28729815
submission
Morty writes:
The NSABB (National Science Advisory Board for Biosecurity) has recommended that details of two research papers involving Avian Flu not be published because of security concerns. At least one of the research groups says that their work should be logically reproducible. The NSABB's censorship recommendations do not (currently) have the force of law, but Science and Nature voluntarily delayed publication.
27991994
submission
Morty writes:
In 1961, C.S. Lewis nominated JRR Tolkien for the Nobel Prize in Literature. Tolkien did not receive the prize. 50 years later, the archives for that year are now available, so we know why. Tolkien's prose was viewed as low quality.
25949192
submission
Morty writes:
BIND, the popular DNS server software, has been crashing all over the Internet. The root cause is believed to be a 0-day vulnerability in BIND's resolver. The ISC has issued an alert.
245409
submission
Morty writes:
DNS rebinding attacks can be used by hostile websites to get browsers to attack behind firewalls, or to attack third parties. Browsers use "pinning" to prevent this, but a paper describes so-called multi-pin vulnerabilities that bypass the existing protections. Note that, from a DNS perspective, this is a "feature" rather than an implementation bug, although it's possible that DNS servers could be modified to prevent external sources from being able to point at internal resources. Also note that use of noscript to block javascript, java, and flash should also work around this.
