SEARCH RESULTS
 
Showing 1-10 of 175 records
 
Expand article

It Was Sposed to Be So Eaaasy

2008-09-10 07:12:42 by Gunnar Peterson in 1 Raindrop
 
...figure out all of the items on the Web services security checklist should work together in a cohesive system. Needless to say, there are many ways to shoot yourself in the foot So during our talk, someone from Oracle stands up and says, "hey, you guys are making this stuff sound hard. Its not hard we support WS-Security..." etc. Again, the...
 
Tags: ws-security, support ws-security, web service security, service, security, primitives, security primitives directly, ws-security support, security api
 
 
 
 
Expand article

Yes! Now I Can Attend Nate Lawsons Talk at BlackHat!

2008-07-22 03:14:11 by Chris Eng in Zero in a bit
 
...figure it out just because the good guys keep quiet. To be honest, my own lack of public speculation wasnt because I agreed with the philosophy; I just wasnt smart enough to figure out the vulnerability myself People implied or stated outright that Dan just didnt want anyone stealing his thunder. Considering the timing of the release and the...
 
Tags: blackhat, vulnerability, dns vulnerability, details, technical details, dan, dan kaminsky, subsequent blackhat talk, security community
 
 
 
 
Expand article

Yes! Now I Can Attend Nate Lawsons Talk at BlackHat!

2008-07-22 03:14:11 by Chris Eng in Zero in a bit
 
...figure it out just because the good guys keep quiet. To be honest, my own lack of public speculation wasnt because I agreed with the philosophy; I just wasnt smart enough to figure out the vulnerability myself People implied or stated outright that Dan just didnt want anyone stealing his thunder. Considering the timing of the release and the...
 
Tags: blackhat, vulnerability, dns vulnerability, details, technical details, dan, dan kaminsky, subsequent blackhat talk, security community
 
 
 
 
Expand article

An A to Z of confusion

The Article has images
2008-08-29 05:16:28 by Richard Clayton in Light Blue Touchpaper
...figure from the paper as well the point being that the effect I am describing has little to do with Z being at the end of the alphabet, and A at the front, but seems to be connected to the relative rarity of zebras As you can see from the figure, marmosets and pelicans get around 42% spam (M and P being popular letters for peoples names) and...
 
Tags: spam, email spam volumes, email, email local, zebras, zebras addresses, aardvarks, real aardvarks, figure
 
 
 
 
Expand article

Web Server Software and Malware

The Article has images
2007-06-05 09:30:00 by Niels Provos in Google Online Security Blog
...figures may have some margin of error as it is not unusual to find hundreds of domains served by a single IP address Web server software across the Internet Web server software distribution across the Internet Our numbers report a slightly larger fraction of Apache servers compared to the Netcraft web server survey . Our analysis is...
 
Tags: servers serve malware, servers, apache servers, malicious servers, web server software, server software, web servers, microsoft iis, microsoft iis features
 
 
 
 
Expand article

Google Spamming Us

2007-12-20 22:11:11 by RSnake in ha.ckers.org web application security lab
 
...figure out how UTF-7 works 66.249.73.40 - - [26/Nov/2007:02:25:19 +0000] GET /s.js+ACIAPgA8-/script+AD4-x HTTP/1.1 302 204 - Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html Oh dont we love the Google spam? I really am disheartened that its this easy to con Google into spamming websites. As if I dont get enough referrer...
 
Tags: google, html http1, http1, html, google likes viagra, referrer spam, spam, google spam, con google
 
 
 
 
Expand article

WPF Layout Tips

The Article has images
2007-12-20 08:38:00 by Keith Brown in Security Briefs
...figured that I must have taken the wrong approach, so I hooked up with the author of our WPF short course , Ian Griffiths . Ian reminded me about constraints in layout, and I was able to fix my problem pretty quickly Unless you use absolute positioning (such as the Canvas layout control does), WPF uses a pretty sophisticated negotiation model...
 
Tags: layout, image, simple image, control, net repeater control, wpf, infinite space, image stretches, space
 
 
 
 
Expand article

Geeks sharing recipes

2008-01-29 09:17:00 by Keith Brown in Security Briefs
 
...figure out what to buy at the grocery store. I'd rather automate much of this menial work so that I have more time to spend with my kids or with my work My first step in my quest for automation was to find a program that helped me create shopping lists. I bought a copy of SimplyShopping , which has worked pretty well for what it does. What I...
 
Tags: acceptable data model, xml, data model, recipebook xml, xml schema recipe, recipes, data, recipe, xml format
 
 
 
 
Expand article

Users continue to ignore security policies, while security organizations are overlooking non-technical controls

The Article has images
2007-12-13 12:37:00 by Ryan Shopp in practical risk management
...figure 2 in the article. - see below) showed the top 10 with the highest level of quality implementation. It revealed that 6 are technical controls and 4 are non-technical controls. Meanwhile, the second graphic (figure 3 in the article - see below) showed the bottom 10 related to quality of implementation. It revealed that 3 are technical...
 
Tags: non-technical controls, technical controls, security, controls, aka non-technical controls, non-technical, quality, quality security controls, technical
 
 
 
 
Expand article

Security Products: Suites vs. Best-of-Breed

2008-03-10 06:33:16 by schneier in Schneier on Security