Thursday, July 28, 2005

Cisco pulls an HP

Cisco, ISS file suit against rogue researcher. While none of the content Mr Lynn was presenting was necessarily groundbreaking and in some cases really needed to be fixed by Cisco, I still find it hysterical that Cisco would actually try and stop the presentation. For a company that's trying to assert itself as a major security vendor they're trying to cover up relevant information that customers should really know about. This is similar to the time that HP tried to sue Fatelabs for some really retarded exploits that they had found in Digital Unix.

Additionally:
Netsec blog
Washington Post

Monday, July 25, 2005

Sieve Networks

Sieve Networks .. Milwaukee based firm.. I hear they have a decent person or two.

Cisco Systems Critical Infrastructure Assurance Group

Here's a quick online howto for securing Cisco routers. Not too shabby..

Sunday, July 24, 2005

LinksysWrt54g - SeattleWireless

Here's a hack to put Linux on your linksys Wrt54g home wireless cable router. I haven't tried but seems pretty interesting, although personally I'd prefer it to be running FreeBSD and ipfw2 but that's just me..

For the lazy..

Here's a recommend reverse remote shell. It's quite a few helpful features including twofish, xor, and OpenSSL support for encrypted tunnels. But if you're interested in the above, this might be good for you as well.

Thursday, July 21, 2005

Remote Desktop Web Connection

Remote Desktop Web Connection

For the real geeks..

Ok, so everyone needs an inner geek to release so why not read the Stargate Blog.

Monday, July 18, 2005

Useful Visio template

A friend sent me a link
to this today. Definitely a more effective usage of Visio rather than lame network drawings. Its for the CSI wannabe in everyone.

Friday, July 08, 2005

klister

Simple tool for Windows 2000 which list the processes from the kernel then query via the native API to do a comparison. Also check out Blacklight from Fsecure or rootkit revealer from sysinternals.com.

sk8 goes to prison

Jerome Heckenkamp, aka "sk8", was sentenced in April for his previous eBay and Qualcomm intrusions. He'll be turning himself over next week. The hacker had previously claimed he was innocent and went to some extremes of even defending himself and trying to get off with minor technicalities but last January guilty and decided to pay up.

Thursday, July 07, 2005

The neverending blackhole of government regulations

CIO had a pretty good article over why SOX is eating up IT budgets and has even gotten worse for year 2 auditees, but of course the external auditors are so subjective in their approach that they keep making life a bigger hellf for everyone.

Tuesday, July 05, 2005

Vonage® VoIP Forum Forums - Post 1060 - FreeBSD ipfw traffic shapping rules

Vonage® forums have a couple of a examples of QoS with IPFW to make sure your phone gets all the packets it needs.

TaoSecurity: 01/01/2004 - 01/31/2004

Basic HowTo on configuring FreeBSD for the ng_netflow modules and turning on netflow for FreeBSD. More to come...

Friday, July 01, 2005

Reverse engineering patches making disclosure a moot choice?

Going off Halvar's demonstration from an earlier post; this article makes it obvious even to the layman that patches are just as damaging as full disclosure advisories.