Yes

Driver update rollout policy and strategy apply not only to server but also to client

Christophe

----- Original Message -----

From: listbounce (at) securityfocus (dot) com [email concealed] <listbounce (at) securityfocus (dot) com [email concealed]>

To: Securityfocus <security-basics (at) securityfocus (dot) com [email concealed]>

Sent: Fri Nov 27 13:04:19 2009
Subject: OT

[ more ]  [ reply ]

I have been troubleshooting a weird latency issue between a web client
and a finance application.

The NIC driver was stamped 2006 and after an update the problem seems
to have disappeared. Does this make sense?

------------------------------------------------------------------------

Securing Apach

[ more ]  [ reply ]

I agree with Jon K.

1) Ideally, your IDS shouldn't be seeing port scan from internet.
Either your Border router or Firewall should block this traffic.
2) Do not ignore scans. You need to know the threats your
network/resource is up against. It could be a start to a potential
attack.
3) It is recomm

[ more ]  [ reply ]

"Facebook policy requires the use of one?s real name to sign up, but
they let the police use fake names.."

Sure the policy says that but a lot of people are changing their names
on a daily basis (ok maybe not daily). And majority of those changes
are
just for fun, but never the less they are again

[ more ]  [ reply ]

Hi All

Thanks for the replies. In answer to your questions, we are actually
using Class A addresses globally (sorry, I didn't use the actual IP's
in my original plan). The EMEA region has been assigned one Class B
network to sub-divide amongst our offices. So unfortunately the
solutions above wo

[ more ]  [ reply ]

2009/11/26 martin <martiniscool (at) gmail (dot) com [email concealed]>:
> Hi Guys
>
> Sorry for not responding to this earlier.  First of all, thank you so
> so much for all the replies on this, very much apprecaited.  We've
> decided that we are definitely going to install snort.  Although we
> think we know what all our traf

[ more ]  [ reply ]

Maybe,

-Using local firewalls on these branches to filter outbound traffic to the core

-Centralize the internet access to have all web traffic go through a
filtering appliance such as a Cisco Iron Port or a websense web
security.

-Have an antivirus solution deployed over the campus. I would
r

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear colleague,

The first volume of the Onapsis' SAP Security In-Depth publication has been released.

SAP Security In-Depth is a free technical publication leaded by the Onapsis Research Labs with the purpose of providing specialized information about

[ more ]  [ reply ]

On Tue, 24 Nov 2009, Adam Mooz wrote:
> For this level of encyption it might be easier for you to get a
> harddrive with hardware encryption

As a professional paranoid I would not recommend using hardware FDE
for anything more than "keeping your kid sister out": you can never be
sure what backdoors

[ more ]  [ reply ]

Shreyas Zare:

From the limited email details you gave, it looks like the message
didn't actually come from PayPal.

Did you actually receive the ten cent deposit into your account?

If I was to wager, just based upon what I see here - I'd say you
didn't. This looks more like a fishing (aka phishin

[ more ]  [ reply ]

Hi there,

some weeks ago i ve read papers about syscall proxying.
When i was looking for implementations, i just found very specific
code (e.g. at ueberwall.org) that could be used for minimal application.

Thats why i thought it could be funny to write my own, scalable syscall
proxy.
My concept in

[ more ]  [ reply ]

Hi group,

My client wants to harvest information about his servers (done through a consultant, not internal people) using TreeSize Professional.

http://www.jam-software.com/treesize/

From the screen shots, you can tell that the product is going down to file name level. I don't know if you c

[ more ]  [ reply ]

Hi all,

I'm doing some security consulting for a client. this client have around 30 remote branches connected to his core. the problem is that sometimes the AV fails to detect new viruses/worms coming from those branches so those viruses/worms mess up his LAN.another problem is that the the client

[ more ]  [ reply ]

Hi,

I'm tuning my IDS and I'm thinking of taking out the portscan/web
vulnerability scan rules. Why? Because, yes - I know that somebody
may be scanning my network - but, what can I do about it?

1. Block the IP? But, what if its NAT - meaning only 1
workstation/user did the port scanning, I wou

[ more ]  [ reply ]