Separate names with a comma.
I have multiple web sites (and a few other processes) I want to run in an environment that is flexible and as low maintenance as possible. This...
Article Link: http://krebsonsecurity.com/2016/08/the-reincarnation-of-a-bulletproof-hoster/ Excerpt: In April 2016, security...
httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments. It comes down to a simple namespace...
So maybe you live under a rock and avoid news sites, congrats on being a rare creature and happy day to enjoy that quiet by the stream. Rest of...
Do we have any resident cobblers / DIY types who are using Linux for CCTV / security related? I mean legit Linux DIY not premade embedded systems....
Interesting reading... Executive Summary Since 2012, businesses and government agencies have been required to notify...
Hi all, I posted before about this tool,but i didn't have time for updates last few months and in last few weeks few nice people asked when...
Arbor Networks annual Worldwide Infrastructure Security Report: one of the highlights is a 500 Gbps DDoS attack sustained by one of its clients...
Mystery Database Owner Exposes 191 Million US Voter Records Online A security researcher has discovered a database of 191 million American...
If you want to force SSL everyone on your website just add these rules to a .htaccess file the htdocs (www) root of your webserver. Hint: This...
http://www.extremetech.com/computing/212038-oracle-tells-its-customers-to-stop-analyzing-its-code-for-security-flaws#disqus_thread Source ^ :...
Amazon announced on Tuesday the availability of s2n, a new open source implementation of the Transport Layer Security (TLS) protocol that is...
Text of the notice: https://blog.lastpass.com/de/2015/06/lastpass-security-notice.html/ We want to notify our community that on Friday, our...
Not sure if you guys new about the issue yet just wanted to give you guys a heads up as I was updating my systems and found this on the alert....
https://blog.mozilla.org/security/2015/04/30/deprecating-non-secure-http/ Mozilla has posted an announcement to their security blog that they are...
Apparently tomorrow the OpenSSL team is releasing a new update and are urging people to update as soon as it's made available. Apparently there's...
It looks like the researchers are at it again with a new SSL/TLS vulnerability - CVE-2015-0204 or the FREAK attack. Naturally, details are...
After the GVH "hack" where Gov IDs were leaked I started working on this tutorial. It details a similar system to what we use to store client SSL...
I have a VPS out there which over time has become a repetitive problem with hack / something getting into container / misuse thereafter. Big...
In late November 2014 Dragana Damjanovic notified OpenVPN developers of a critical denial of service security vulnerability (CVE-2014-8104). The...
