Author : Admin
Mozilla Firefox 3.5 was released June 30th, 2009 that is claimed as the best modern web browser and more faster to render web pages. However, in July 13, 2009, SBerry has discovered a vulnerability in web browser Mozilla Firefox, which can be exploited by malicious people to compromise a user’s system. This is the first vulnerability of Mozilla Firefox v3.5 that was published.
Mozilla Firefox with new features like private browsing, tear-off tabs and enhancements to the Awesome Bar, plus major performance enhancements. In the security improvement, secure surfing is top priority, anti phishing, anti malware technology and have added private browsing and “forget this site” options to ensure our privacy. … continue reading : Vulnerability Web Browser Firefox 3.5 with Highly Critical Security.
Author : Admin
In this discussion, we will be showed how to securing Microsoft Internet Explorer ( also called IE ), one of the most popular web browsers, see Web Browser Wars, Popularity and Market Share. As we know that IE – Internet Explorer is a web browser integrated into the Microsoft Windows operating system and it’s bundled with every copy of Windows.
Securing Microsoft Internet Explorer – IE involves applying updates and patches, modifying a few setting and practicing intelligent surfing. Microsoft routinely release Internet Explorer with specific security patch, so it’s very important to configure the Microsoft Windows Update Automatically or visit the Microsoft Windows Update site regularly. … continue reading : How to Securing Microsoft Internet Explorer – IE.
Author : Admin
There are several step, we as client or users can take to make web browsers and e-mail client more secure and protect against malicious code or unauthorized use of information. In this discussion, we will describe step by step how to tighten the security of web browser in general browsers or client, it’s not specific in one of the browsers.
First step to make sure our browser more secure is restricting the use of programming languages. Most web browsers have option settings that allow users to restrict or deny the use of web based programming languages. For example, Internet Explorer can be set to do one of three things when a JavaScript, Java or Activex element appears on a web page : Always allow, Always Deny and Prompt for user input. … continue reading : How to Tighten Web Browser Security.
Author : Admin
Tripwire is a file and directory integrity checker that comparer a designated set of files and directory against information store in a previously generated database. It uses the baseline for comparison of files at scheduled intervals and if changes are detected, alerts are processed based on the configuration. It’s can notify system administrators of corrupted or tampered files, so damages control measures can be taken in a timely manner.
We will not discussion about how to install but how to securing and optimizing Tripwire in the Linux server. After installing Tripwire, we next step is verify or change, if necessary options in our Tripwire configuration files. … continue reading : Tripwire : Hardening Linux Server with Monitoring Integrity of Files.
Author : Admin
TCP Wrappers, in the same manner by name, provides protection Linux server services that communicate using TCP packets. So, systems that communicate using TCP packets channel, those packets through TCP Wrappers and the request is checked against a series of rules. Majority of the commercial Linux server like Redhat Enterprise Linux AS, SLES and others distribution implement a facility known as TCP Wrappers. The TCP Wrappers are implemented using two files, one controlling what is specifically accepted and the other that specifies denials. The files are called /etc/hosts.allow and /etc/hosts.deny. These files provides ability to define access to Linux server services based on IP Address or hostname.
Rules of the TCP Wrappers in the /etc/hosts.allow and /etc/hosts.deny files, the process is sequential : clients and users listed in hosts.allow are allowed acess and clients / users listed in hosts.deny are denied access. … continue reading : Hardening Linux Server with TCP Wrappers.
Author : Admin
When we discussion about security and how to evaluate and analyze the security of an enterprise company or organization, we need a security platform. With security framework we believe that establishing an appropriate framework goes long way toward helping we establish a reasonable framework for analyzing security and shape an effective information security program.
Security framework is made up of three tiers : organizational factors, security objectives and security mechanisms. So, if we want to evaluate and analyze the security of an enterprise, it’s based on elements of the security framework .
… continue reading : Evaluate and Analyze Network Security Based on the Security Framework.
Author : Admin
In the previous discussion, Hardening Linux Server part 1: Physical Access Security was discussed how to improve physical access security in the Linux server. In this discussion will be discussed more detail in the side of Linux itself.
The “root” account has no security restrictions, for this reason we must know what we are doing and never login with this user unless it’s absolutely an instance that necessitates root access. The first thing to be done to improve security the Linux server, it’s configure users profile, especially the super user “root”. It’s sometimes and even often happens is delete file when we log in as “root”. So, we need to modifications of the “rm” command, like show in script following bellow. … continue reading : Hardening Linux Server part 2 : Advanced Linux Security.
Author : Admin
Security of a Linux Server is very important and it’s not only software or package is installed. There are several aspect to be considered such physical security, operating system, application and network. A Secure Linux server depends on how the administrator make it.
Improvement of Linux server security, one of more aspect that is very important is the physical security. Administrator must block unauthorized people to access Linux server and make sure who is promised to physical access to server. It’s important to note that there is possibility to bypass the security measure if someone has physical access to Linux server. So it’s select room server with access control system.
… continue reading : Hardening Linux Server part 1 : Physical Access Security.
Author : Admin
Nmap is the most popular and feature rich of the network scanner and widely available for most Unix platform and Windows. Nmap first release in 1997 by Insecure and currently Nmap has been integrated into a number of commercial security products.
Nmap provides a number of command line options to fine tune performance and packet timing. First option that we will discussion is the –n, it’s instructs Nmap to don’t name lookups on the IP Address and make the scan faster to complete. Other option of Nmap is the –sP. It’s instruct Nmap to perform a host scan and by default, Nmap sends both an ICMP echo request also known as ping packet as well as TCP SYN packet. … continue reading : Expert Network Scanning with Nmap.
Author : Admin
The common way to attack Microsoft Windows Sytem is pass through the Windows File and Print Sharing Service, which operates over protocol called SMB ( Server Message Block ). SMB protocol listening on TCP port 445 and 139 ( also known as NetBIOS based service ). An attacker commonly attacked via password guessing on Microsoft Remote Procedure Call ( MSRPC ) listening on TCP port 135, Terminal Services on TCP port 3389 and other services.
In this discussion, we will describe how to attack MS Windows System via password guessing and assuming that SMB is accessible. The most effective method for breaking into a Windows System is remote share mounting such as IPC$ or C$. Combination username and password is used to connect to an enumerated share. We will use the net use command like this. … continue reading : Microsoft Windows Authentication Spoofing Attack.
