The first ad for the Android smartphone leaks some specs and positions Droid as the anti-iPhone. More: continued here

PHP Security involves minimizing programming errors as much as possible, and putting proper code in place to protect against possible vulnerabilities – Often times this means putting 2-3 “layers” of protection in place to guard sensitive data against hackers that could otherwise cause a catastrophic result if compromised. Developers call this principle of redundant safeguarding Defense [...]

The default time that ARP entries are cached in a Sun Solaris system is 5 mins. However, this can be reduced to lower level (say 3mins). This means that the number of ARP requests and ARP replies to and from the server will increase as a result. So, before modifying the caching time, check if [...]

Worries that the notorious Conficker worm will somehow rise up and devastate the Internet on April 1 are misplaced, security experts said Friday. Conficker is thought to have infected more than 10 million PCs worldwide, and researchers estimate that several million of these machines remain infected. If the criminals who created the network wanted to, [...]

Sometime it is necessary to block incoming connection or traffic from specific remote host. iptables is administration tool for IPv4 packet filtering and NAT under Linux kernel. Following tip will help you to block attacker or spammers IP address.  The blocklist is create with an API I wrote and you can use wget to update [...]

Data Execution Prevention (DEP) is a Windows Vista security feature that can help prevent damage to your computer from viruses and other security threats by monitoring your programs to make sure that they use system memory safely. If DEP notices a program on your computer using memory incorrectly, it closes the program and notifies you. [...]

 xinetd, the eXtended InterNET Daemon, is an open-source daemon which runs on many Linux and Unix systems and manages Internet-based connectivity. It offers a more secure extension to or version of inetd, the Internet daemon. xinetd performs the same function as inetd: it starts programs that provide Internet services. Instead of having such servers started [...]

When you connect to a MySQL server, you should use a password. The password is not transmitted in clear text over the connection. Password handling during the client connection sequence was upgraded in MySQL 4.1.1 to be very secure. If you are still using pre-4.1.1-style passwords, the encryption algorithm is not as strong as the [...]

Priority: HIGH Impact: Potential for database corruption or malware to be distributed to website visitors. Resolution: Verify blocking policy in web application firewall. Remediate the following web application and database flaws: 1. Poor/missing input validation of user-supplied data in the web application. 2. Poor/missing output encoding of user-supplied data. 3. Improper database permissions and/or SQL query construction. Who: [...]

Fighting spam email is a worldwide daily combat challenge. Email spam fight is just another daily server wide monitoring function of any sysad administering those email servers. Global spam email attacks and happens everyday regardless of country, server setup, domains, geolocation and public IP address you might have. Take a look of the top country [...]

Why Secure Your Web Browser? Today, web browsers such as Internet Explorer, Mozilla Firefox, and Apple Safari (to name a few), are installed on almost all computers. Because web browsers are used so frequently, it is vital to configure them securely. Often, the web browser that comes with an operating system is not set up [...]