How Secure are Your Passwords?

Wednesday, April 11th, 2007

John Pozadzides tells you How He’d Hack Your Weak Passwords. It’s neat to see how somebody might attempt to crack your passwords. And while you are learning some password cracking techniques, keep in mind how you might create better, less crackable passwords in the future.

Posted in dmm | Comments Off

Security Testing your Apache Configuration with Nikto

Tuesday, August 15th, 2006

If you’re running an Apache web server, you should most definately give this short how-to a try. Security Testing your Apache Configuration with Nikto is super simple to follow and you might find the results surprising (like I did).

Posted in dmm | 1 Comment »

Configuring OpenSSH for Public Key Authentication

Tuesday, December 6th, 2005

This is the best guide I have found for configuring OpenSSH on Windows for Public Key Authentication. PK authentication makes it possible to ssh to a remote system without the need for a password (which can be dangerous) during tasks that you would like to automate, like backups or syncronization of two systems.

Posted in dmm | 3 Comments »

The Media, Security Flaws & Microsoft

Tuesday, November 8th, 2005

McAfee and Symantec released a virus alert on Monday about a new worm that targetings PHP and CGI scripts stored on vulnerable Web servers. The Linux/Lupper.worm looks to be real nasty, with the only fix being reinstalling the OS. The reason for this drastic fix is that worm could do things that would be difficult to detect.

So what does this have to do with Microsoft and the media? Well, consider if this worm targetted the Windows OS, and the only fix was reinstalling the entire OS. The media would have a field day! But, with this being on the Linux platform, the media probably won’t even pick up on this one.

Now Microsoft certainly has security issues. There’s no hiding that, and certainly they should be held accountable by the media, but in the same breath, so should any other OS. We keep alot of personal data stored on our personal computers, so security should be a priority in any desktop OS. We also keep alot of personal data stored (sometimes unknowingly) by web servers running Linux, so we should expect the same commitment to security on those servers that are storing our data on the Internet. Linux has a good track record in this area. Security holes are found regularly, and Linux sysadmins are diligent at patching and upgrading their systems.

However, having said that, I think the media needs to do a more balanced job with reporting security holes on all operating systems. Windows flaws affect alot of people and so do Linux flaws. As users of the Internet, we need to be aware when our network-stored personal data may potentially be at risk.

Posted in dmm | 2 Comments »

may i suggest
Dreamhost offers great hosting packages with unlimited domain names and bandwidth! Signup now and enter the promotion code dmm to receive $60 off your first year of hosting. Your total cost for one year will be $59 - that's only about $5 per month!  Signup Now!