Tales from the Crypto






         Alun Jones (Security MVP Reconnect) writes about security, cryptography, SSL, PKI, and pretty much anything else that bothers him enough.

Archive for July, 2008

July 29, 2008

FTP – Untrustworthy? I Don’t Think So!

Lately, as if writers all draw from the same shrinking paddling-pool of ideas, I’ve noticed a batch of stories about how unsafe, unsecure and untrustworthy is FTP. SC Magazine says so. First it was an article in the print version of SC Magazine, sadly not repeated online, titled “2 Minutes On… FTP integrity challenged”, by […]

July 25, 2008

Kaminsky Black-Hat Webcast: "By Any Other Name: DNS has doomed us all."

Okay, so the talk’s official title was “Dan Kaminsky’s DNS Discovery: The Massive, Multi-Vendor Issue and the Massive, Multi-Vendor Fix”. Arcane details of TCP are something of a hobby of mine, so I attended the webcast to see what Dan had to say. The Past is Prologue A little history first – six months ago, […]

July 22, 2008

Whoops – Information Wanted to be Free Again.

Picture the scene at Security Blogs R Us: “We’re so freakin’ clever, we’ve figured out Dan Kaminsky’s DNS vulnerability” “Yeah, but what if someone else figures it out – won’t we look stupid if we post second to them?” “You’re right – but we gave Dan our word we wouldn’t publish.” “So we won’t publish, […]

July 19, 2008

DNS Server Reserves 2500 Ports.

After applying the patch for MS08-037 – KB 953230 (the multi-OS DNS flaw found by Dan Kaminski), you may notice your Windows Server 2003 machine gets a little greedy. At least, mine sucks up 2500 – yes, that’s two thousand five hundred – UDP sockets sitting there apparently waiting for incoming packets. This is, apparently, […]

July 11, 2008

Vistafy Me.

I have a little time over the next couple of weeks to devote to developing WFTPD a little further. This is a good thing, as it’s way past time that I brought it into Vista’s world. I’ve been very proud that over the last several years, I have never had to re-write my code in […]

© 2017 Tales from the Crypto   Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs