[ad] A sterling case for two factor authentication if I ever saw one. The rule is use two of the 3 methods of authentication, if possible use all 3. What you have (A USB key or Token) What you are (Biometrics – Fingerprint or Iris scan) What you know (A password or passphrase) More than […]
Archives for September 2006
SIFT Web Method Search Tool
[ad] SIFT has just published a world-first tool for identifying rogue web methods. The Web Method Search tool is a Windows based application that uses a hybrid dictionary attack in an attempt to find unpublished administrative and other web services functions. As web services are becoming more prevalent, poor security practices from previous generations of […]
DOE Hit By Hackers and Covered Up
[ad] Ahah! More government cover-ups? This one was a while back too. Digging on those archives right now yah. A hacker stole a file containing the names and Social Security numbers of 1,500 people working for the Energy Department’s nuclear weapons agency, scary eh? The US government security really does scare me sometimes, their internal […]
Domain Stealing or How to Hijack a Domain
[ad] Please note this is an old technique again, just for learning purposes, learn how the old techniques worked and why they worked, then try and discover new ways to do things. Summary The sole purpose of the information contained in this advisory is to point out the flaws in InterNIC’s domain name handling system […]
China Outlaws Private E-mail Servers
Ah China, always been famous for repressing their population, now there repression is moving onto the Internet and using digital means.. Just like the so called ‘Great Firewall of China’, I’ve been meaning to do an article about that for quite some time, I have something drafted. Anyway the latest thing China has done has […]