Recent Entries
Popular articles
Topics
Recommended links

RSS icon Subscribe

» View my profile
Technorati

del.icio.us My links on del.icio.us

Tags
analysis antivirus application security auditing botnets breaches compliance crime cryptography DNS encryption forensics humor interesting Linux Malware marketing network pdf pentest phishing php Privacy rant reference software ssl standards sysadmin tool tools trends ubuntu Virtualization virtualization security vmware vulnerabilities vulnerability+assessment web web application security webappsec web security windows Windows security xss

Archive for 'Infrastructure' Category

« Previous Page

DNS cache poisoning made easy

24 July 2007

Filling a DNS server’s cache with fake records just got a whole lot easier. Two flaws in the BIND domain name server (DNS) software were announced today that make the normally hit-or-miss practice of stuffing name servers full of false info into a sure thing. “This is a powerful attack, as it retracts the security [...]

Read the rest of this entry...
 

Posted by D Webber Filed in Infrastructure
Comments Off

Hardening DNS with the Cymru Secure BIND template

15 August 2006

When we go into a new client’s site one of the first things we look at is configuration of local DNS servers. DNS is key to the security of the entire organization, yet what we usually find are servers wide open to attack. The most common issues we find are things like running an ancient [...]

Read the rest of this entry...
 

Posted by D Webber Filed in Blind spots, Infrastructure
Comments Off

« Previous Page


Article contents copyright © Advosys Consulting Inc. Comments are copyright of the author
Icons courtesy Wikimedia Commons and are copyright of their authors.