InfSec - Information Security Blog http://www.infsec.info Information Security Blog and personal stuff Thu, 01 May 2008 13:17:29 +0000 http://wordpress.org/?v=2.6 en History of TEMPEST http://www.infsec.info/2008/05/01/history-of-tempest/ http://www.infsec.info/2008/05/01/history-of-tempest/#comments Thu, 01 May 2008 13:17:29 +0000 Jeroen http://www.infsec.info/?p=11 Declassified NSA documents have revealed some historical information about TEMPEST. I love these little stories, read it here

]]> http://www.infsec.info/2008/05/01/history-of-tempest/feed/ CNN is going down http://www.infsec.info/2008/04/18/cnn-is-going-down/ http://www.infsec.info/2008/04/18/cnn-is-going-down/#comments Fri, 18 Apr 2008 12:48:48 +0000 Jeroen http://www.infsec.info/?p=10 At least that is the intention of some chinese dudes and this probably is a form of ‘ethical hacking’ for some people.

Organized (DDOS) attacks for a good cause seems to be a new trend but I doubt if it’s going to make a change.

]]> http://www.infsec.info/2008/04/18/cnn-is-going-down/feed/ ClamAV vulnerability http://www.infsec.info/2008/04/14/clamav-vulnerability/ http://www.infsec.info/2008/04/14/clamav-vulnerability/#comments Mon, 14 Apr 2008 14:16:52 +0000 Jeroen http://www.infsec.info/?p=9 Secunia Research has discovered a vulnerability in ClamAV, which can be exploited by malicious people to compromise a vulnerable system.

In my humble opinion, security bugs in security tools always seem a bit like a bad joke but the given solution cracked me up when reading it :Do not scan untrusted PE files.

Hmmm, aren’t viruskillers created to just do that :)

]]> http://www.infsec.info/2008/04/14/clamav-vulnerability/feed/ Trusted vs Secure http://www.infsec.info/2008/04/11/trusted-vs-secure/ http://www.infsec.info/2008/04/11/trusted-vs-secure/#comments Fri, 11 Apr 2008 06:25:20 +0000 Jeroen http://www.infsec.info/?p=8 In the company I work for we have some policy that states that the local area network is trusted. For some reason some people seem to like to interpret this as the local area network is secure. Not wanting to understand the difference between trusted (all parties connecting to the local network are trusted by our company) and secure (communication channels used on the local network don’t need any additional protection measures).

For me this just points out two things:
1. People are stupid (or at least like to act that way if it fits their agenda).
2. (Security) Policies should be chrystal clear including definitions of terms that might be interpreted different by people in certain situations.

]]> http://www.infsec.info/2008/04/11/trusted-vs-secure/feed/ Forefront, codename: Stirling http://www.infsec.info/2008/04/10/forefront-codename-stirling/ http://www.infsec.info/2008/04/10/forefront-codename-stirling/#comments Thu, 10 Apr 2008 20:10:23 +0000 Jeroen http://www.infsec.info/?p=6 Microsoft Released a Beta of their Integrated Security System Forefront codename “Stirling”. Downloaded the Beta version to give it a test spin.

Will write down some first impressions soon.


Microsoft Forefront Security Administration Guide

Jesse Varsalone. Syngress 2008, Paperback, 800 pages, $59.95

]]> http://www.infsec.info/2008/04/10/forefront-codename-stirling/feed/ Hello world! http://www.infsec.info/2008/04/09/hello-world/ http://www.infsec.info/2008/04/09/hello-world/#comments Wed, 09 Apr 2008 13:41:13 +0000 Jeroen http://infsec.info/?p=1 There’s always something like a first step, or in this case, a first post.

This is it and this is all, for now.

]]> http://www.infsec.info/2008/04/09/hello-world/feed/