Comments for Open Source Security

Comment on Metasploit Training by Raphael Mudge by Matthias Buchner

Matthias Buchner — Tue, 05 Jul 2011 15:59:08 +0000

I also posted on my blog about the training. I made a screencast of the lab that you will be able to find there.

http://codebazaar.blogspot.com/2011/06/introduction-to-metasploit-and-armitage.html

Comment on Gnome 3 by Emily Ratliff

Emily Ratliff — Wed, 22 Jun 2011 16:26:42 +0000

Apparently, the graphics driver for my virtual machine is insufficient, so when I first log on to a newly installed Fedora 15 it frowns at me and throws the error message that it is going into fallback mode. This will create a lasting impression.

Comment on Security Apocalypse by pIrlanta

pIrlanta — Sat, 18 Jun 2011 07:14:23 +0000

hackers always win the battle. simple math: 100000 hackers vs 1 firewall who win ? ))

Comment on Weak passwords – curable with pam_cracklib by p?rlanta

p?rlanta — Sat, 18 Jun 2011 07:12:21 +0000

lol evaletleri i use q1w2e3r4t5 too

Comment on Security Apocalypse by Emily Ratliff

Emily Ratliff — Sun, 12 Jun 2011 03:36:09 +0000

IMF – hacked
http://www.reuters.com/article/2011/06/12/imf-cyberattack-idUSN119943120110612

Comment on Security Apocalypse by Emily Ratliff

Emily Ratliff — Thu, 09 Jun 2011 12:59:00 +0000

Citibank – hacked
http://www.theregister.co.uk/2011/06/09/citibank_hack_attack/

Comment on Weak passwords – curable with pam_cracklib by evaletleri

evaletleri — Sat, 04 Jun 2011 08:43:40 +0000

qwerty and q1w2e3r4t5 is my favorite

Comment on Bin Laden’s Computer by johann

johann — Fri, 20 May 2011 14:41:00 +0000

It didn’t seem they were that security saavy. One report I read their email security was essentially Osama writing orders out to a document, storing it on a usb key, and then having a courier go to an internet cafe and email out information from the usb key.

With ways to integrate encryption to gmail, through greasemonkey scripts and things like TOR one could create a much more secure network if one were so inclined.

Though I think TOR was just compromised with some honeypot exit nodes.

Comment on Bare Metal Versus Hosted Hypervisor Security by Klaus Heinrich Kiwi

Klaus Heinrich Kiwi — Wed, 18 Aug 2010 15:12:50 +0000

Hey George,
I completely agree.

Network port sharing with bridges, as a simple example, should be clearly part of the TCB and is often done in a privileged guest in Type I hypervisors.

Speaking of which, I guess this whole concept of “privileged guest” that is common among Type I hypervisors must be taken into account when looking into virtualization security.

And also the fact that “bare metal” hypervisors doesn’t necessarily mean it’s a thinner layer.

Comment on Cryptographic Snake Oil by Snake-oil security claims on crypto security product at Playhouse of privacy, security, hacking, encryption, intelligence and some business stuff

Mon, 19 Jul 2010 20:35:34 +0000

[...] can see this very good Cryptographic Snake Oil Examples by Emility Ratliff (IBM Architect at Linux Security), that tried to make clear example on how to [...]