Security
spammers get smarter
Spammers get smarter. My e-mail server has passed one or two spams for me each day, which is much more than it used to be.
They begin to use GIFs for sending spams… So, smarter, smarter spammers are going to win in some areas, but…
We have something to stop this! Hahaha… Let me try!
参与评论postfix experimental snapshot supports DSN!
Yes, finally postfix is supporting DSN. To quote Witese, this is the first postfix snapshot which provides “full support for RFC 3461..3464 Delivery Status Notifications”!
参与评论学校终于还是启用了流量整形
从禁止ping,到最后的流量整形。不知道明天会是什么。
我不认为这是有助于安全的设施。
如果你相信——你生活在一个没有任何安全威胁的环境,那么,任何人都会变得缺少防备的意识。
阅读全文…Keeping your ssh connection alive
Sometimes, when you are in a NAT’ed environment, ssh connection may be dropped when the gateway is busy.
OpenSSH has provided a solution against this.
The option is called “ClientAliveInterval”. With this setting in your sshd_config, sshd(8) would send a ping message through the encrypted channel periodically, thus prevent the early drop.
The default setting is 15, meaning the ping period is 15 seconds.
阅读全文…不安全的原因
我们来看看那个人说的这段话:
阅读全文…I’d be really surprised if somebody is actually able to get a real-world attack on a real-world pgp key usage or similar out of it (and as to the covert channel, nobody cares). It’s a fairly interesting approach, but it’s certainly neither new nor HT-specific, or necessarily seem all that worrying in real life. (HT and modern CPU speeds just means that the covert channel is _faster_ than it has been before, since you can test the L1 at core speeds. I doubt it helps the key attack much, though, since faster in that case cuts both ways: the speed of testing the cache eviction may have gone up, but so has the speed of the operation you’re trying to follow, and you’d likely have a really hard time trying to catch things in real life).
It does show that if you want to hide key operations, you want to be careful. I don’t think HT is at fault per se.
Enabled SPF protection on beastie
A decision was made to enable SPF on beastie. SPF is a technology that mitigates forged spam (while it itself is not totally spam proof, as spammers can set up their own SPF record :-)
参与评论Why you should not hide version.bind?
This article has suggested a way of hiding version.bind string. From a security perceive, this is an overkill and can usually be harmful:
- While it’s true that you can hide version.bind, the fact that version.bind is can be queried reveals that you are running BIND. It makes little sense to fake a version.
- The need of hiding information, which is unnecessarily hidden like this, means that the system administrator is neglecting security.
- Therefore, FOREACH(version.bind is queriable and is hidden) HACKEM :-)
Security can NOT be built on what others are not aware of.
参与评论HyperThreading considered harmful
Colin Percival has released his paper about a complex security issue that accompany with Intel HyperThreading Technology. This has became FreeBSD Security Advisory SA-05:09.htt.
阅读全文…So, tarsier is now running 5.4-RELEASE-p1
Colin is very effective man that has made some changes to the kernel, and so@ has approved this, and 5.4-RELEASE gets its first patchlevel.
I’m happy that this did not forced me to go to the hosting provider :-)
参与评论在dryice的指引下全力抢救精华区……
疯狂下载中
参与评论