IA Club

Information Assurance Club

Forum

Dave

Sign up for Seminars 1 Reply

Started by Dave. Last reply by Ryan Richards Oct. 4, 2007.

Groups

ha.ckers.org

Sample DNS Rebinding Code

I’ve been toying around a little with DNS rebinding code lately, with some mixed results. Firstly, Java fixed their DNS rebinding issues (although it is my opinion they are still vulnerable, just in a different way - I talked with Dan Kaminsky about this and he agrees. Also CUPS fixed their DNS rebinding [...]

Mozilla’s Content Security Policy

Some of you who have been following my blog over the last 3+ years may recall me talking about Content Restrictions - a way for websites to tell the browser to raise their security on pages where the site knows the content is user submitted and therefore potentially dangerous. In reality I’ve been talking [...]

CSRF And Ignoring Basic/Digest Auth

One of the single most annoying things about CSRF and router hacking etc… is that you get the annoying popups on Basic and Digest authentication pages, asking you to log in. More and more devices are moving away from these popup style alerts and moving more towards form based authentication, which is better from [...]

Rootsecure.net

BBC News: Paradise lost "fears such systems are starting to erode local knowledge"

New York Times: Sending GPS Devices the Way of the Tape Deck?

Network World: Google's OS security claims called 'idiotic'

The Register: UK tabloid in phone hacking probe "Newspapers owned by media mogul Rupert Murdoch have been accused of secretly paying over 1m to settle three cases involving the alleged use of illegal phone tapping"

IT Pro: Google reveals Chrome hardware partners

H Security: Security on Symbian mobiles - Early signs of crumbling

arstechnica: Google's Native Client security contest found (minor) flaws

H Security: Researchers thwart Conficker worm spread

H Security: Milw0rm exploit portal ceases to operate

eWeek: Cyber-Attacks Prompt Call for New Laws

SANS Internet Storm Center

Infocon: green

Milw0rm offline

Milw0rm offline, (Wed, Jul 8th)

We've received multiple emails today from readers who cannot reach Milw0rm. The site's owner, ...(more)...

Latest Updates on Ongoing DDoS on Governmental/Commercial Websites in USA and S. Korea, (Thu, Jul 9th)

A quick update on the DDoS of various govermental/commercial sites in the US and South Korea. ...(more)...

OpenSSH 0day FUD, (Thu, Jul 9th)

For the last couple of days we've been all witnesses of FUD surrounding a supposed 0-day exploit for ...(more)...

RFI: DDoS Against Government and Civilian Web Sites, (Wed, Jul 8th)

We are aware of an ongoing DDoS against several high-profile web sites. Public details are in ...(more)...

Safari 4.0.2 update published, (Wed, Jul 8th)

It looks like Apple released safari 4.0 ...(more)...

0x000000 Security

 
 

About

Dave Dave created this social network on Ning.

Create your own social network!

Latest Activity

Badge

Get Badge

Blog Posts

 

© 2009   Created by Dave on Ning.   Create Your Own Social Network

Badges  |  Report an Issue  |  Privacy  |  Terms of Service