KEY EXPERIENCE The sys admin's daily grind: Single-packet authenticationAug 26, 2008
Conventional, woodpecker-style port knocking is open to sniffing and brute force knocking attacks. Sending an encrypted packet with an access request to the server is safer and more modern. Learn more about Firewall Knock Operator, a.k.a. Fwknop.more »
Grendel Scan version 1.0, a Web application testing tools, was introduced at the Defcon Security Conference in Las Vegas.more »
Mozilla has just released version 3.0.1 of the Firefox browser; the first maintenance update removes a couple of vulnerabilities and fixes a some minor bugs.more »
Charly's Column The Sysadmin’s Daily Grind: FuzzyOCRJul 11, 2008
The latest trend is to hide spam in images. The admin’s response: an OCR tool that extracts the texts and feeds them to the spam filter.more »
Tarpits Using tarpits to trap spammersJul 11, 2008
A tarpit slows down spam by reducing the effectiveness of the spammer’s weapons.more »
Spam Test Comparing antispam appliances and servicesJul 11, 2008
Spam filters can help smooth the waves in your inbox, as long as they are reliable and don’t have too many side effects. We’ll show you what we found when we tested five antispam appliances and two service providers.more »
Apache Suexec Secure scripts with Apache SuexecJun 20, 2008
For many admins, the security of a web application is more important than its performance. If you have a web server with multiple users, the Suexec module can help you avoid problems associated with globally writable directories.more »
FoxFilter and Public Fox Firefox content filtersFeb 25, 2008
Firefox has a reputation of being the most innovative Web browser. We show you how to apply Firefox’s distribution-specific tools to make browsing the web safer for your children.more »
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.
Klaus Knopper announces the latest version of his iconic Live Linux system.
All websites that use these popular CMS tools could be vulnerable to denial of service attacks if users don't install the updates.
According to a report, many potential victims of the Heartbleed attack have patched their systems, but few have cleaned up the crime scene to protect themselves from the effects of a previous intrusion.
DARPA and NICTA release the code for the ultra-secure microkernel system used in aerial drones.
Should you trust an online service to store your online passwords?
New B+ board lets you build cool things without the complication of a powered USB hub.