Good afternoon everybody! I hope your day is going well. Sorry for missing yesterday. I had a brutally busy day and then we had a power outage at home to boot.
Here are today's Interesting Information Security Bits from around the web.
- A new packet challenge is up at I Smell Packets.
Packet Challenge - Name that Exploit << I Smell Packets
Tags: ( challenge packet-capture ) - This is an interesting post with some thoughts that can be extended well beyond virtualization.
View Yonder >> Free the Gladiators!
Tags: ( virtualization ) - This time a peak at php and sessions.
AppSec Street Fighter - SANS Institute >> Session Attacks and PHP
Tags: ( session ) - Anton opines on the contents of the letter sent to the PCI council by the National Retail Federation and other retail associations.
On "PCI Letter"
Tags: ( pci letter ) - Mozilla has been at work to come up with a method of getting rid of XSS problems. They believe they have it with Content Security Policy.
Shutting Down XSS with Content Security Policy at Mozilla Security Blog
Tags: ( csp mozilla ) - Christofer has a nice couple of graphics that help describe cloud computing from a high level perspective.
Rational Survivability >> Incomplete Thought - Cloudanatomy: Infrastructure, Metastructure & Infostructure
Tags: ( cloud ) - The ISC diary points out some ways to protect your webserver from being DOSed by the tool released by Rsnake recently.
Apache HTTP DoS tool mitigation
Tags: ( apache dos ) - RSnake take a look at detecting man-in-the-middle proxies.
Detecting MITM/Hacking Proxies Via SSL ha.ckers.org web application security lab
Tags: ( mitm ) - Lori offers some thoughts on IPv6 that you should also be thinking about.
You are the new number 3ffe:1900:4545:3:200:f8ff:fe21:67cf
Tags: ( ipv6 )
That's it for today. Have fun!
Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.
Kevin
{ 0 comments }