Articles in category 'Security'

Cette petite applet Gnome permet de vérouiller automatiquement la session X11 en fonction de votre distance avec la machine, enfin plutôt de celle de votre téléphone portable bluetooth. Ce n’est pas du tout inviolable, mais c’est quand même trés pratique (et amusant) !
Plus d’infos dans ce forum.

September 11, 2008, 9:54 am lock

So you your boss asked you to secure his new strategic web application which is part of his plan to conquer the world. But that damn developers are used to think that their work is finish when it just works, and debugging their whole code is simply not an option. Here’s the solution: use [...]

November 29, 2007, 1:08 am lock

As reported by the ISC, some people are using images to hide PHP code : if an image, contains PHP code, for example in the comment section, it may be included as an usual PHP file, and the PHP code will be happily executed. It may be a great way to hide malicious code in [...]

June 19, 2007, 4:19 pm lock

It is possible to an authenticated user in Cacti to modify the graph_start and graph_end parameters values in the URL, and specify higher numbers than expected in order to make cacti use all the server CPU.
For example, if an user modify a graph URL as seen is the location bar:
http://localhost/cacti/graph_image.php?local_graph_id=2&rra_id=0&view_type=tree&graph_start=1164236234&graph_end=1179871034
to this one:
http://localhost/cacti/graph_image.php?local_graph_id=2&rra_id=0&view_type=tree&graph_start=1164236234000&graph_end=1179871034000
rrdtool will take [...]

June 2, 2007, 12:17 pm lock

ModSecurity2 is a Web Application Firewall, integrated into Apache as a module. You can use it at the final web server by adding the module (especially if you have a HTTPS web server, so your IDS/IPS cannot analyze these flows), or by adding an Apache based reverse proxy in front of your [...]

March 19, 2007, 2:39 pm lock

You will find here some bugs or issues I found in Fortinet Fortigate firewall/IDS/Anti-Virus/Anti-Spam gateway.
CVE-2005-3057 : Bypass Fortinet anti-virus using FTP
CVE-2005-3058 : Bypass Fortinet URL filtering

AV analysis impact on network performance:
I found a 23 K file for which the AV analysis causes some important delay for network connections (this file is here).
Configuration:
We are using [...]

February 13, 2006, 3:34 pm lock