Ratproxy is described as a " semi-automated, largely passive web application security assessment tool", by Google. This tool was released by Google to help developers and system administra…

At the recent CanSecWest Applied Security Conference that was held in Canada, three computers running Mac OS X, Vista and ubuntu linux respectively were offered for hacking. None of the three were c…

I have talked about firewalls and how it is configured to secure your computer from malicious access but it seems that I have failed to even mention the one that comes bundled with Ubuntu, Firestart…

Remote access are enabled by using SSH. Whilst this surely makes it more secure than telnet, there are times when you want to have finer-grained control over what SSH commands can be executed from re…

It is common knowledge that we use ssh for remote access as well as the underlying transport for some other services, e.g., VNC over SSH, FTP over SSH, etc. One you have SSH installed, you can also om…

If only we can have a huge wall like China's Great Wall to protect us from security breaches, then we'd all be sleeping soundly every night. Unfortunately, there isn't one available but …

Not too long ago, I wrote about TrueCrypt, an open source disk Encryption software. To some, it may be cryptic to get TrueCrypt to use, much more integrate into your daily workflow. To make it easier,…

In another one of those microsoft technet hosted blog entries, Jeff Jones wrote about the "July 2007 OS Vulnerability Scorecard", which definitely puts Microsoft OS as superior compared to t…

I admit that this is the first time I have heard of Server Name Indication, or SNI, for securing virtual hosts. I am glad to have found a tutorial on how to use SNI with Apache via mod_gnutls module. …

Even if we secure our computer systems from remote intrusions, hackers will never stop at testing your defenses. Whilst having a sufficiently secure system may be sufficient, the fact that these hacke…