Happy owner of an iPhone and eavy user of Keepass, I was looking for some application which performs the same job: keep an encrypted container of passwords. If you check on iTunes App Store, there are several applications “keepass-alike” but it’s not convenient to maintain two databases (duplicate information). But…
Tag: Software
VirtualBox Developers are Amiga Nostalgic?
I’m playing with VirtualBox and got a Windows XP crash during the installation process. I read the virtual machine log and found the following line: 00:01:14.946 Changing the VM state from ‘RUNNING’ to ‘GURU_MEDIATION’. This error is very close to the famous “Guru Meditation” coming from the Amiga world! Do
OpenVAS… a fork of Nessus
OpenVAS (Open Vulnerability Assessment System) is a free alternative to the well-known Nessus vulnerability scanner. With the latest Nessus version, the licensing model changed and the latest plugins are only available to paying customers. Based on Nessus 2.2, OpenVAS is deployed in the same way: a server is installed to
nBox – Packet-to-Disk Recorder
NMon provides a new appliance ‘nBox Recorder‘ or ‘The Packet-to-Disk Recorder‘. The goal is simple: lot of security analyzis are based on packet captures. This box just performs a simple but critical tasks: It captures the traffic and stores it under the pcap format. Then? Just take your time to
Google Encryption Toolkit
Google released a interesting toolkit for all developers: KeyCzar. Data encryption is a requirement in most of modern applications. Developers have to be “security minded” (it’s also our goal as security professional to perform a continuous awareness to security). But cryptography, if badly implemented, can lead to enormous security breaches.
The Monitoring Pyramid
I found this pyramid in a document written by Groundwork. It resumes perfectly how to deploy a monitoring solution in the best way. This post is completely independent of the monitoring tool, choose the best one to meet your expectations. Often, when a company decides to implement a monitoring/reporting tool,
The Art of Patching
Finally! After weeks of “yellow status” reported by PSI (Personal Software Inspector from Secunia), my profesional notebook finally went “green”! I’m using PSI for a while on my notebook which has plenty of installed applications: productivity, connectivity, security, reporting tools and much more. Since the beginning, I was never able
OpenSSH 5.1 is Out
A few days ago, I wrote about the SSH Fingerprint ASCII Visualization. OpenSSH 5.1 is out and proposes this new feature right now! And of course, a lot of fixes and improvements. Check the full list here.
Check Your DNS Resolver
Since the announce of the major DNS vulnerability (multi-vendors), it’s patching time for all admins around the world. Did you already perform your homework? The people at OARC have crafted a special DNS name and server that you can query to check whether or not your resolver is using random
Groundwork and Wiki Integration
Next article regarding Groundwork, a very good monitoring and reporting environment. I already integrated WeatherMap with Groundwork (the community edition), or added a Security Dashboard. Now, let see how to integrate a Wiki into Groundwork. A Wiki is an online collaborative tool where everybody can update the pages content directly