Archive for the 'Security' Category
Tuesday, November 3rd, 2009
about windows SID issues and machine cloning: explains what windows SID is, who it is used, and why you should or shouldn’t change it when you image-clone a windows machine
Posted in Microsoft, Security, sid, sysadmin, sysinternals, system, technology, windows | Comments Off | permalink
Friday, October 9th, 2009
notes on setting up SSH pubic key auth
Posted in authentication, howto, key, Linux, openssh, Security, ssh, sysadmin | Comments Off | permalink
Thursday, October 1st, 2009
An alternative to CiscoVPN Client, which is, sadly, is known not to work on 64bit versions of windows xp/vista/7.
Posted in 64bit, alternative, cisco, client, freeware, Security, vpn, windows | Comments Off | permalink
Friday, August 28th, 2009
website that does blacklist lookups.
Posted in blacklist, email, for:collidr, mail, network, Postmaster, Security, spam, sysadmin, tools | Comments Off | permalink
Wednesday, July 1st, 2009
famous and somewhat forgotten so called “minority report” by Richard Feynman on the aftermath of Challenger Shuttle disaster in 1986 that determent that management culture of NASA to responsible for the disaster, and not some particular technical fa…
Posted in design, engineering, for:charlesnw, for:collidr, management, reference, reliability, science, Security | Comments Off | permalink
Wednesday, July 1st, 2009
highly recommended read for anyone dealing with security and PHBs. This is by http://en.wikipedia.org/wiki/Marcus_J._Ranum
Posted in blog, compliance, disaster, for:charlesnw, for:collidr, infosec, Security | Comments Off | permalink
Monday, May 4th, 2009
Interesting paper from UCSB with statistics provided by hijacking torpig bootnet for aprox. 10 days.
Posted in botnet, Computers, for:collidr, Security | Comments Off | permalink
Monday, March 30th, 2009
Charlie Miller is the one who broke in to up2date fully patched mac in about 1 minute and won (macbook air ) in the latest Pwn2Own content. Good read if you have 20 minutes.
Posted in for:charlesnw, for:collidr, hacking, Linux, mac, News, OS, osx, Security, vista, windows | Comments Off | permalink
Tuesday, February 10th, 2009
Apache authentication against AD (via Kerberos). Really easy to do, but make sure you put your kerberos real all in UPPER CASE, i.e. MYDOMAIN.COM. If you are using something like MYDOMIAN, then put it into config as MYDOMAIN.LOCAL
Posted in active, activedirectory, ad, apache, authentication, directory, for:collidr, howto, kerberos, krb5, Linux, Microsoft, Security, shortcut:apache, windows | Comments Off | permalink
Wednesday, September 17th, 2008
a note from security ppl that session/login cookies that normally delivered via https have to be explisidly marked as “secure” so they _only_ delivered via https. Otherwise bad ppl can hijack them.
Posted in cookies, for:charlesnw, for:collidr, programming, Security, ssl, web | Comments Off | permalink