You’ve probably heard by now about the gaping hole in keys generated by Debian’s OpenSSL. If not, the summary is that your SSH keys and SSL certs were selected from a fixed pool of 215 (32,767) possibilities, and are thus easy to brute-force over the network.
If you have any keys generated on a Debian system, you need to immediately replace them or
Preventing Brute Force Attacks With Fail2ban On Fedora 9
Fail2ban is a tool that observes login attempts to various services, e.g. SSH, FTP, SMTP, Apache, etc., and if it finds failed login attempts again...
Open-Source Security Idiots
Sometimes, people do such stupid things that words almost fail me. That’s the case with a Debian ‘improvement’ to OpenSSL that rendered this...
Intel and Microsoft tried to kill OLPC
This is the story of the OLPC project since it was announced in January of 2005. Intel and Microsoft are monopolies that used brute force to delay...
Dynamically blacklisting hosts on a netfilter firewall
A netfilter (iptables) setup: very useful to stop hosts from performing brute force attacks on services that require a password, such as the ssh...
Linksys WRT54GS Wireless-G Broadband Router with SpeedBooster
LINKSYS WRT54GS -- The Wireless-G Broadband Router with SpeedBooster is really three devices in one box. First, there's the Wireless Access Point,...
Apple MacBook MA254LL/A 13.3" Laptop (1.83 GHz Intel Core Duo,...
Apple MacBook - The Apple MacBook features the latest in mobile computing technology. At it's heart is an Intel Core Duo processor. A processor with...
iPhone: The Missing Manual
As you'd expect of Apple, the iPhone is gorgeous. iPhone: The Missing Manual is a book as breathtaking as its subject. Teeming with high-quality...
Post new comment