CoMedia:
Home
Consulting
Hot List:
Bay Area
Media
People
Fun
Search
Spirit
Words
Technology:
Local Tools
Programming
S/W Eng.
GNU/Linux
Security
WWW
Other Sites:
Activism.net
Broadcatch.com
Fen.net
Javawalk.com
OpenPrivacy.org
RoadSage.com
|
|
CoMedia Programming Resources: Security
Contents:
General Info,
WWW Security,
News,
Firewalls,
Testing,
Virii and
Hoaxes
Security is mostly a superstition. It does not exist in nature, nor do
the children of man as a whole experience it. Avoiding danger is no
safer in the long run than outright exposure. Life is either a daring
adventure, or nothing.
-- Helen Keller
-
Center for Education and Research in Information Assurance and
Security (CERIAS) (Purdue University)
- an ongoing center of excellence which will promote and enable world
class leadership in multidisciplinary approaches to information
assurance and security research and education
-
Computer Security Information (NIH.gov)
- from the
Advanced Laboratory Workstation System,
a Foundation for Open Systems at NIH
-
SANS (System Administration, Networking, and Security)
Institute
- SANS Top Twenty
Internet Security Vulnerabilities
-
Yahoo's computer security index
-
W3C Security Resources
-
WWW Security FAQ
-
Yahoo's HTTP security index
-
Bugtraq (at
Security Focus)
- a full disclosure moderated mailing list for the *detailed* discussion
and annoucement of computer security vulnerabilities: what they are,
how to exploit them, and how to fix them
-
Computer Emergency Response Team (CERT) (at CMU)
- a federally funded research and development center sponsored by the
DoD, in 1988 after the release of a "worm program" caused an explosion
of copies of itself to be written at computers around the Internet
-
Computer Incident Advisory Capability (CIAC) Security Web Site
- CIAC provides on-call technical assistance and information to
Department of Energy (DOE) sites faced with computer security
incidents
- check ou the
Bulletins Search Engine and
Security Tools links
-
Forum of Incident Response and Security Teams (FIRST)
- FIRST aims to foster cooperation and coordination in incident
prevention, to prompt rapid reaction to incidents, and to promote
information sharing among members and the community at large
- LinuxSecurity
- Linux-centric security news and information
- Packetstorm
- They have an excellent
defense section
- RootShell
- news, exploit database, and a good documentation section
- SecuriTeam
- news and utilities for computer security
- SecurityPortal
- a useful weekly alert magazine that summarizes issues grouped by
operating system
- Technotronic
- another security news database
- XForce
- maintained by ISS
-
comp.security.firewalls
- OPIE - One-time Passwords in Everything
(deprecated by SSH)
-
OPIE documentation
-
OPIE archive (see the
contrib directory for client software)
-
SonicWALL
- A nice little box - I have the SOHO...
- The
TIS Internet Firewall ToolKit (FWTK)
- Common Vulnerabilities and
Exposures (CVE)
- A list of standardized names for vulnerabilities and other
information security exposures -- CVE aims to standardize the names
for all publicly known vulnerabilities and security exposures.
- Internet Security Systems (IIS)
- the blue-chip site cracker
- Nessus
- a free, powerful, up-to-date and easy to use remote security scanner
- The
Security Administrator's Integrated Network Tool (SAINT?)
-
Security Auditor's Research Assistant (SARA)
- both SAINT and SARA are updated versions of
SATAN
- See also:
Improving the Security of Your Site by Breaking Into it
- AMaViS
- A Mail Virus Scanner (server side)
-
F-Secure Viruses & Hoxes page
- Useful and complete. See, for example, their
50 Latest Virus Descriptions
-
Rich Pasco's Virus Pages
- Rich has put together some useful and very readable
information about virii and what you should know both to prevent
yourself from getting infected and from passing something undesirable
on to others.
-
Symantec AntiVirus Center
-
HoaxBusters (CIAC)
- Hoaxes described include:
PKZ300,
Good Times and
Make Money Fast
- Also includes a
history of hoaxes on the Internet,
how to identify a hoax warning, and
what to do if you think a message is a hoax.
-
CNET's "All New" Favorite Net Hoaxes
-
Data Fellows Hoax Page
-
Don't Spread that Hoax!
- Complete with historical color
-
Urban Legends
- See also: the
CIAC Internet Chain Letters web page.
-
Chain Letter Info Page (Rutgers)
|