NetSec

11.20.2004

Sourcefire is offering two $5000 Snort Scholarships from TimK

posted by GeeWhiz Saturday, November 20, 2004

SecurityForest.com is a collaboratively edited Forest consisting of Trees which anyone can contribute to. SecurityForest's trees are specific security repositories that are categorized for practical reasons. The technologies currently in use in these repositories are based on Wiki and CVS technology. Current trees are Exploits, Tools, Tutorials and Links.

posted by GeeWhiz Saturday, November 20, 2004

Regarding ARKNG's Post. Here is more information on "One Air Force, One Network". Smells like Monoculture. The idea of a single web based extranet for ALL Air Force functions scare the bejeezus out of me. Remember when the Army was repeatedly owned via IIS and responded by switching their public servers to OS-X? Explore this Google query for more reasons why this is probably a bad idea.

posted by GeeWhiz Saturday, November 20, 2004

tcpick is a textmode sniffer libpcap-based that can track, reassemble and reorder tcp streams. Tcpick is able to save the captured flows in different files or displays them in the terminal, and so it is useful to sniff files that are transmitted via ftp or http. It can display all the stream on the terminal, when the connection is closed in different display modes like hexdump, hexdump + ascii, only printable charachters, raw mode and so on. Available a color mode too, helpful to read and understand better the output of the program. Actually it can handle several interfaces, including ethernet cards and ppp. It is useful to keep track of what users of a network are doing, and is usable with textmode tools like grep, sed, awk.

posted by GeeWhiz Saturday, November 20, 2004

Some Good, Some Bad:

Network Security Market Continues Growth

The Anti-Fraud Alliance

AOL Focuses On Security

Air Force turns to Microsoft for network security

posted by arkng Saturday, November 20, 2004

11.19.2004

Effective Security Practice Guide for Higher Education by Eoghan Casey

posted by GeeWhiz Friday, November 19, 2004

11.18.2004

Firewalls and Internet Security: Repelling the Wily Hacker - First Edition by William R. Cheswick and Steven M. Bellovin

posted by GeeWhiz Thursday, November 18, 2004

MPAA Asks for Control of Internet2

posted by GeeWhiz Thursday, November 18, 2004

11.17.2004

Are You an AntiSpam Kook? Find Out!

DNS Blacklisting Internet Draft Published Yesterday

Server Index Query Protocol Draft

IBM Spam Research Papers:

Rigoutsos and T. Huynh, Chung-Kwei: a Pattern-discovery-based System for the Automatic Identification of Unsolicited E-mail Messages.

B. Leiba and N. Borenstein, A Multifaceted Approach to Spam Reduction.

R. Segal, J. Crawford, J. Kephart and B. Leiba, SpamGuru: An Enterprise Anti-Spam Filtering System.

From the Proceedings of the First Conference on Email and Anti-Spam, July, 2004. Coming this summer, Second CEAS

Open RBL Filtering Research

OpenRBL Prevention Research

posted by GeeWhiz Wednesday, November 17, 2004

11.16.2004

Dave Dittrich at Washington University Maintains an Excellent List of IA Resources

posted by GeeWhiz Tuesday, November 16, 2004

Local IA Job Opportunities

posted by GeeWhiz Tuesday, November 16, 2004

11.15.2004

Skype plugs hole in VoIP software

Interesting Blog at News.com regarding Homeland Security

posted by arkng Monday, November 15, 2004

E-Eye has been Sitting on a W2k 0day sicne August 2nd. There is still no patch.

posted by GeeWhiz Monday, November 15, 2004