Operating Systems
Unpatched Windows Zero-Day Vulnerability Confirmed
January 06, 2011 Added by:Headlines
Windows XP, Vista, Server 2003 and Server 2008 are vulnerable to the exploit, where a malformed thumbnail contained in a document could cause the targeted PC to be infected if the document was opened or even previewed...
Comments (0)
Hackers Crack the PS3 and Multi-touch iPod Nano
January 03, 2011 Added by:Headlines
The PS3 has been a veritable fortress since it came on the market in 2006, but a team of hackers has found a vulnerability in the unit's software that allows a bypass of the console's operating system...
Comments (0)
Is Sandboxing the End-All Solution?
January 01, 2011 Added by:Dan Dieterle
When you have millions of lines of code, like you have in an Operating System, you will have bugs. Hackers can use these coding bugs to create exploits. Microsoft and Adobe products have been a favorite target for hackers. But how do you protect software from hackers when there are unknown bugs?
Comments (1)
Using Temporary Files in Linux Scripts Securely
December 07, 2010 Added by:Jamie Adams
Some sysadmins who write scripts might store sensitive data in temporary files, don't restrict access to temporary files, and might forget to remove them from the system when they are no longer needed. In many cases, they use them when it isn't even necessary...
Comments (0)
Sandboxing: Understanding System Containment
November 29, 2010 Added by:Jamie Adams
The idea of containment within an operating system is sometimes referred to as sandboxing. Some of the more popular technologies specifically designed to accomplish this come to mind: FreeBSD jails, Solaris Containers (including Solaris Zones), and SUSE Linux's AppArmor...
Comments (5)
Mac Users Get Massive Security Wake Up Call
November 18, 2010 Added by:Headlines
Mac users, who have have long been used to lambasting Windows users over security issues, are getting a big dose of exploit reality this week as Apple releases fixes for 134 vulnerabilities. The record-breaking patch release for Mac OS dwarfs Microsoft's record of 49 patches...
Comments (0)
Which Linux or UNIX Version Am I Running?
November 17, 2010 Added by:Jamie Adams
Linux distributions are built off of standard kernels but are packaged and bundled differently. Some distributions are Debian-based while others might be Red Hat-based. The collection of packages and how the packages were compiled and delivered are what make Linux distributions unique...
Comments (2)
Mac Users Beware
November 12, 2010 Added by:Mark Baldwin
There is a widespread belief that Mac OS X is inherently more secure than Windows and that by using a Mac, one is protected from all threats. Unfortunately, not only is this not true, it is dangerous, as it leads people to not take appropriate precautions to protect their computers...
Comments (1)
Dangers of Self-Managed Development Environments
November 03, 2010 Added by:Jamie Adams
I have seen developers relax security controls during unit development only to be bewildered when full integration testing fails. Many database administrators have strict controls which developers must adhere to. Why isn't it the same when it comes to base operating system resources?
Comments (3)
Attacking an Unpatched Windows 2008 Server
October 28, 2010 Added by:Bozidar Spirovski
We will use a Windows 2008 target for this demonstration because even if it was released in 2008, and we now have the R2 version, a lot of companies are just starting to implement it. The attack is based on two well known vulnerabilities based on SRV2.SYS driver...
Comments (0)
Using Windows XP Drop My Rights Utility
October 25, 2010 Added by:Robb Reck
Drop My Rights is a free Windows XP utility offered by Microsoft that allows you to be logged into your computer as an administrator while running high risk programs like Internet Explorer, Firefox and Outlook with reduced privileges...
Comments (2)
Microsoft Patch Disclosure Summary - October 2010
October 25, 2010 Added by:Bozidar Spirovski
Remote Code Execution vulnerabilities, Elevation of Privilege vulnerabilities, Information Disclosure vulnerability, Denial of Service condition, Information Tampering scenario...
Comments (0)
Implementing Linux File Systems Sensibly
October 13, 2010 Added by:Jamie Adams
Linux file systems are an essential operating system resource. Modern file systems and disk drive technology are robust and reliable — so, most administrators put little effort into planning or worrying about them once the operating system is configured. This makes me both smile and cringe...
Comments (4)
Broken Links in Linux File Systems Can Be BAD
October 10, 2010 Added by:Jamie Adams
Broken links are not only annoying little Tribbles which consume file system resources, they also pose a security risk in the form of a Trojan Horse. A good system administrator will try to control these by using best practices, common sense, and educating their users...
Comments (0)
Keeping Linux File Systems Clean and Secure
October 06, 2010 Added by:Jamie Adams
The term clean is also associated with performing file system checks to ensure structural integrity with tools such as fsck.ext3(8). In addition to these critical activities, you should routinely "clean" file system access controls — ownerships and permissions...
Comments (0)
Linux Clusters: Keeping Nodes Securely Configured
October 04, 2010 Added by:Jamie Adams
Survivability is defined as the capability of a system to fulfill its mission, in a timely manner, in the presence of attacks, failures, or accidents. As a discipline, survivability builds on related fields of study such as security, fault tolerance, reliability, and performance...
Comments (2)
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox
- The Emperor Is Naked!
- Infographic: Keeping Web Applications Safe
- Do You Have a Vendor Security Check List? You Should!