NTP needs a security update

NTP users and server admins – There are multiple vulnerabilities that are in the wild that are being exploited actively. If you have not been paying attention to security updates, attached is a consolidated report that will give you the resources you need to protect your infrastructure. Take a few …

Continue reading

Poodle Bites Back

Another Poodle related vulnerability has been reported in the wild in various channels. This time impacting TLS to a degree. So admin’s should take a moment and read up on it and keep current as its likely to continue developing over the next couple days/weeks as more vendors are likely …

Continue reading

Artillery – honeypot and or server protection

I need to spend some quality time looking and testing this further. It appears to be something that I can use in production quickly and easily. Good summary here https://www.binarydefense.com/project-artillery/ Also Holisticinfosec has a good writeup on it. http://holisticinfosec.blogspot.com/ and here http://www.southbasecamp.com/blog/setting-up-a-honeypot-artillery/

Another Vulnerability to Watch

Another vulnerability has sprung up you should pay attention to as you need to make some changes to your web browser of choice likely. Read the link below Health Infosec web site Basically you should disable support for SSLv3 and the specifics for most browsers are below. Additionally if you …

Continue reading