nixCraft » attacker

nixCraft » attacker http://www.cyberciti.biz/tips This is a Linux sys admin journal by Vivek about sys admin work, Linux tips & tricks, hacks, news and more. Fri, 03 Feb 2012 22:45:35 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 BIND 9 Dynamic Update DoS Security Updatehttp://www.cyberciti.biz/tips/bind-dynamic-update-dos.html http://www.cyberciti.biz/tips/bind-dynamic-update-dos.html#comments Wed, 29 Jul 2009 15:47:12 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=5570

BIND 9 is an implementation of the Domain Name System (DNS) protocols. named daemon is an Internet Domain Name Server for UNIX like operating systems. Dynamic update messages may be used to update records in a master zone on a nameserver. When named receives a specially crafted dynamic update message an internal assertion check is triggered which causes named to exit. An attacker which can send DNS requests to a nameserver can cause it to exit, thus creating a Denial of Service situation. configuring named to ignore dynamic updates is NOT sufficient to protect it from this vulnerability. This exploit is public. Please upgrade immediately.]]> http://www.cyberciti.biz/tips/bind-dynamic-update-dos.html/feed 7 Important: Openssl Security Update [CVE-2008-5077]http://www.cyberciti.biz/tips/cve20085077-important-openssl-security-update.html http://www.cyberciti.biz/tips/cve20085077-important-openssl-security-update.html#comments Thu, 08 Jan 2009 21:58:45 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=4283

Linux / BSD and UNIX like operating systems includes software from the OpenSSL Project. The OpenSSL is commercial-grade, industry-strength, full-featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as general purpose cryptography library.

The Google security team discovered a flaw in the way OpenSSL checked the verification of certificates. An attacker in control of a malicious server, or able to effect a "man in the middle" attack, could present a malformed SSL/TLS signature from a certificate chain to a vulnerable client and bypass validation.

This update has been rated as having important security impact on FreeBSD, all version of Ubuntu / Debian, Red Hat (RHEL), CentOS, Fedora and other open source operating system that depends upon OpenSSL.]]> http://www.cyberciti.biz/tips/cve20085077-important-openssl-security-update.html/feed 2 Security Alert: How To Stop Firefox Clickjacking Exploit Attackhttp://www.cyberciti.biz/tips/firefox-stop-clickjacking-attack.html http://www.cyberciti.biz/tips/firefox-stop-clickjacking-attack.html#comments Fri, 26 Sep 2008 09:03:55 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2966

Really scary exploit attack in wild, which affects all browsers under any desktop operating systems including MS IE, Linux, Apple safari, Opera, Firefox and Adobe flash. Any website that uses CSS and IFRAME (used to serve ads) can be used to attack on end users as attacker is able to take control of the links that your browser visits. In this article I will share few tips to stop this deadly attack until final patch is released by vendors. ]]> http://www.cyberciti.biz/tips/firefox-stop-clickjacking-attack.html/feed 6 Ubuntu Linux Critical Kernel Vulnerabilities Fix Availablehttp://www.cyberciti.biz/tips/ubuntu-linux-kernel-vulnerabilities-2.html http://www.cyberciti.biz/tips/ubuntu-linux-kernel-vulnerabilities-2.html#comments Wed, 16 Jul 2008 07:58:42 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2467 http://www.cyberciti.biz/tips/ubuntu-linux-kernel-vulnerabilities-2.html/feed 1 Debian Linux Security Update: Lighttpd DoS and Gaim Package Remote Security Issueshttp://www.cyberciti.biz/tips/debian-linux-security-lighttpd-dos-gaim-package-2.html http://www.cyberciti.biz/tips/debian-linux-security-lighttpd-dos-gaim-package-2.html#comments Tue, 15 Jul 2008 18:19:58 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2463 http://www.cyberciti.biz/tips/debian-linux-security-lighttpd-dos-gaim-package-2.html/feed 0 Security Alert: BIND9 DNS Cache Poisoning Bughttp://www.cyberciti.biz/tips/bind9-dns-cache-poisoning.html http://www.cyberciti.biz/tips/bind9-dns-cache-poisoning.html#comments Tue, 08 Jul 2008 17:40:13 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2451 http://www.cyberciti.biz/tips/bind9-dns-cache-poisoning.html/feed 5 Firefox Leads Web Browser Security Warhttp://www.cyberciti.biz/tips/firefox-leads-web-browser-security-war.html http://www.cyberciti.biz/tips/firefox-leads-web-browser-security-war.html#comments Fri, 04 Jul 2008 14:13:08 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2442 http://www.cyberciti.biz/tips/firefox-leads-web-browser-security-war.html/feed 0 Security Update: Ubuntu Linux PCRE Vulnerability (libpcre3)http://www.cyberciti.biz/tips/ubuntu-linux-pcre-vulnerability.html http://www.cyberciti.biz/tips/ubuntu-linux-pcre-vulnerability.html#comments Sun, 15 Jun 2008 19:29:23 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2465 http://www.cyberciti.biz/tips/ubuntu-linux-pcre-vulnerability.html/feed 0 Security Alert: rhpki-common – the Red Hat PKI Common Frameworkhttp://www.cyberciti.biz/tips/cve-2008-1676-redhat-rhpki-common.html http://www.cyberciti.biz/tips/cve-2008-1676-redhat-rhpki-common.html#comments Tue, 03 Jun 2008 09:35:04 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2434 http://www.cyberciti.biz/tips/cve-2008-1676-redhat-rhpki-common.html/feed 0 Ubuntu Linux Security Update: Samba regression ( CVE-2008-1105 )http://www.cyberciti.biz/tips/cve-2008-1105-samba-regression.html http://www.cyberciti.biz/tips/cve-2008-1105-samba-regression.html#comments Wed, 30 Apr 2008 13:13:00 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2429 http://www.cyberciti.biz/tips/cve-2008-1105-samba-regression.html/feed 0 Understanding Forensicshttp://www.cyberciti.biz/tips/introduction-to-forensics.html http://www.cyberciti.biz/tips/introduction-to-forensics.html#comments Wed, 23 Apr 2008 20:48:13 +0000 Vivek Gite http://www.cyberciti.biz/tips/?p=2226 http://www.cyberciti.biz/tips/introduction-to-forensics.html/feed 0 How do I Drop or block attackers IP with null routes?http://www.cyberciti.biz/tips/how-do-i-drop-or-block-attackers-ip-with-null-routes.html http://www.cyberciti.biz/tips/how-do-i-drop-or-block-attackers-ip-with-null-routes.html#comments Wed, 24 May 2006 20:13:35 +0000 LinuxTitli http://www.cyberciti.biz/tips/how-do-i-drop-or-block-attackers-ip-with-null-routes.html http://www.cyberciti.biz/tips/how-do-i-drop-or-block-attackers-ip-with-null-routes.html/feed 27 Linux Iptables Limit the number of incoming tcp connection / syn-flood attackshttp://www.cyberciti.biz/tips/howto-limit-linux-syn-attacks.html http://www.cyberciti.biz/tips/howto-limit-linux-syn-attacks.html#comments Sun, 26 Jun 2005 22:58:00 +0000 LinuxTitli http://www.cyberciti.biz/tips/linux-iptables-7-how-to-limit-the-number-of-incoming-tcp-connectionsyn-flood-attack.html http://www.cyberciti.biz/tips/howto-limit-linux-syn-attacks.html/feed 13