SecurityRatty: tag: tcp

TCP Syslog =/= Reliable?

2008-04-03 13:28:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...TCP with being "reliable." Rainier here raises a few interesting issues (not the least of which is TCP buffering) that question the reliability of TCP syslog Is there a need for a "more reliable" TCP with application-level ACKs? Maybe ... but not in the world where UDP syslog is still king About me: http://www.chuvakin.org

Tags: tcp syslog, tcp, reliable, log transfer, udp syslog, issues, reliability, unreliable, world

An improved clock-skew measurement technique for revealing hidden services

2008-06-26 05:12:21 by Steven J. Murdoch in Light Blue Touchpaper

...TCP timestamp clock source I used, then it would take longer still This limits the attack since in many cases TCP timestamps may be unavailable. In particular, Tor hidden services operate at the TCP layer, stripping all TCP and IP headers. If an attacker wants to estimate clock skew over the hidden service channel, the only directly available...

Tags: clock-skew measurement technique, clock, clock-skew, clock transition, clock source, clock skew, magnitude lower noise, tcp, tcp timestamps

A Security Assessment of the Internet Protocol

2008-08-20 07:48:56 by schneier in Schneier on Security

...TCP/IP protocols were conceived during a time that was quite different from the hostile environment they operate in now. Yet a direct result of their effectiveness and widespread early adoption is that much of today's global economy remains dependent upon them While many textbooks and articles have created the myth that the Internet Protocols...

Tags: internet, assessment, security assessment, security, security flaws, flaws, internet technology, internet operations community, protocols

Minimizing the Attack Surface, Part 1

2008-06-24 19:09:34 by Chris Eng in Zero in a bit

...tcp/23 or ftp fon tcp/21. Others left you wondering, what the heck is listening on tcp/515 or tcp/7100? And remember, you couldnt ask Google because it didnt exist (well, maybe it did depending on when you got into security Your first real lesson about locking down a host was how to reduce its attack surface. You learned how to disable...

Tags: attack surface, custom web applications, web, services, prevent unnecessary services, unnecessary services, security, third-party libraries, fix security holes

Process Doubling

2008-01-27 22:44:57 by RSnake in ha.ckers.org web application security lab

...TCP by sending single packets but some anti-DDoS boxes out there stop that sort of connection from even hitting a box. They do this for flood protection. They wait for a full TCP state to be initiated before they connect to the web server behind them (similar to a proxy server actually Heres where some programming skill could come into play....

Tags: web server, fairly complex set, set, fairly straight forward, egress, fairly easy, fairly common occurrence, easy, firewall egress

Malware Infected Hosts as Stepping Stones

2008-02-21 22:03:01 by HASH0x8b1f7bc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...TCP connection from the "outside" to a proxybot on the "inside" and a subsequent TCP (or UDP) connection to the target destination (typically a mail server on the outside The commercial aspect's always there to say, and vertically integrate since besides selling the product in the form of the tool for, they could eventually start coming up...

Tags: hosts, malware, socks hosts, malware infects hosts, top application, application, stones, top, activities

7 Seminal Security Books Every Security Wannabe Should Read

2008-03-17 17:49:28 by Craig Balding in Security Wannabe

...TCP/IP Illustrated, Volume 1: The Protocols (Addison-Wesley Professional Computing Series I remember the day I read that the author of this book - Richard Stevens - had passed away. I was shocked and saddened. This may sound strange as Id never met him, nor had any correspondence with him. The reason is simple: through his writing, he had an...

Tags: books, security books, software, software security assessment, security, thick books, security wannabe, software vulnerability research, software security

Show 017 - An Interview with Eric Cole

2007-08-24 20:19:43 by rmacmich in The Silver Bullet Security Podcast

...TCP/IP based networks - Erics dissertation

Tags: security roi, security, network security practitioners, eric, eric cole, computer security, network security, eric discuss, secure anchor

Relay attacks on card payment: vulnerabilities and defences

2008-01-09 00:01:52 by Steven J. Murdoch in Light Blue Touchpaper

...TCP streams over a browser Mifare Karsten Nohl and Henryk Plötz describe how they reverse-engineered the Mifare encryption algorithm, Crypto1, and the weaknesses they discovered Steam-Powered Telegraphy Jens Ohlig et al. demonstrate their Internet connected (but not quite steam-powered) Telex machine What can we do to counter the spies?...

Tags: dns, security, cellphone jammer dns, security michael steil, talks, henryk pltz describe, chaos communication congress, annie machon describes, arbitrary tcp streams

Windows Live OneCare Firewall and Software

2008-01-10 07:37:00 by Keith Brown in Security Briefs

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo