I.T. Security and Linux Administration:

November, 2012

1

November 30, 2012  8:27 PM

To Release, or Not Release Full Disclosures?



Posted by: Eric Hansen
security

Wired posted an interesting article this month discussing the benefits and losses of hackers releasing exploits out into the wild and to vendors.  Some of...

November 30, 2012  8:03 PM

Security Precuation In Programming: Validate User Input



Posted by: Eric Hansen
security

When most people think of validating user input, the first thing to come to mind is making sure a string is a string, numbers are numbers and dates are proper.  But does it stop there?  Let's have Facebook decide. It seems there's a new exploit available for their chat system, and it's not...


November 30, 2012  6:19 PM

Proper Firewall Management: Part 1 – Introduction To fail2ban



Posted by: Eric Hansen
security

As a short series, I will be showcasing some firewall tips and tricks on what to (not) do if you want to secure your network.  The first of which is going to be an overview for a very helpful log analyzer, fail2ban.  There's other programs out there, such as logwatch, that monitor logs and ensure...


November 30, 2012  5:52 PM

Proper Handling of Phishing



Posted by: Eric Hansen
security

SANS recently put up an article involving handling phishing attacks within the network: https://isc.sans.edu/diary.html?storyid=14578 While most of the points are sensible, and should be what everyone follows, there is one that I...


November 28, 2012  5:30 PM

The Flaws in New Designs



Posted by: Eric Hansen
security

http://news.yahoo.com/windows-8-terrible-says-usability-expert-jakob-nielsen-174300612.html While I normally don't nod my head with excitement at what 'experts' say, from personal account of previously using Windows 8, some of the points are valid. On the PC, navigating through is pretty...


November 28, 2012  5:09 PM

Be More Productive, Use Less Facebook



Posted by: Eric Hansen
security

There's a nifty extension to Chrome called Facebook Nanny: https://chrome.google.com/webstore/detail/facebook-nanny/gkpjofmdbabecniidggbbicfbcmfafmk This is a nice little plugin in that unless you have notifications from Facebook, a message will show up instead disabling use of Facebook.  If...


November 28, 2012  3:56 PM

The operating system of Call of Duty is….



Posted by: Eric Hansen
security

...looking like it's going to be Windows, according to Slashdot. For those who aren't familiar with Call of Duty and it's release cycle, a new...


November 28, 2012  3:08 PM

IPv6 Transitioning



Posted by: Eric Hansen
security

An interesting article was posted on Slashdot.org: http://tech.slashdot.org/story/12/11/28/1355225/ipv6-deployment-picking-up-speed In it, it talks about how the transition from IPv4-IPv6 has been extremely slow, and some other common statistics.  Overall, the information in it proves...


November 24, 2012  11:20 AM

HSTS : The HTTP Strict Transport Security



Posted by: Eric Hansen
security

There's a new RFC that was published this month (http://tools.ietf.org/html/rfc6797) about an additional layer of HTTPS for web browsing, called


November 24, 2012  11:07 AM

Starting with Tornado in Python: Setting Up Your Server



Posted by: Eric Hansen
security

There's a good collection of different Python modules to use so you can run a server through Python (think SimpleHTTPServer). One that is commonly used behind Nginx proxies for handling API requests, however, is Tornado (http://www.tornadoweb.org). Since creating my backup service I have chosen...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: