SecurityRatty: tag: packages

July 2007 - Operating System Vulnerability Scorecard

2007-08-16 22:47:26 by jrjones in Jeff Jones Security Blog

...packages. For those Linux server builds, I eliminated everything GUI, X11, Gnome, KDE-related, firefox and all optional client-type application components and just kept a minimalist server with the ability to server web pages or act in a few other common server roles. In contrast, the Windows Server build includes every shipping component...

Tags: server, linux server builds, server charts, charts, ytd charts, non-linux products, linux products, linux products comments, common server roles

Prisoner Escapes by Mailing Himself Out of Jail

2008-12-05 07:01:40 by schneier in Schneier on Security

...packages coming into a prison are searched more thoroughly than large packages leaving a prison -- but you'd expect prison guards to pay attention to anything large enough for a person to fit into. At the end of his shift, the inmate climbed into a cardboard box and was taken out of prison by express courier. His whereabouts are still...

Tags: prison, expect prison guards, tour guide, tour, cardboard box, express courier, laundry cart, packages, obvious tactic

Secure Your Linux Host - Part 1: Foundations

2009-01-06 03:59:26 by Erik Heidt in Art of Information Security

...packages on the box. There are a few tutorials on applying only the security patches, but I choose to go ahead and update all packages su --login --command 'apt-get update -qq; apt-get upgrade -q -y; exit The -q and -qq flagssuppressmessages, shortening the output. The Cron facility willautomatically forward that output to the root user. The...

Tags: sudo, sudo command, login command, login command apt-get, command, apt-get, account, root account, root

Security World: SquirrelMail compromise risk elevated to high

2007-12-17 22:44:44 by Editor in Help Net Security - News

We mentioned on Friday that the SquirrelMail download packages were compromised. Although the first statement said that "modifications to the code should have little to no impact at this time" it look

Tags: squirrelmail download packages, statement, time, friday, modifications, impact, code

How Well "See Something, Say Something" Actually Works

2008-01-08 07:53:50 by schneier in Schneier on Security

...packages, many in the transit system. Most involved backpacks, briefcases or other items accidentally left behind by their owners. None of them, Mr. Browne said, were bombs There were, however, 816 calls to the hot line in 2006 that were deemed serious enough to require investigation by the department's intelligence division or its joint...

Tags: line, front-line security personnel, calls, hot line, calls led, people, suspicious people, browne, normal people

Gourmet Recipe Manager

2008-01-30 14:02:00 by Keith Brown in Security Briefs

...Packages" list I already had Python 2.5 installed The Glade runtime environment was trivial to install PyGTK was a little more complicated. Since these instructions were written, it looks like the project was split into three parts, and I think you need all three (which are trivial to install). I installed the latest versions of each for...

Tags: python command shell, command shell, python, python install, install, python setup, pywin32 install, setup, python sources

Plan now to eliminate "power users" from your domains

2008-02-11 18:03:17 by Steve Riley in Steve Riley on Security

...packages signed by a trusted root. (The "Trusted Installer" is a service that has a SID, so you'll see it in the permissions list on various objects throughout the operating system.) The installer validates the signature chain, then elevates itself to perform the actual installation. Now, standard users can install and update approved...

Tags: power, power users, powerful, too-powerful power users, rights install software, software, install, install packages, install software

Supporting your family, friends, and neighbors

2008-02-13 17:45:40 by Steve Riley in Steve Riley on Security

...packages delivered by e-mail or Web sites. We call this the dancing pig phenomenonno amount of self-control can stop someone from clicking on links or running attachments when the payoff is the promise of tutu-clad swine parading across the screen! So to add to a home computers defense, we need utilities that detect and remove malicious...

Tags: suspicious e-mail message, mail, home computers defense, home computers, e-mail, home, web mail, windows live mail, site

2008 - The Year of IT Risk Management, Part 2 - Rise of IT GRC

2008-01-11 12:43:00 by Ryan Shopp in practical risk management

...packages meant to automate the compliance process. These products allegedly automate the data gathering and reporting processes, so managers don't have to spend days (or weeks) preparing for the audits. Clearly that is a problem for security professionals that should be doing something more productive than preparing for an audit. It pains me...

Tags: grc, grc space, risk, risk management, grc products, security professionals, mike, mike highlights, frustrations security team

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo