|
Call for papers SecurityFocus ( www.securityfocus.com ) is currently accepting submissions for new Infocus articles. We would like to extend an invitation to security researchers, authors and academics for submissions on topics of interest to the security community. Submissions should include a short summary along with the author's name, email address and contact information. All submissions should be in MS Word format and should be sent to: editor@securityfocus.com 
Detecting Rootkits And Kernel-level Compromises In LinuxThis article outlines useful ways of detecting hidden modifications to a Linux kernel. Often known as rootkits, these stealthy types of malware are installed in the kernel and require special techniques by Incident handlers and Linux system administrators to be detected. 2004-11-18 http://www.securityfocus.com/infocus/1811 
SSH User IdentitiesThis article shows how to improve SSH security using public key authentication instead of, or in addition to, password authentication. 2004-11-03 http://www.securityfocus.com/infocus/1810 
Trends in Web Application SecurityThis article discusses current trends in penetration testing for web application security, and in particular discusses a framework for selecting the best tool or tools to use for this increasingly common type of application. 2004-10-27 http://www.securityfocus.com/infocus/1809 
Issues Discovering Compromised MachinesThis article discusses the discovery of compromised machines in large enterprise environments, and offers some suggestions on correlating NIDS and HIPS logs to avoid false positives. 2004-10-25 http://www.securityfocus.com/infocus/1808 
Securing Exchange With ISA Server 2004This article will highlight the security issues involved with providing Outlook Web Access or full Outlook client connections over the Internet, and then discuss how Microsoft's new ISA Server 2004 can be configured to mitigate these threats. 2004-10-19 http://www.securityfocus.com/infocus/1807
SSH Host Key ProtectionThis is the first in a series of articles on SSH in-depth. We start with looking at standard SSH host keys by examining the verification process to ensure you have not been the victim of an attack. 2004-10-14 http://www.securityfocus.com/infocus/1806
Defeating Honeypots: Network Issues, Part 2The purpose of this paper is to explain how attackers behave when they attempt to identify and defeat honeypots, and is useful information for security professionals who need to deploy honeypots in a more stealthy manner. Part 2 looks at Sebek-based honeypots, snort_inline, Fake AP, and Bait and Switch honeypots. 2004-10-07 http://www.securityfocus.com/infocus/1805 
Lessons Learned from Virus InfectionsThis article discusses how a virus outbreak will produce a few unique opportunities to examine the health of an organization's network -- and learn ways to further harden the network from future automated attacks. 2004-10-04 http://www.securityfocus.com/infocus/1804
Defeating Honeypots : Network issues, Part 1The purpose of this paper is to explain how attackers behave when they attempt to identify and defeat honeypots, and is useful for security professionals to deploy honeypots in a more stealthy manner. 2004-09-28 http://www.securityfocus.com/infocus/1803
Detecting Worms and Abnormal Activities with NetFlow, Part 2This paper discusses the use of NetFlow, a traffic profile monitoring technology available on many routers, for use in the early detection of worms, spammers, and other abnormal network activity in large enterprise networks and service providers. Part 2 of 2. 2004-09-23 http://www.securityfocus.com/infocus/1802 |
|
|
Privacy Statement |
