Here are today’s Interesting Information Security Bits from around the web.

1. Andy poses the question (paraphrased) “You get to build a security program from the ground up. How do you go about it?” Go over and offer your thoughts.
   Building a security program from the ground up >> Andy ITGuy
   Tags: ( infosec-program )
2. Want to learn how to write exploits. You should really check out Dino’s exploitation class. I’ll be going through it at my earliest convenience. Oh, and by the way, it’s free.
   Penetration Testing and Vulnerability Analysis – Exploitation
   Tags: ( class education explolits )
3. From the site: A group of PenTesters/Researchers have gotten together with the purpose of posting their useful scripts. Feel free to submit your scripts, we will gladly review them, even post them crediting you. You can submit them at scripts@pentesterscripting.com
   start [PenTester Scripting]
   Tags: ( pentest scripts tools )
4. Some interesting thoughts that Richard shares from a talk given by Michael Hayden.
   TaoSecurity: Notes from Talk by Michael Hayden
   Tags: ( general )
5. I agree with the Infosec Cynic. Allowing non-Latin characters is going to open up a whole new way for evil to be propagated.
   International Websites | The Infosec Cynic
   Tags: ( dns )
6. If you haven’t heard yet, there is a worm running around that Rick Rolls iPhones that have been jailbroken. This post isn’t really about the worm, but about the individual who wrote, released and then talked about doing it.
   Worm author tells media he initially infected 100 iPhones | Graham Cluley’s blog
   Tags: ( general worm iphone )
7. A nifty use of netcat to image a drive over the network.
   How-to: Cloning a (Laptop) Hard Drive using DD over the network | Roer.com – Kai Roer’s Rants on Infosec
   Tags: ( backup imaging )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. I can’t remember if I pointed to part one of this, but I think I did. Anyway, here are the answers. There is a link to part 1 if you haven’t seen it yet.
   Can you find the vulnerabilites? Part Two << Security Ninja
   Tags: ( challenge answers )
2. The Atlanta NAISG chapter is celebrating their one year anniversary. You should go check it out next week if you are in the area.
   Atlanta NAISG November Meeting >> Andy ITGuy
   Tags: ( meetings naisg atlanta )
3. A couple of federal bills about breaches are getting closer to possibly becoming laws. See inside for a bit more detail.
   National Data Breach Laws Move Through Senate | Threat Level | Wired.com
   Tags: ( data-leakage breach law )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. There is some truth in this post. A corollary is the mommy/daddy principle. I’ll ask mommy and if I don’t get the answer I want I’ll ask daddy.
   Network Security Blog >> I’ll do anything! Absolutely anything!
   Tags: ( general )
2. The CFP for Metricon is open.
   Mini Metricon 4.5 Call For Participation << The New School of Information Security
   Tags: ( conferences cfp metricon )
3. This is a must see.
   YouTube – Marcus J. Ranum on Cloud Computing Security
   Tags: ( cloud humor )
4. Here is the mother lode of cheat sheets. Focused on developers, but there are a few that are security related.
   Cheat Sheet and Quick Reference Card Directory | devcheatsheet.com – Cheat Sheets for Developers.
   Tags: ( cheatsheet )
5. This is the author’s page regarding the SSL/TLS vulnerability just announced. It was a bit more reader friendly and promises to be so again, but the information is still there.
   extendedsubset.com
   Tags: ( tls ssl vulnerability )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. Be careful. It doesn’t appear that it is very hard to turn you Windows 7 install into an wireless access point.
   Errata Security: Windows 7 includes soft-ap
   Tags: ( windows-7 wifi )
2. Some good tips for making sure your Wordpress install is as secure as possible.
   10 Ways To Secure Your Wordpress Install
   Tags: ( wordpress )
3. Offensive Security is setting up the next iteration of milw0rm.
   Leaders in Online Information Security Training >> Offensive Security Exploit Archive
   Tags: ( milw0rm offensive-security )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. A few days ago I pointed out an article that discussed some issues with the default settings for UAC in Windows 7. This article shows that the criticism in the other article is well earned.
   Windows 7 vulnerable to 8 out of 10 viruses | Chester Wisniewski’s Blog
   Tags: ( virus windows-7 )
2. Interested in cross-subdomain cookie attacks? Check out the paper that mckt wrote. It is based on his presentation at Toorcon recently.
   Skeptikal.org: Cross-subdomain Cookie Attacks
   Tags: ( webappsec exploits )
3. Thinking about virtualizing your databases? Make sure you are doing so for any of the mythical reasons that Adriane addresses in this article.
   Securosis Blog | Myths Surrounding Databases in Virtual Environments
   Tags: ( virtualization database )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. A very good article on an issue that we need to think about as those who are very social media focused are working in our organizations.
   Lifestyle Hackers – CSO Online – Security and Risk
   Tags: ( social-media )
2. You know you’ve been wanting to try it.
   Electric Alchemy: Cracking Passwords in the Cloud: Breaking PGP on EC2 with EDPR
   Tags: ( passwords cloud cracking )
3. Wonder what the latest changes to MA 201 CMR 17.00 are? Jack does us all a wonderful service by showing us the differences.
   Uncommon Sense Security: diff MA 201 CMR 17.00
   Tags: ( ma-201-cmr-17 )
4. Part two of SynJunkie’s latest story is up.
   Syn: Bobs Double Penetration Adventure – Part 2
   Tags: ( story wifi pentest )
5. The latest version of Microsoft’s Security Intelligence Report is available.
   Download details: Microsoft Security Intelligence Report volume 7 (January – June 2009)
   Tags: ( intelligence report microsoft )
6. This post points out that we really need to be able to communicate with non-technical audiences. It then points to a new SANS short course that helps us learn how to do that more effectively. Looks very interesting.
   Keys to Professional Communication | Courses, Training | Enclave Forensics
   Tags: ( presenting speaking writing )
7. This page contains links to a wealth of information on psychology and information security. Fascinating stuff that will keep you busy for quite some time.
   Hat tip: Adam @ The New School of Information Security Blog
   Psychology and Security Resource Page
   Tags: ( psychology )
8. Here is the third and final part of SpyLogic’s Enterprise Open Source Intelligence Gathering series. It focuses on monitoring and social media policies.
   Enterprise Open Source Intelligence Gathering – Part 3 Monitoring and Social Media Policies — spylogic.net
   Tags: ( gathering intelligence )
9. This is a nicely detailed post on using OWASP ESAPI for output validation. You are validating your output, right? It is actual the second in a series. The first part on input validation is linked to at the beginning and is also worthy of a gander.
   Output Validation using the OWASP ESAPI << Security Ninja
   Tags: ( output-validation owasp esapi )
10. Anton posits that FUD is good sometimes. Interesting perspective. The New School Security blog has an interseted reponse too: http://newschoolsecurity.com/2009/10/just-say-no-to-fud/
    A Treatise on FUD – fudsec.com
    Tags: ( iis fud )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. The Security Baselines for Windows 7 and IE 8 are now available.
   Now Available: Security Baselines for Windows 7 and Internet Explorer 8 – Springboard Series Blog – The Windows Blog
   Tags: ( windows-7 ie8 )
2. The call for submissions for Peer2Peer sessions at RSA 2010 has opened. Have a topic you want to explore with others in your industry/field/profession? Go ahead and suggest it.
   Peer2Peer Sessions
   Tags: ( rsa-2010 cfp )
3. Xavier’s first day recap of Hack.lu is up.
   /dev/random >> hack.lu Day #1
   Tags: ( conferences hacklu )
4. Jeremiah offers some interesting thoughts on black box vs white box software testing.
   Jeremiah Grossman: Black Box vs White Box. You are doing it wrong.
   Tags: ( webappsec )
5. Another good article on methods and tools to monitor/gather intelligence about your company that might be mentioned on-line. This one focuses on blogs, message boards, and metadata.
   Enterprise Open Source Intelligence Gathering – Part 2 Blogs, Message Boards and Metadata — spylogic.net
   Tags: ( monitoring )
6. This is scary.
   hype-free: Why network neutrality is a big deal
   Tags: ( general )
7. Anton’s notes from the day he spent at NIST’s SCAP conference.
   Anton Chuvakin Blog – “Security Warrior”: Notes from NIST SCAP 5th Security Automation Conference
   Tags: ( conference nist-scap )
8. Alex has posted a nice exploration of impact vs asset valuation. This is a very FAIResque treatment of the issue if you ask me, which is a good thing in my opinion.
   Verizon Business Security Blog >> Blog Archive >> The curious case of asset Valuation.
   Tags: ( risk-analysis asses-valuation )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. Andrew shows how to install log2timeline on a SANS Investigative Forensic (SIFT) workstation.
   Andrew Hay >> Blog Archive >> Installing log2timeline on SIFT – Updated Instructions for Ease of Use
   Tags: ( forensics )
2. Before you fire up your new RDS instance with Amazon, you might want to take a gander at Adriane’s post. This is not to say don’t do it, just some things to think about before you do.
   Securosis Blog | Amazon RDS Announced
   Tags: ( mysql amazon rds )
3. Some thoughts about cross-gadget security in Google Wave.
   Cross-Gadget Security in Google Wave
   Tags: ( wave )
4. Richard pulls together a lot of the conversation about A6.
   TaoSecurity: Initial Thoughts on Cloud A6
   Tags: ( cloud a6 )
5. As always, if an attacker has physical access, things get much easier.
   My not so evil maid – Truecrypt encryption attack | Security Active Blog
   Tags: ( truecrypt )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Here are today’s Interesting Information Security Bits from around the web.

1. Some good tips and resources for gathering intelligence.
   Enterprise Open Source Intelligence Gathering – Part 1 Social Networks — spylogic.net
   Tags: ( gathering )
2. I always enjoy pointing to posts that contain resources for education and career advancement. Here is another one.
   Room362.com – Blog – Getting your n00b fill of security
   Tags: ( career learning education )
3. As always, tools can be used for good or for evil.
   Google Wave as a Tool for Hacking | Social Hacking
   Tags: ( )
4. This is a fun video. Evolution of Security.
   A Video For You – F-Secure Weblog : News from the Lab
   Tags: ( general )
5. Want to avoid complete failure from a logging perspective? Check out Anton’s list of logging failures.
   Anton Chuvakin Blog – “Security Warrior”: Top Log FAIL!
   Tags: ( logging )
6. An incident response plan isn’t any good if it isn’t workable. Check out Martin’s thoughts on the issue.
   Have a workable plan, or else… : The Security Catalyst
   Tags: ( incident-response )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

1. Argument For Anonymity – Secure Computing: Sec-C
   Tags: ( anonymity )
2. RaDaJo (RAul, DAvid and JOrge) Security Blog: Samurai Web Testing Framework (WTF) Firefox Add-ons Collection
   Tags: (  firefox add-ons )
3. Medical Records: Stored in the Cloud, Sold on the Open Market | Threat Level | Wired.com
   Tags: ( data-leakage phi cloud )
4. Moving from a Threat Centric to Trust Centric Endpoint Management Model | Optimal Security: The Lumension Blog
   Tags: ( whitelisting malware )
5. SharePoint and Security | Retail Information Security
   Tags: ( sharepoint )

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin