Expert analysis
RSA Conference 2002 Paris – Tutorial day
Monday, 7 October 2002 – Today is the first day of the RSA Conference here at Le Palais des Congrès in Paris. This first day is dedicated to the tutorials. They are …
Interview with Jon Callas, CTO of PGP Corporation
Jon Callas is an innovator and an acknowledged expert in all major aspects of contemporary business security, including cryptography, operating system security, public key …
Interview with Roderick W. Smith, Author of “Advanced Linux Networking”
Roderick W. Smith is a professional computer book author who has extensive experience writing handbooks for users. A Linux and networking expert, he has several books to his …
A Note on Proactive Password Checking
Nowadays, proactive password checking algorithms are based on the philosophy of the dictionary attack, and they often fail to prevent some weak passwords with low entropy. In …
OWASP Guide to Building Secure Web Applications version 1.1
The Guide covers various web application security topics from architecture to preventing attack specifics like cross site scripting, cookie poisoning and SQL injection. The …
Interview with Marcel Gagne, President of Salmar Consulting, Inc.
Marcel Gagné is President of Salmar Consulting, Inc., a company that specializes in UNIX/Linux systems and network integration. Over the years, as a systems and network …
Security Online
When a computer connects to a network in an office for example, a world of working possibilities opens up to employees: sharing documents, messaging, instant access to data in …
Security Patches for 602Pro LAN SUITE 2002, Squirrel Mail 1.2.7 and BRU Workstation 17.0
Some of the vulnerabilities we add to our list don’t have vendor replies inside them. These are some of the patches released after the vulnerability was disclosed to the …
Interview with Michael Schwarz, Co-Author of “Multitool Linux”
Michael Schwarz has worked as a UNIX system programmer for more than fifteen years and as a Linux programmer since its emergence. He started the SASi open source project, and …
Interview with Jeremy Anderson, Co-Author of “Multitool Linux”
Jeremy Anderson teaches UNIX classes at Hennepin Technical College. He has expertise in UNIX, Linux, Perl, C/C++, and Java programming. Jeremy is also one of the authors of …
Interview with Steven Murphy, Co-Author of “Multitool Linux”
Who is Steven Murphy? I am a systems analyst principal working on the electronic commerce team for HealthPartners in Minnesota. I enjoy a simple life relaxing in my hot tub in …
The Trivial Cisco IP Phones Compromise
The following paper lists several severe vulnerabilities with Cisco systems’ SIP-based IP Phone 7960 and its supporting environment. These vulnerabilities lead to …