The Browser Security Handbook (BSH) from search engine company Google has been published under free license.more »
Smart Access Intro Techniques for managing user identities in LinuxNov 01, 2008
Maybe password security isn't perfect, but most networks depend on it. This month we examine some tools for smarter, more versatile authentication.more »
Security Lessons How hacking got easyNov 01, 2008
When it comes to security, public disclosure of vulnerabilities and working exploit code is now common. We look at why this can be both harmful and helpful to securing your systems.more »
Web Authentication Adding authentication to your websiteNov 01, 2008
Apache offers several options for adding a password-protected area to a website.more »
The Open Web Application Security Project (OWASP) has placed videos of its latest conference online. The open- source project concerns itself with web application security.more »
Security Lessons The soft chewy center of the InternetOct 01, 2008
Are your systems secure against DNS attacks? We'll show you why they matter and help you determine whether you are vulnerable.more »
Romain Gaucher, a specialist in web security, offers his Scalp tool in version 0.4. The log analyzer searches for attacks on Apache web applications.more »
Security Lessons Protecting your site and your clientsSep 01, 2008
Learn more about protecting your website with NoScript, ModSecurity, and Site Security Policy.more »
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.
Klaus Knopper announces the latest version of his iconic Live Linux system.
All websites that use these popular CMS tools could be vulnerable to denial of service attacks if users don't install the updates.
According to a report, many potential victims of the Heartbleed attack have patched their systems, but few have cleaned up the crime scene to protect themselves from the effects of a previous intrusion.
DARPA and NICTA release the code for the ultra-secure microkernel system used in aerial drones.