Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Xavier has a script you can use with nmap to scan for IIS FTP servers that may be susceptible to the recent 0-day.
    /dev/random >> Detecting Vulnerable IIS-FTP Hosts Using Nmap
    Tags: ( nmap ftp iis )
  2. Chapter 2 of Michael's excellent book "Into the Breach" is now available for free in audio format.
    Into the Breach - Audio Series - Chapter 2 (People Just Want to Do Their Jobs) : The Security Catalyst
    Tags: ( books audio )
  3. Issue 22 is out of (IN)Secure. Good stuff inside. Direct link to PDF.
    INSECURE-Mag-22.pdf (application/pdf Object)
    Tags: ( magazine )
  4. I read the Farhad Manjoo piece that Ben is referencing and was amazed. Ben does a great job of speaking to the points that Farhad tried to make. -- Why corporate IT chains your computers
    Tags: ( general )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.



(IN)Secure Magazine 20 is Out

by kriggins on February 24, 2009

in Uncategorized

One of my favorite information security magazines is (IN)Secure. The folks at Help Net Security put out a consistently great publication and the price is right, free. The March edition as published today. You can get it here. Below is a partial list of the articles in this edition:

  • Improving network discovery mechanisms
  • Building a bootable BackTrack 4 thumb drive with persistent changes and Nessus (by me)
  • What you need to know about tokenization
  • Q&A: Vincenzo Iozzo on Mac OS X security
  • A framework for quantitative privacy measurement
  • Why fail? Secure your virtual assets
  • Phased deployment of Network Access Control
  • Web 2.0 case studies: challenges, approaches and vulnerabilities
  • ISP level malware filtering
  • Q&A: Scott Henderson on the Chinese underground