SEARCH RESULTS
 
Showing 1-10 of 13 records
 
Expand article

What Dans DNS Checker Doesnt Do

2008-07-10 23:03:03 by Chris Eng in Zero in a bit
 
...Dans server makes a note of the source port of each request and sends back the webservers IP address to your DNS server, which sends it back to you Now that you have the IP address, your browser can fetch the results page. The web page is generated dynamically by parsing the hex string out of the URL you requested, using Ajax to fetch the...
 
Tags: server, dans server, isps dns server, server dan controls, coms dns server, dns server, source port, source port varies, source port randomization
 
 
 
 
Expand article

The Impact of Dans DNS Debacle on Internet Risk

2008-07-30 08:11:30 by Burton Group in Security and Risk Management Strategies Blog
 
...Dans invention of the technique (this also assumes prior art) with the period after invention/disclosure and into the future. If the disclosure reduces the number of those incidents, then risk is reduced; if the disclosure increases the number of those incidents, then risk is increased With that litmus test as our guideline, it is useful to...
 
Tags: dns servers, servers, impact, dns, dns servers cache, risk impact revolves, major dns vendors, risk, major dns vulnerability
 
 
 
 
Expand article

Blue Box #70: 2-yr Anniversary show, VoIP security vulnerabilities, Vonage, Comcast, phishing, listener comments and much, much more...

2007-11-07 21:52:53 by HASH0x89e6354 in Blue Box: The VoIP Security Podcast
 
...Dans new employment with Voxeo Dan at VON next week Dean Elwood is doing a VoIPUser dinner perhaps a Blue Box dinner as well We hope you enjoyed Blue Box SE 21 with Phil Zimmermann many thanks to Martyn Davies for helping with that Reporters for some of the spring shows? (we can probably get you press credentials if you are there XSS attack...
 
Tags: voip security, voip security vulnerabilities, voip security news, voip, voip security podcast, consumer voip, vulnerabilities, sans voip security, sans
 
 
 
 
Expand article

Blue Box #68: Top 14 VoIP Vulnerabilities, Asterisk security, VoIP hacker, IMS, P2P, Skype, industry moves, VoIP security news, listener comments and

2007-10-27 14:33:10 by HASH0x8473034 in Blue Box: The VoIP Security Podcast
 
...Dans recent issues with using Skype at a hotel 26:36 - PC World: Attack of the Killer Bots 28:57 - News Releases Sipera Secures $10 Million to Further Advance VoIP/UC Security Bandwidth.com Bands with Acme Packet (finally, security for SIP trunking Radware Unveils Industry First Behavioral Server Protections as Part of its Full Spectrum...
 
Tags: security, voip security news, asterisk, asterisk security, comments, sellsupport asterisk, skype, listener comments, listener comment line
 
 
 
 
Expand article

Blue Box #68: Top 14 VoIP Vulnerabilities, Asterisk security, VoIP hacker, IMS, P2P, Skype, industry moves, VoIP security news, listener comments and

2007-10-03 06:00:00 by Dan York in Blue Box: The VoIP Security Podcast
 
...Dans recent issues with using Skype at a hotel 26:36 - PC World: Attack of the Killer Bots 28:57 - News Releases Sipera Secures $10 Million to Further Advance VoIP/UC Security Bandwidth.com Bands with Acme Packet (finally, security for SIP trunking Radware Unveils Industry First Behavioral Server Protections as Part of its Full Spectrum...
 
Tags: security, voip security news, asterisk, asterisk security, comments, sellsupport asterisk, skype, listener comments, listener comment line
 
 
 
 
Expand article

Show 002 - An Interview with Dan Geer

The Article has images The Article has audio podcast
2006-06-12 17:28:07 by rmacmich in The Silver Bullet Security Podcast
...Dans paper Cyber Insecurity, his work on Project Athena, and livestock A partial transcript of the interview in IEEE Security & Privacy Dan Geer on Wikipedia Cyber Insecurity: The Cost of Monopoly (PDF Project Athena on Wikipedia How Much Information 2003 Subscribe to IEEE Security & Privacy
 
Tags: dan, dan geer, ieee security, project athena, wikipedia, gary discuss, partial transcript, security practitioner, privacy
 
 
 
 
Expand article

Blue Box #76: Cisco, Skype and BT vulnerabilities, when SIP looks like SPIT, VoIP security threat predictions and the FBI forgets to pay their bills,

The Article has audio podcast
2008-02-14 18:37:50 by HASH0x8ba57a0 in Blue Box: The VoIP Security Podcast
 
...Dans Internet-Draft document RFC 5039 on SIP and Spam Sipera news release on Top 5 VoIP Threat Predictions of 2008 coverage in The Register: 2008 the year VoIP gets hacked? and IT Business Edge: VoIP Security Still Falling Short SearchSecurity.com: Enterprise security in 2008: Addressing emerging threats like VoIP and virtualization C|Net...
 
Tags: voip, voip infringements, voip security professional, voip threat predictions, voip security news, voip security, voip security podcast, comments, sip
 
 
 
 
Expand article

No, I Dont Know the Answer to the Big DNS Secret

2008-07-09 15:26:37 by Chris Eng in Zero in a bit
 
...Dans blog post this morning appeared to confirm that interpretation DJB was right. All those years ago, Dan J. Bernstein was right: Source Port Randomization should be standard on every name server in production use There is a fantastic quote that guides a lot of the work I do: Luck is the residue of design. Dan Bernstein is a notably lucky...
 
Tags: design, excellent design protects, excellent design, dan, dan kaminsky, dan bernstein, tom ptacek, attack surface, attack
 
 
 
 
Expand article

DNS Vulnerability Survives Scrutiny of Peer Review

2008-07-10 01:30:48 by Chris Eng in Zero in a bit
 
...Dans presentations are usually packed to the brim even when hes not announcing anything In the meantime how about patching those servers
 
Tags: dns, kaminskys dns vulnerability, technical peer review, dino dai zovi, persuasive power, blackhat presentation, dan, tom ptacek, substance