News (51)

Gmail cookie vulnerability exposes user's privacy

Petko Petkov of ethical hacking group GNUCitizen, has developed a proof-of-concept program to steal contacts and incoming e-mails from Google Gmail users. Read more »

Developers take Linux attacks to heart

A handful of recent online attacks on free and open-source software servers has open-source developers looking over their shoulders. Read more »

Malicious software disguised as Skype Defender

Skype is sounding the security alert, and users should take note before using the Internet calling service. Read more »

Salesforce staff speared by phishers

Salesforce.com has revealed few details about a security breach caused by a phishing attack against an employee that surrended internal customer database details. Read more »

DNS disaster: first attacks reported

The first attacks that are likely to have stemmed from a serious Domain Name System flaw have been reported. Read more »

Government targets itself with phishing attack

Governments have had to target themselves with phishing attacks in order to highlight weak points in their security and protect national secrets from espionage, according to a report published this week by Sans. Read more »

DNS servers 'vulnerable to attack'

Many DNS servers are wrongly configured or running out-of-date software, leaving them vulnerable to malicious attacks, according to a survey published on Monday. Read more »

Massive SQL-based Web attack decoded

The SANS Internet Storm Center has published details about the massive SQL-based Web attack that occurred over the weekend. Read more »

Microsoft probing ActiveX attacks targeting Access feature

Microsoft has issued a security advisory warning about targeted attacks being launched that exploit a hole in the ActiveX control for the Snapshot Viewer in the Microsoft Access database management system. Read more »

Adobe Flash exploit could log keystrokes

Adobe has issues three critical security updates, one of which is designed to stop a problem in the way the Flash player interacts with browsers, which could result in users' keystrokes being transmitted to attackers. Read more »

More Attack, Log News Results

Features (37)

Mitigate the effects of a DDoS attack

You can't thwart a DDoS attack -- they attack an IP address or service that's available to the Internet. If you can't prevent such an attack, what can you do to protect your organisation? Read more »

Log Linux services with runit

Each supervised service is controlled via a run script, similar to an init script for a system service. This run script does one thing: prepares for and starts a service. Read more »

Protect IIS log files by moving them to a secure location

Internet Information Services (IIS) continues to be a favorite target for hackers. Make their job harder by moving IIS' log files to a secure remote location. Mike Mullins tells you how in this edition of Security Solutions. Read more »

Specify who can log in via OpenSSH

The OpenSSH suite of tools, developed by the OpenBSD Project, includes popular programs that serve many uses. This popularity combined with ssh availability as both server and client on just about every OS makes it no wonder that ssh has been the target of common attacks. Read more »

50 significant moments from internet history

We take you through 50 defining moments of the internet. Read more »

10+ things you should know about rootkits

Malware-based rootkits fuel a multibillion dollar spyware industry by stealing individual or corporate financial information. If that weren't bad enough, rootkit-based botnets generate untold amounts of spam. Here's a look at what rootkits are and what to do about them. Read more »

Realise the flexibility of OpenSSH

OpenSSH is one of the most useful tools available. With it, you can access systems remotely and securely, transfer files securely, execute single commands on remote systems, secure normally insecure services, and much more. Read more »

Detect intruders on your network with Snort

Snort is a Network Intrusion Detection System (NIDS), which can view and analyse packets on a network to determine whether or not a system is being attacked by remote. Read more »

HTTP and HTML: The paradox of dominance

The saying, "When all you have is a hammer, every problem looks like a nail," makes me think of the mess that we're in when it comes to the dominance of HTML and HTTP. Read more »

Set up user accounts quickly and securely

When you need to set up a user account to give a user shell access to the system, the only logical choice of login tool is OpenSSH. With SSH keys, all you need from the user is his SSH public key, and all he needs from you is the IP address or hostname with which to log in. Usually, this is sufficient. Read more »

More Attack, Log Features Results

Blog (1)

One ID to rule them all

Lana Kovacevic [blogs:webanatomy] -- OpenID is an open-source mechanism enabling you to use a single online identity to log-in to different websites that support OpenID. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

  • Staff Crying, mooning and leaving

    In this week's roundup we see that continuous whining can get results, Linux users get 64-bit Flash and Moonlight previews, the latest in the Yahoo/Microsoft relationship and Senator Conroy ducks and weave in Senate Question Time. Read more »

    -- posted by Staff

  • Brendon Chase Sun eye Web developers with Netbeans 6.5

    Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »

    -- posted by Brendon Chase

  • Renai LeMay BarCamp buzz: Let the hacking continue

    Attending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »

    -- posted by Renai LeMay

What's on?