NTP needs a security update

NTP users and server admins – There are multiple vulnerabilities that are in the wild that are being exploited actively. If you have not been paying attention to security updates, attached is a consolidated report that will give you the resources you need to protect your infrastructure. Take a few …

Continue reading

Poodle Bites Back

Another Poodle related vulnerability has been reported in the wild in various channels. This time impacting TLS to a degree. So admin’s should take a moment and read up on it and keep current as its likely to continue developing over the next couple days/weeks as more vendors are likely …

Continue reading

Artillery – honeypot and or server protection

I need to spend some quality time looking and testing this further. It appears to be something that I can use in production quickly and easily. Good summary here https://www.binarydefense.com/project-artillery/ Also Holisticinfosec has a good writeup on it. http://holisticinfosec.blogspot.com/ and here http://www.southbasecamp.com/blog/setting-up-a-honeypot-artillery/

Another Vulnerability to Watch

Another vulnerability has sprung up you should pay attention to as you need to make some changes to your web browser of choice likely. Read the link below Health Infosec web site Basically you should disable support for SSLv3 and the specifics for most browsers are below. Additionally if you …

Continue reading

For Those Who Want To Disappear

Or at least make it a little harder to be “out there” in the WWW naked. http://prism-break.org/en/ Good listing of all kinds of good software, and a lot of really good transparent technologies if you take a little time to get to know them.    

Technology and Humans

A personal blog by a technologist and his observations. This site will have technical and non-technical information, and thoughts and information that I find helpful. Also need a place to put things I want to find later. If you happen to find it, I hope it helps you or amuses. …

Continue reading