McAfee: Why we blacklisted SANS False positives almost unknown, claims SiteAdviser boss Analysis McAfee's SiteAdvisor security tool briefly blacklisted the respected SANS Institute on Wednesday. The incident highlights wider concern

7 views read more 2008-08-01 05:02:03

Transformation Caching Unstable, Fixed, But Deprecated We have just released ModSecurity 2.5.6 to address several issues with transformation caching: the subsystem is unstable, can crash your server server, and is even susceptible to evasion in certain ci

8 views read more 2008-08-01 04:04:00

Gmail certificate expiry snafu follows security upgrade Webmail service POP losses its fizzle Google allowed one of its Gmail SSL certificates to expire days after promising users improved webmail security.…

9 views read more 2008-07-30 10:22:35

ModSecurity In Solaris Although Solaris has been supported as a platform for ModSecurity since the very beginning, it has now become part of Sun's Cool Stack:Cool Stack is a collection of some of the most commonly used open

17 views read more 2008-07-29 10:07:00

Apple skewered over missing DNS patch Users in a BIND Apple has come under fire for failing to patch the critical Domain Name System (DNS) flaw which prompted a (rest of) industry wide response earlier this month.…

13 views read more 2008-07-29 09:27:29

Oracle warns over unpatched vuln Zero-day BEA WebLogic flaw gets up Oracle's bonnet Oracle has decided to break its quarterly update release cycle with plans to develop a patch against a zero-day exploit.…

13 views read more 2008-07-29 06:32:12

Oops - SF prosecutors put city passwords on public record Cunning plan San Francisco prosecutors have put the city's network at further risk by placing access passwords and usernames on the public record as part of their case against Terry Childs, the sysadm

13 views read more 2008-07-28 06:05:59

Security shocker: 75% of US Bank websites have flaws Insecure by design The vast majority of US bank websites jeopardize the security of their online customers by including design flaws that expose passwords and are susceptible to tampering by attackers

12 views read more 2008-07-25 18:13:53

High-priority patch fixes critical vulns in RealPlayer Available in Windows, Mac and Linux RealNetworks has issued an update that patches four security holes in its RealPlayer jukebox program, including a critical flaw that vulnerability tracker Secunia p

13 views read more 2008-07-25 17:30:11

World's biggest ISPs drag feet on critical DNS patch BT, AT&T among those putting subscribers at risk More than two weeks after security researchers warned of a critical defect in the net's address lookup system, some of the world's biggest internet

13 views read more 2008-07-24 19:24:24