Security Alert: How To Stop Firefox Clickjacking Exploit Attack

last updated in Categories CentOS, Debian Linux, fedora linux, Linux, Linux desktop, Mozilla, OS X, RedHat/Fedora Linux, Security, Security Alert, Windows, windows vista

Really scary exploit attack in wild, which affects all browsers under any desktop operating systems including MS IE, Linux, Apple safari, Opera, Firefox and Adobe flash. Any website that uses CSS and IFRAME (used to serve ads) can be used to attack on end users as attacker is able to take control of the links that your browser visits. In this article I will share few tips to stop this deadly attack until final patch is released by vendors.

Security Alert: Debian OpenSSH packages Fix Denial of Service

last updated in Categories Debian Linux, Linux distribution, package management, Security Alert, Ubuntu Linux

Debian Linux project released the Openssh security updates for computers powered by its Debian Linux operating systems. It has been discovered that the signal handler implementing the login timeout in Debian’s version of the OpenSSH server uses functions which are not async-signal-safe, leading to a denial of service vulnerability.

Critical Red hat / Fedora Linux Openssh Security Update

last updated in Categories CentOS, fedora linux, Linux, Linux distribution, News, RedHat/Fedora Linux, Security Alert

Last week one or more of Red Hat’s servers got cracked. Now, it has been revealed that both Fedora and Red Hat servers have been compromised. As a result Fedora is changing their package signing key. The intruder was able to sign a small number of OpenSSH packages relating only to Red Hat Enterprise Linux 4 (i386 and x86_64 architectures only) and Red Hat Enterprise Linux 5 (x86_64 architecture only). This update has been rated as having critical security impact.

CentOS / Red Hat Enterprise Linux 5.2 Poor NFS Performance and Solution

last updated in Categories Apache, CentOS, data center, File system, High performance computing, Howto, Linux, Linux distribution, Networking, package management, RedHat/Fedora Linux, Security Alert, Storage, Sys admin, Troubleshooting, Tuning

A few days ago I noticed that NFS performance between a web server node and NFS server went down by 50%. NFS was optimized and the only thing was updated Red Hat kernel v5.2. I also noticed same trend on CentOS 5.2 64 bit edition.

dnsmasq Dns Cache Software Security Update To Fix DNS Spoofing Attacks

last updated in Categories BIND Dns, CentOS, Debian Linux, fedora linux, Linux, Linux distribution, package management, RedHat/Fedora Linux, Security Alert

Red Hat has shipped a new version of its dnsmasq caching software to plug source UDP port bug. This could have made DNS spoofing attacks (CVE-2008-1447) easier. Dnsmasq is lightweight ultra fast dns cache server forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network.