Your java is vulnerable.
There’s an update, the update is vulnerable.
n days ago there was a zero-day exploit released for Java.
Sometimes I feel like a broken record, but what can you do?
- The safest thing to do is uninstall Java. Most users do not need it.
- If you cannot uninstall Java because you need it to run a
A few days ago I read an interview with a teenager who was reported to have stolen “Israeli credit cards”.
I know what a American Express credit card is. I know what a MasterCard credit card is. I have never heard of an American credit card or an Israeli credit card. I’m betting that Amex and MasterCard are both multinational … Read the rest
Following the HOWTO instructions on the CentOS wiki to install backuppc, I ran into some problems. The Apache error logs told me that there was a permissions issue with the htpassword file. Permission were fine.
There was a problem with SELinux. I verified this by changing enforcment to permissive.Once I had seen the program run, I used instructions on … Read the rest
In small business networks, we have rules of thumb for security.
* Use passwords
* Update virus protection
* Deploy perimeter firewalls
I understand these things are important, and you probably do too. We call these controls. They are things that we agree are worth doing to secure business networks.
But what happens if we can’t agree about the importance … Read the rest
This PDF is a transcript of a podcast “Security Now!” by two security researchers, Leo Laporte and Steve Gibson. I thought it was a good explanation of a new kind of threat. This new threat was first described by Joanna Rutkowska. She has her own paper here.… Read the rest
I guess maybe I am beating this particular drum a bit hard, but I know a few Mac users and this is no longer just my hypothetical good computing hygyne advice. I really would hate for my Mac friends to find out the hard way that its not safe to play in the street. Following up on AdvisorBits: Welcome … Read the rest
I noticed Gregg Keizer of CMP media said that the the exploit for the zero day flaw in OSX is posted over on the Metaspliot Framework site. This combined with the two worms that have recently been detected targeting the Macinstosh platfrom indicate to me that the security though obscurity that my fine feathered Mac friends usually hang their … Read the rest