
http://extendedsubset.com/?p=8 More to come and there is no public exploit code I'm aware of (but there will be soon I'm sure). This will essentially allow you "splice" several connections together so that you can snoop on someone's encrypted connection without them really knowing it...

Written by: Rick DeaconSo you have some things you’d like to have pen-tested. Maybe it’s some web applications or a subnet of Internet facing IP addresses. Maybe it’s just some of your internal network or internal physical security. Eith...

Last week was the Information Security Summit at Tri-C Corporate College East. It was my first time at the Summit, so I went in looking to learn something new. Looking over the 'pre-con' training that they had to offer, I noticed an inexpensive course on NAC (Network Access Control)...

When I first got into this business (many, many moons ago) it was about trying to help people build proper networks and applications, there was not much else. I mean sure you had some standards and compliance stuff to deal with but the business was not built around these things...

Hurricane Labs
The Information Security Summit is the largest security conference in Northeast Ohio. It features 2 days of talks, presentations, hands-on workshops, and a vendor trade-show fair. Information Security Technology, Business/Management, Law Enforcement and Legal issues are featured. This year the conference attendance gr...ew to 400. Each year more and more security professionals are taking advantage of this worthwhile event.Read More

If you were one of the lucky people to pick up one of the red USB sticks at this year's Information Security Summit fear not! There's nothing malicious on it. It was merely an exercise to see how aware some security folks are these day...

Hurricane Labs Win a Kindle at the Inforamation Security Summit after the Open Source Phone Auditing talk at 2:20PM in room 130. We have a feeling it's going to be a successful event!
Source: www.informationsecuritysummit.org
The 2009 Information Security Summit features 2 days of talks, presentations, hands-on workshops, and a vendor trade-show fair. Information Security Technology, Business/Management, Law Enforcement and Legal issues are featured.

Hurricane Labs Cisco becomes a major Linux server vendor overnight. http://hlurl.com/20
Source: hlurl.com
Cisco is using its dominance in network router gear to make a strong play for the heart of Linux-based server computing. Read this blog post by Matt Asay on The Open Road.

Hurricane Labs Compliance vs Security. What is a security scan? Being secure is much more than being compliant: http://hlurl.com/1y http://hlurl.com/1y
Source: hlurl.com
I understand that you could probably ask a dozen IT professionals to define a “security scan” and you will likely get more than a few different answers. Is it a network scan, virus scan, malware scan, ...

I traveled to Toronto, ON for the third Security Education Conference Toronto (SECTor). There were many great presentations on the first day, but the common theme among them all was something we, as well as many other security professionals, have been harping about for years: Input Validation...

Here at Linuxfest and if there is one thing I'm taking away it's how you need to make your tools work for you...

A few more observations from Linuxfest.1 - There are some talented people out there without work right now. In a struggling economy it becomes more important than ever to care with who you hire. Perhaps it's time to choose talent over a good resume and passion instead of experience...

GreenSQL-FW, also known as GreenSQL, is a MySQL database firewall/proxy. In the default mode, IDS or Intrusion Detection System, it acts as a reverse proxy for MySQL databases. The SQL queries are evaluated before the query is passed to the database...

I attended last night's Northeast Ohio Information Security Forum, which is a local group of security professionals and other interested parties talking about a wide range of security-related topics...

Hurricane Labs Microsoft and Best Buy Gang Up On Linux: http://hlurl.com/1j
Source: hlurl.com
You say ‘anti-Linux', I say ‘pro-Windows'. You say ‘Linux bashing', I say ‘marketing'.


















