Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Critical security alert issued for Tor
- If you use Tor for anonymity/privacy on the Web, you might want to pay attention to this critical security announcement from project leader Roger Dingledine. According to the advisory, a known vulnerability in the Debian GNU/Linux distribution's OpenSSL package could allow an attacker to figure out private...
- Tags: OpenSSL, Security Alert, Tor, Ssl/Tls, Security, Ryan Naraine
- Blog posts 2008-06-27
- Finding weak OpenSSL/OpenSSH keys
- Vincent Danen reports on a recent vulnerability that affects Debian-based systems, including Ubuntu. This vulnerability caused OpenSSL to generate weak keys for anything relying on OpenSSL, including SSL certificates, OpenSSH keys, and OpenVPN keys. Here's what you need to do to protect your system.
- Tags: OpenSSL, OpenSSH, Vincent Danen, Ssl/Tls, Security
- Download resources 2008-05-19
- With the Quickness: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flaw
- So, for those who haven't heard, a Debian packager modified the source used for OpenSSL on Debian based systems Debian and the whole of the Ubuntu family to remove the seed used for PRNG Pseudo Random Number Generator used when creating SSL keys. Well, HD Moore set a new record...
- Tags: OpenSSL, SSH, Debian, Key, Flaw, HD, ID, Ssl/Tls, Operating Systems, Open Source, Security, Software, Nathan McFeters
- Blog posts 2008-05-14
- Using the openssl command-line program
- OpenSSL can be used to create, request, sign, and revoke certificates and can also be used to perform other cryptographic operations such as creating hashes for files, testing SSL connections, and more.
- Tags: OpenSSL, Vincent Danen, Ssl/Tls, Authentication/Encryption, Network Security, Security, Networking
- Download resources 2008-04-30
- Fixes are in for OpenSSL
- Fixes are in for OpenSSLOpen Serial Specail Layer and technologyThe fixes I could do would be to include a number, no one could guess it. Like a number between 1 and 10.Then it would make it more secure and hacker proof.
- Tags: SSL/TLS, OpenSSL
- Discussion threads 2004-03-17
Additional Resources
- 2008 Pwnie Award nominees announced
- Well, after getting 134 nominations, and spending countless hours pulling out nominees, the judges for the 2008 Pwnie Awards have announced the final nominees to be voted on. From the site: The final list of nominees for the nine Pwnie Award categories is ...
- Tags: Nominee, Vulnerability, XSS, Attack, Flaw, Dan, XSS Flaw, Lifelock, Security, Nathan McFeters
- Blog posts 2008-07-21
- Weezo (exe)
- Weezo turns your computer into a secure Web server, thus enabling you both to access your PC for personal use, and instantly share your content (photos, music, videos, Web cam, Web TV) with whoever you want. All of this - as Weezo can be extended - can be accessed through...
- Tags: Peer 2 World, Weezo, Remote Administration, Ssl/Tls, Web Servers, TVs, Tv & Home Theater, Open Source, Security, Internet, Personal Technology, Home Entertainment
- Software downloads 2008-07-09
- Google ships open-source Web security assessment tool
- The Google security team has released a free, open-source Web app security assessment tool capable of flagging vulnerabilities and potential security threats in Internet-facing applications. The tool, called Ratproxy, is described as a passive Web application security audit tool designed to analyze legitimate, browser-driven interactions with tested Web...
- Tags: Google Inc., Web, Web Application, Web Security, Tool, Google Security Team, Productivity, Open Source, Security, Ryan Naraine
- Blog posts 2008-07-01
- Critical security alert issued for Tor
- Critical security alert issued for TorNot Only TorThis affects Linux users of OpenVPN and some other applications as well.Windows users generally need not worry, except where as in the case of Tor important keys may have been generated on a vulnerable Linux platform.More here:http://lists.debian.org/debian-security-announce/2008/msg00152.htmlRE: Critical security alert issued for TorThis...
- Tags: Linux, Operating systems, UNIX, Tor, Critical security alert
- Discussion threads 2008-06-30
- Jinkies! Microsoft's 2015 open source strategy
- Jinkies! Microsoft's 2015 open source strategyFinally, a truly open strategyThere's been a lot of smoke and mirrors in the community about being open and sharing things for the better of all.Microsoft have finally decided to come and rescue us. True openness always has, and always will be about "Open Code"...
- Tags: open source, Microsoft Corp., open source strategy
- Discussion threads 2008-05-19
- News to know: Comcast-Plaxo; Icahn-Yahoo; Linux; Microsoft
- Notable headlines: Larry Dignan: Comcast buys Plaxo: Will social networking and TV fly? Dennis Howlett: Comcast scoops up Plaxo: good move Dan Farber: Comcast goes social with Plaxo acquisition Techmeme EIC podcast: HP-EDS; Google; SaaS Adrian...
- Tags: Plaxo Inc., Google Inc., Larry Dignan, Comcast Corp., Workday, Microsoft Corp., Zoho, Linux, Microsoft Windows, Desktops, Rootkits, Microsoft Windows Vista (Longhorn), Operating Systems, UNIX, Software, Hardware, Security, Spyware, Adware & Malware
- Blog posts 2008-05-15
- With the Quickness: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flaw
- With the Quickness: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flawAs a crypto guy, I have to scream OUCH!!!!"All SSL and SSH keys generated on a Debian-based systems (Ubuntu, Kubuntu, etc) between September 2006 and May 13th, 2008 may be affected. In the case...
- Tags: SSL/TLS, Authentication/Encryption, SECURITY, Debian/Ubuntu OpenSSL
- Discussion threads 2008-05-14
- New tool cracks most enterprise wireless LANs
- New tool cracks most enterprise wireless LANsThat's why I don't use these methods for securityYou have to consider wireless networks as inherently insecure, whether you use wep, wpa or any of this complicated key crap. They were asking for wireless acces here at my corp for a long time and...
- Tags: PRODUCTIVITY, Modems, Wi-Fi, Network security, Cable, Exe, enterprise Wireless LAN, wireless, tool, RADIUS
- Discussion threads 2008-03-06
- Microsoft's Michael Howard: Sure we have security problems, but we're fixing em
- Microsoft's Michael Howard: Sure we have security problems, but we're fixing emWorst in IT historyMicrosoft is the worst kid in class and should be ashamed of what they've accomplished. No other platform comes even close to the abysmal security in Windows, to even try to compare it with the alternatives...
- Tags: Operating systems, security, Microsoft Corp., Microsoft Windows, Michael Howard
- Discussion threads 2008-02-22
- Text Encrypter (dmg)
- Text Encrypter is a powerful text encryption program that may be used to encrypt blocks of arbitrary text or files. Text Encrypter uses OpenSSL and RC-4 (128-bit) encryption technology, which is the method primarily used on most secure Web sites. Encrypted files will have the .crypt suffix appended to the...
- Tags: Sequence, Text Encrypter, Ssl/Tls, Security
- Software downloads 2008-02-20
- Security metrics: Is there a better way?
- Security metrics: Is there a better way?Open Source vs. Closed SourceUnfortunately, the biggest problem here is open source vs. closed source. Here's the deal, it's easier to find bugs in open source apps, as you can see the source. On top of that, closed source Windows often means...
- Tags: Web servers, Operating systems, Microsoft Corp., server, vulnerability, security, Microsoft Windows, Web server, software
- Discussion threads 2008-01-25
- First iPhone Trojan in the wild
- First iPhone Trojan in the wildSo let me get this straight...So let me get this straight, first you have to jail break the iPhone, then you have to download the program, then you have install it onto the iPhone. It also doesn't hurt the iPhone in any way, but...
- Tags: Spyware, Spyware, adware & malware, Viruses and worms, SECURITY, Cyberthreats, Microsoft Windows Mobile, trojan horse, Apple iPhone, iPhone Trojan
- Discussion threads 2008-01-08
- Google ships open-source security fuzzer
- Google's security team has released a fuzz testing tool that was used internally to find multiple vulnerabilities in Internet-critical software products. The fuzzer, called Flayer, is an analysis and flow alteration tool that has been used to find errors in real software. In the past...
- Tags: Security, Google Inc., Open Source, Ryan Naraine
- Blog posts 2007-09-18
- How to implement SSL or TLS secure communications
- How to implement SSL or TLS secure communicationsInformative post - Thanks GeorgeThanksWhy not a free certificate?Why did you not mention that it's possible to get a free certificate from CACert.org? It seems that many individuals and small businesses could benefit.ot the right area for securitySecurity at this level has...
- Tags: Quality, SSL/TLS, Network security, Operating systems, certification, SSL, Linux, TLS
- Discussion threads 2007-07-20
- JBoss takes Exadel tools to Eclipse open source
- JBoss.org and Red Hat this week took a significant step toward finalizing Red Hat Developer Studio with the introduction of the Exadel Eclipse plug-ins under open source.Tony Baer has a good write-up on this.Exadel contributed the plug-ins, along with Ajax4sf and RichFaces, to Red Hat last March with the goal...
- Tags: Software Infrastructure, Software Development, SOA, Open Source, JBoss, IDEs, Enterprise Java, Eclipse, Developer Tools, Agile Development
- Blog posts 2007-06-27
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
Designed specifically to address the concerns of senior IT managers at organizations with more than 100 employees, the Intel Premier IT Professional Program provides best practices via local and e-Seminars and a members-only Web site.
The Cisco Mobility Resource Center offers FREE videos, downloads, podcasts and more, all designed to help small and medium businesses get mobile connectivity solutions, improve productivity and drive sales and revenue.
