October 26, 2009, security agencies found that a wave of claims that technical support from Facebook, request the user to reset the password of malicious spam attacks. The message sender address (The From:) is deliberately disguised support@facebook.com to confuse the recipient, the message contains an attachment. Exe implementation of the program. Zip compressed file, currently. Exe implementation of the program VirusTotal on the detection rate of 30%. Closing the warning issued, ThreatSeeker? Network monitoring to the existing 90,000 sent similar information.

In recent years, security technology and security products have made significant progress, some technical and product matures. However, a single security technology or safety features and performance of products has its limitations, can only meet the specific system and network security needs. Therefore, how to effectively use existing security technology and security products to protect the security of the system and network information security has become one of the hot area of research.

The site has recently been tens of thousands of hacker attacks, including the United Nations and the British Government's website. The attack site is embedded in an attack code to take advantage of security vulnerabilities in Microsoft Windows in the visitor's computer to install malicious software.

Aug. 10 message, Microsoft will release next week, 9 security patch, including 6 for blocking its Windows, Office, IE, and Visual Basic software development tools exist for high-risk vulnerabilities.

December 14, according to foreign media reports over the past 10 years in software security, Microsoft has been the primary objective of hackers, but this year, Adobe stole Microsoft's thunder rush.

We are talking about here are some for creating security tools and exploits the security platform. Security experts can take the implementation of the penetration testing, system administrators can verify that the patch is installed, the product vendors to perform regression testing.

Article is mainly about Nessus in the enterprise application, in the platform of your choice to download and install Nessus, since you have already downloaded and installed the Nessus, the following will examine how we use this powerful open-source vulnerability scanner detection system security.

Delay the release of the latest Windows patches decision by the security software industry praise.

Dec. 26 message to Skype's VoIP software, as represented fairly easy to use - hackers attack other people may think so.

Network continues to improve security in the growing popularity

Users accurate positioning of products and the appropriate channel strategy appears to be crucial.

Adobe, in a recent consultation document on-line security of a code execution vulnerability that is included in Adobe Reader V8.1, as well as other versions such as Adobe Acrobat Standard, Adobe Acrobat Professional, Adobe Acrobat Elements 8.1 and Adobe Acrobat 3D, this vulnerability will be will affect Microsoft's Windows XP and Internet Explorer 7. Adobe has not yet released a security patch, but the emergency response measures have been proposed.

Beijing on December 23, according to foreign media reports, Microsoft has said the Danish security company Secunia said in a Windows security vulnerability does exist, Vista also affected, are now to investigate.

Storm the company announced on June 1, "recalled 120 million older versions of Storm video player software", and on the 19th of this month to provide users with "Special Edition" software as a substitute. This is the first application software provider, "recall." (According to "Beijing News" reported on June 2)

The figure is generated group in the Start menu folder name, more like the proposed changes into the name of SERV-U, or delete the folder. (See Figure 3)

About back door

Intruder complete control system, to facilitate the next round and used a technique. Usually by modifying the system configuration files and install third-party tools to achieve the back door. Is hidden, can bypass the system log, system administrators can not easily be found and so on.

Recent major government sites have been compromised, more appalling is that the horse was put up a malicious network, resulting in a large number of users to access the government site passwords, bank accounts, stock accounts, game accounts, or even been leaked personal privacy, confidential intranet information disclosure, resulting in a large number of inestimable loss!

Recent study Firewall configuration under Linux and found that the firewall is configured after the ftp is a problem, and has not been able to log on with Filezilla and CuteFTP, when the directory has been in the list will fail. However, if the first command line following the implementation of passive off, everything is normal.

Although the production of rogue software has been some years, but the emergence of rogue software name, was only two years. Rogue software created at the beginning, carrying a heavy moral burden, by people they hate, but now, malware has become a new business model, under the guidance of the interests, in addition to killing gangsters, the call to gradually grow, rogue software also how to develop, it is placed in front of each of the questions users.

Microsoft Security Response Center each year (Microsoft Security Response Center) surveyed thousands of security reports. In some cases, the Once One report indicates that a security vulnerability causes a defect in a product, Microsoft will repair Cheng Xu developed quickly to correct the error (see the visit Microsoft Security Response Center). In other cases, the reported problems, but is caused by human error when using the product. There are many cases is between the two, of the real security issue, is not always caused by a product defect. Past few years, Microsoft has developed a list of questions like these, known as "the same security rules 10."

To prevent the use of Internet access and dissemination of information related to yellow or reactionary, controlling sensitive on campus known Internet hosts and access to resources; to prevent campus "hacker" on the campus some of the host intrusion, access to internal resources ; also consider reducing the international flow of charges, cost savings, improved browsing speed. Therefore, the application proxy firewall technology and the imperative, but the introduction of the firewall software is expensive, this proposal can be used by Cisco routers have web-based access control layer, which can be IP packet source / destination address and port No. make access control decisions. In addition, based on application layer firewall system is relatively complete, it is called a proxy server (Proxy Server) host. It exists in the middle of the two networks do not allow direct data transfer, and greater Cache, can do a detailed log and audit, and to save traffic, billing, security, offer certain functionality. This article will discuss how to combine both the router and proxy server capabilities to build a firewall system.

According to foreign media reports on September 27, Microsoft has to break Microsoft's media player, a digital copyright protection technology, software hackers to court. However, Microsoft has yet to figure out the identity of the accused.

Skynet firewall load-sharing technology


1. Load sharing - large service node solution

Online to see a Linux firewall rules example, recording to use for future reference

DSW Lab AVERT panel monitor to a high-risk Xunlei vulnerability is exposed, the vulnerability in Web Thunder a control, when installed on a Web Thunder's users browse hacker crafted to contain malicious code page, it will download any program user system permissions to run the current user context.

I found a website, so conventional invasion. Well, it's FINGER open, so I made up a SHELL, aaa account try to zzz (by the way, which I found in an online law, that is, the length of the account and password and the intensity, if an account Only two or three long, that it is generally very simple password, and vice versa, so let's call them if it's Theorem), the result is not an account there, I did not try it in the account. Because I was attracted by its port open, it open WWW, I can not believe it is not wrong. Took five consecutive CGI and WWW scanner scanned a total of three 400 kinds of common errors or to see it almost does not exist root of the information it: