------------------------------------------------------------------------
--------
YOU'RE INVITED: IT SECURITY ON DEMAND WEBCAST

"Replicating the Gonzalez Cyber Attacks through Penetration Testing"
Register: http://www.coresecurity.com/Form/generic/campaign/SecurityFocusGonzalez
--------------------

[ more ]  [ reply ]

Hi folks,

I'm writing to bid you all farewell. After 3 and one-half years
of work and list moderation here with SecurityFocus, today is my
final day with the company. After much soul-searching, I've opted
to take a position in the Middle East, and will be relocating there
within the next few mont

[ more ]  [ reply ]

Honeypots: Are They Illegal? (IDS area)
By Lance Spitzner

As honeypots and their concepts have grown more popular, people have begun
to ask what legal issues could apply. The purpose of this paper is to
address the most commonly asked issues.
http://www.securityfocus.com/infocus/1703

Hal Flynn
Sym

[ more ]  [ reply ]

SecurityFocus is very pleased to announce the roll-out of two new focus
areas: Pen-Test and Firewalls. The Pen-Test focus area
(http://www.securityfocus.com/pen-test), along with its associated mailing
list, Pen-Test (http://www.securityfocus.com/archives/101) will offer a
forum for all aspects of p

[ more ]  [ reply ]

Cryptographic File Systems, Part Two: Implementation

By Ido Dubrawsky

This is the second article in a two-part series looking at cryptographic
filesystems. This article will cover implementation. The focus will be on
implementing the Microsoft's EFS under Windows 2000 and the Linux
CryptoAPI.

ht

[ more ]  [ reply ]

Steganography Revealed

By Kristy Westphal

Steganography is a means of protecting the confidentiality of data by
"hiding" it within a larger file of data. This technique can be used for
both legitimate and illegitimate purposes. This article will offer a brief
introductory discussion of steganograp

[ more ]  [ reply ]

Incident Response Tools For Unix, Part One: System Tools

By Holt Sorensen

This article is the first in a three-part series on tools that are useful
during incident response and investigation after a compromise has occurred
on a OpenBSD, Linux, or Solaris system. This installment will focus on
syst

[ more ]  [ reply ]

Cryptographic Filesystems: Design and Implementation

By Ido Dubrawsky

Cryptographic filesystems have recently come to the forefront of security.
This article will discuss some of the background and technology of
cryptographic filesystems and will then cover some example implementations
of these fi

[ more ]  [ reply ]

Secure MySQL Database Design
By Kristy Westphal

Databases are commonly referred to the keys to the kingdom, meaning that
once they are compromised, all the valuable data that is stored there
could fall into the hands of the attacker. With this in mind, this article
will discuss various methods to s

[ more ]  [ reply ]

>It does, though I've fubared the syntax -- it would be 'not ${peering}'
>rather than '!${peering}'. Sorry about that.

I did try that. However, it doesnt seem to work with 'or' blocks (multiple networks) which I have listed within ${peering}
Then again, a simple shellscript pushing networks one by

[ more ]  [ reply ]

Hello,
even though this list seems dead to me, I'm giving it a shot ;-)

I'm setting up opensource mirror, and I would like to allow 45mbit/s of outgoing bandwidth to networks (approx 40 subnets) our ISP has peerings to, and 2mbit/s of bandwidth to everyone else.

I've tried the following:

peering=

[ more ]  [ reply ]

Hi Folks,

I'm leaving the office for a service buddy's wedding in Hawaii, and will
be out for a couple weeks.

While I'm out, I'll be moderating the list, although not daily. I wanted
to give you all a heads up, as traffic will be sporadic. I'll make my
best effort to ensure the lists are moderat

[ more ]  [ reply ]