O’Reiily Article on setting up Secure Wireless Networking using IAS and Radius. This is a good step by step guide.
Comments (0) Posted on Friday, February 2nd, 2007
Archive for the ‘Security’ Category
Filed under Security
This sounds rude, doesn’t it!
If follows on from my previous post and this article that I came across mentions the name of the interesting “pentration testing” tool that Dinis Cruz was using and that I dared not mention!
Here’s the article anyway.
Comments (0) Posted on Saturday, September 23rd, 2006
Filed under Security
This was a great event that I went to last night organised by the NxtGenUG guys (what a great job these guys are doing!). Ed Gibson is Microsoft’s Chief Security Advisor in the UK and is an ex FBI employee. I think if I was told to do something by Ed, I would certainly do it! He’s got that air about him, which you probably only get from being an FBI Special Agent. His talk was mainly around cybercrime and his experiences of this and some of the legal issues involved.
There was a demo and talk by a security IT Consultant, Dinis Cruz. He showed how easy it was to compromise servers (which hadn’t been patched) and web applications which had not taken account of security issues when developed. He used an openly available tool to get command line access and then a full desktop session. It was so easy, as this tool automates the process where you can just select things from a menu! Until you see this you don’t realise the full consequences of not patching your servers (and this applies to Linux as well).
Problem is that we don’t really understand how attacks are perpretrated and so we don’t really understand how to defend our systems properly. We need to put ourselves in to the mind of the hacker and then maybe we can increase the security of our systems.
Comments Off Posted on Thursday, September 21st, 2006
This sounds rude, doesn’t it!
If follows on from my previous post and this article that I came across mentions the name of the interesting “pentration testing” tool that Dinis Cruz was using and that I dared not mention!
Here’s the article anyway.
Comments (0) Posted on Saturday, September 23rd, 2006
This was a great event that I went to last night organised by the NxtGenUG guys (what a great job these guys are doing!). Ed Gibson is Microsoft’s Chief Security Advisor in the UK and is an ex FBI employee. I think if I was told to do something by Ed, I would certainly do it! He’s got that air about him, which you probably only get from being an FBI Special Agent. His talk was mainly around cybercrime and his experiences of this and some of the legal issues involved.
There was a demo and talk by a security IT Consultant, Dinis Cruz. He showed how easy it was to compromise servers (which hadn’t been patched) and web applications which had not taken account of security issues when developed. He used an openly available tool to get command line access and then a full desktop session. It was so easy, as this tool automates the process where you can just select things from a menu! Until you see this you don’t realise the full consequences of not patching your servers (and this applies to Linux as well).
Problem is that we don’t really understand how attacks are perpretrated and so we don’t really understand how to defend our systems properly. We need to put ourselves in to the mind of the hacker and then maybe we can increase the security of our systems.
Comments Off Posted on Thursday, September 21st, 2006
![[This is a SBS Community blog you are reading. Are you subscribed to the Official SBS blog?]](http://www.sbslinks.com/images/sbsblogweb.jpg "This is a SBS Community Blog you are reading. Are you subscribed to the Official SBS blog?")
