Monthly Archives: January 2009

Hardening Checklist

Posted on 31-Jan-2009 by .

Telnet -> OpenSSH (latest patches) SSH Server: Protocol 2, do not allow root login SSH Client: Protocol 2 Prevent root login (su/sudo only) Install ossec: http://www.ossec.net Confirm needed services in xinetd / inetd Confirm runlevel is multi-user mode and not … Continue reading →

Posted in security | Leave a comment

Cracking Windows SAM file

Posted on 30-Jan-2009 by .

A friend of mine showed me a great online video shows cracking the Window’s SAM file using the BackTrack live CD. The Windows SAM file which is a database stored as a registry file stores users’ passwords in a hashed … Continue reading →

Posted in linux, security | Leave a comment

No More Silent Camera Phones?

Posted on 30-Jan-2009 by .

I have a company provided Blackberry. One thing that really peeves me off is that there is no way to disable the snapping photograph sound when you take a picture. I’ve heard there is a hack someone came up with … Continue reading →

Posted in news | Leave a comment

Windows computer running slow?

Posted on 29-Jan-2009 by .

Do you have a Microsoft Windows PC running slow? The first but usually most painful solution is to reformat and or reinstall. However before proceeding with such drastic steps there are two things I recommend checking: 1) Do you have … Continue reading →

Posted in microsoft | 2 Comments

NSA secure cellphone for Obama? Updated

Posted on 26-Jan-2009 by .

We’ve heard all the talk about Obama giving up his cellphone when he takes over as president. There are things to worry about such as the data retention and the Presidential Records Act not to much mention privacy and security … Continue reading →

Posted in news | Leave a comment

‘Application Data’ passwords

Posted on 23-Jan-2009 by .

If you’re running Windows XP or Vista have a look in C:\Documents and Settings\username\Application Data ***you may need to show hidden files/folders This is a warning if you have applications store or remember your username and especially password. These applications … Continue reading →

Posted in microsoft, news | 1 Comment

Largest data breach ever?

Posted on 20-Jan-2009 by .

It’s just being reported that Heartland Data Systems, a credit card processing company, was breached for a large portion of 2008. They’ve just recently discovered the problem. They process CC transactions for millions of merchants and accept Mastercard, Visa, Discover. … Continue reading →

Posted in news | Leave a comment

Impersonation

Posted on 20-Jan-2009 by .

If you’re not a member of Bruce Schniere’s CRYPTO-GRAM mailing list I suggest you sign up right now. It’s a wonderful monthly mailing where Bruce talks about everything from security to cryptographyand comments on the latest news. In the latest … Continue reading →

Posted in news | Leave a comment

Obama’s cyberspace security roadmap?

Posted on 20-Jan-2009 by .

In Late December the Center for Strategic and International Studies published Securing Cyberspace for the 44th Presidency. It’s a very good read albeit some parts can become long and dry. It sounds more like a child’s unrealistic Christmas wish list … Continue reading →

Posted in news | Leave a comment

Two simple steps to lockdown a Microsoft Windows machine…

Posted on 19-Jan-2009 by .

Trying to keep your Windows box secure? Trying to keep your Windows box secure for cheap? For free? The quickest, easiest, and most affordable things you can do to lock down your Microsoft Windows PC are: 1) Configure MVPS’ customized … Continue reading →

Posted in microsoft | Leave a comment