Forgot your password?
typodupeerror

Submission Summary: 0 pending, 6 declined, 2 accepted (8 total, 25.00% accepted)

Security

+ - Conficker/Downadup mitigation

Submitted by
XenoPhage
XenoPhage writes "I'm working on possible mitigation scenarios for a potential Conficker/Downadup outbreak. One of the ideas we have is to "poison" our own DNS caches, effectively redirecting any infected clients to a local server. The thought is that this would help identify infected systems as well as prevent them from receiving updated instructions from command and control. The question is, however, how to do this, as well as what possible side effects will we encounter. Is this method absolutely taboo and should be avoided at all costs, or is this a valid method of detection/mitigation?"
Security

+ - Diebold (in)Secuity Foiled Again

Submitted by
XenoPhage
XenoPhage writes "Yet again, Diebold has shown their security prowess. This time they posted, on their website, a picture of the actual key used to open all of their Diebold voting machines. Ross Kinard of Sploitcast crafted three keys based on this photo. Amazingly enough, two of the three keys successfully opened one of the voting machines. But fear not, Diebold has removed the offending picture, replacing it with a picture of their digital card key. Take that, hackers!"

Work expands to fill the time available. -- Cyril Northcote Parkinson, "The Economist", 1955

Working...