Cisco IOS FTP Server feature contains multiple vulnerabilities that can result in a denial of service (DoS) condition, improper verification of user credentials, and the ability to retrieve or write any file from the device filesystem, including the device’s saved configuration. This configuration file may include passwords or other sensitive information.
The IOS FTP Server […]
I ran across a pretty sweet article on how to access most blocked websites from places that use website filtering software.
Quick Breakdown:
-Use a website anoymizer
-Access the Website by IP instead of URL
-Use a service like tinyurl.com
-Use Google Mobile Search
-Search for Page in Google then go to the cached copy
-Use Google language tools service to […]
So AOL doesn’t really have a password monster but they will effectively eat part of your password. It turns out that even though AOL lets you put up to a 16 character password in for your AOL.com account it only reads the first 8. So if you put in password$&355# thinking that is a strong […]
I have been looking far and wide for a good free file transfer program (not FTP, different protocol) for Amazon S3. S3 only has an API not an interface for you to upload your files. Since I am not a developer and can’t make a program to use their API I need to find one. […]
Cisco confirms the memory exhaustion vulnerability as per the advisory published by CERT/CC and confirms this vulnerability impacts the PIX and ASA appliance for system software 7.2 only. Exploitation of the vulnerability may lead to a Denial of Service condition against the appliance.
The Firewall Services Module (FWSM) is not affected by this vulnerability.
PSIRT would […]
RSS Feed
