Category: SANS Internet Storm Center

Less is, umm, less?, (Tue, Nov 25th) 0

Less is, umm, less?, (Tue, Nov 25th)

Following vulnerabilities discovered in tools many Linux and Information Security enthusiasts use such as the strings command and the bash shell, a new series of issues have been discovered in the less command. Less is used to paginate output, and can be used to view the text contents of a file one page at a time.

Guest diary: Detecting Suspicious Devices On-The-Fly, (Tue, Nov 25th) 0

Guest diary: Detecting Suspicious Devices On-The-Fly, (Tue, Nov 25th)

If you apply classic hardening rules (keep the patch level, use an AV, enable the firewall and use them with due diligence), modern operating systems are more and more difficult to compromise today. Extra tools like EMET could also raise the bar. On the other side, networks are more and more populated with unknown/personal devices or devices which provide multiple facilities like storage (NAS), printers (MFP), VoIP, IP camera, …