Archive for October, 2006
1,200 Dutch e-voting machines vulnerable to hacking

Dutch intelligence service showed the machines could be be easily intercepted from 20 to 30 metres away. It’s comforting to know election fraud isn’t a US monopoly.

read more | digg story

10 things you should know about Internet Explorer 7 Security

Internet Explorer 7 is designed to make browsing safer. Here’s a quick rundown of some of the new security features, including Active X opt-in, the Phishing Filter, cross-domain security, enhanced privacy protection, and an international character alert.

read more | digg story

New Windows Attack Can Kill Firewall

The code, which was posted on the Internet early Sunday morning, could be used to disable the Windows Firewall on a fully patched Windows XP PC that was running Windows’ Internet Connection Service (ICS).

read more | digg story

HOWTO: Five steps to a more secure SSH

If you are running Linux, chances are you are running SSH. Here are five easy things you can do to lock down your server and make SSH more secure. Includes disabling root logins, using keys to login, automatically blocking hosts who are attempting dictionary attacks, and more.

read more | digg story

HOWTO: Five steps to a more secure SSH

If you are running Linux, chances are you are running SSH. Here are five easy things you can do to lock down your server and make SSH more secure. Includes disabling root logins, using keys to login, automatically blocking hosts who are attempting dictionary attacks, and more.

read more | digg story

Unpatched, highly critical vulnerability in Firefox 2.0

“This weakness has been known since June but no patch has yet been made available. The developers claimed to have fixed the problem in 1.5.0.5. So why did they release 2.0 without a fix? If “security” is what makes FireFox better, how do we explain known vulnerabilities unpatched on major releases?”

Answer: Security does not exist.

read more | digg story

FBI Raids Creator of Fake Boarding Pass Generator

Christopher Soghoian created the Northwest Airlines Boarding Pass Generator to demonstrate flaws in the government’s implementation of airport security and the so-called no-fly list. Then the FBI agents kept a federal judge awake until two in the morning to get a search warrant and raided his house in a predawn raid Saturday morning.

read more | digg story

British the most spied-on people in western world

“The linkage of databases and surveillance systems mean Brits are now having their movements tracked, habits profiled and photograph taken hundreds of times a day.” — digg

I guess big brother really is watching. The U.S. is next for sure. I am not opposed to security but not at the expense of freedom and basic privacy and civil liberties. My main reason for this is that I don’t trust the government with my pirvacy. In a secular society in which morality and elections can be bought to the highest corporate bidder, I just don’t believe that most representatives will have our best interest at heart.

read more | digg story

IE7: Are we right back where we started from?

The long-awaited Internet Explorer 7 debuted last week
—and a brand-new flaw promptly debuted a day later. While Redmond argued that the vulnerability actually comes from Outlook Express, it still affects IE7. But Mike Mullins says it doesn’t bode well for the browser update, whose security enhancements Microsoft has been touting.

read more | digg story

Track Down

Kevin Mitnick will probably totally disagree, but the movie Track Down was pretty entertaining. 

Its a hollywoodized version of Tsutomu Shimomura‘s book called Takedown detailing his attempts to capture computer (now reformed) cracker Kevin Mitnick.  Russel Wong plays Shimomura and living legend Kevin Mitnick is played by none other than Skeet Ulrich.  Skeet does a great job.

I found myself laughing out loud at some of the stuff Kevin pulled off in the movie.  I have not read Shimomura’s book so I don’t know how much of the movie was acurate.  But either way they made Kevin out to be one bad, bad MF.  

Appearently, there is some controversy on how truthful Track Down and Takedown are to the the events that actually took place with Kevin’s conviction.  A lot of this is talked about in Emmanuel Goldstein’s Freedom Downtime.  I guess I’ll have to check that out next.

If you’re an overall security geek like my self you’ll get a kick out of the movie.  Just keep in mind that it is a work of fiction… with actors like Master P, I suppose that is not hard to do.  I also noticed that Shimomura appears in a scene in which he is laughing at his character getting heckled… ironic.