ESET Nod32 Antivirus | Antispyware | Console d administration
Chercher :
Newsletter :  

Revues :
- Presse
- Presse FR
- Vidéos
- Twitter
- Secuobs




Abonnez vous � Nessus Professional Feed !

Sponsors :

Sommaires :
- Tendances
- Failles
- Virus
- Concours
- Reportages
- Acteurs
- Outils
- Breves
- Infrastructures
- Livres
- Tutoriels
- Interviews
- Podcasts
- Communiques
- Commentaires


Revue Presse:
- Tous
- Francophone
- Par mot clé
- Par site
- Le tagwall


Top bi-hebdo:
- Ensemble
- Articles
- Revue
- Videos
- Twitter
- Auteurs


Articles :
- Par mot clé
- Par auteur
- Par organisme
- Le tagwall


Videos :
- Toutes
- Par mot clé
- Par site
- Le tagwall


Twitter :
- Tous
- Par mot clé
- Par compte
- Le tagwall


Commentaires :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


Secumail :
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis


RSS/XML :
- Articles
- Brèves
- Commentaires
- Revue
- Revue FR
- Videos
- Twitter
- Secunia
- Full Disclosure
- Bugtraq
- DailyDave
- Vulnwatch
- Vulndiscuss
- FunSec
- Focus-IDS
- WebAppSec
- Security-Basis


RSS SecuObs :
- sécurité
- exploit
- windows
- microsoft
- réseau
- attaque


RSS Revue :
- security
- microsoft
- windows
- hacker
- attack
- network


RSS Videos :
- vmware
- security
- virus
- biometric
- windows
- lockpicking


RSS Twitter :
- security
- linux
- botnet
- attack
- metasploit
- cisco


RSS Comments :
- Breves
- Virus
- Failles
- Outils
- Tutoriels
- Tendances
- Acteurs
- Reportages
- Infrastructures
- Interviews
- Concours
- Livres
- Communiques


RSS OPML :
- Français
- International









Abonnez vous � Nessus Professional Feed !


Revue de presse francophone :
- RIP SecurityFocus
- Malware PS2 Emulators - Play 2 Emulator
- securite RSF choisit Linagora pour sécuriser son site Internet
- CERTA-2010-ACT-010 Bulletin d'actualité numéro 010 de l'année 2010 12 mars 2010
- CERTA-2010-AVI-119 Vulnérabilité dans dpkg 12 mars 2010
- CERTA-2010-AVI-120 Vulnérabilités dans Apple Safari 12 mars 2010
- Le smart grid trouve lentement sa place dans le secteur énergétique public
- Acquisition de GE Security par United Technologies Corp.
- Les professionnels adoptent le cloud computing mobile
- Sur les réseaux sociaux, les tags font le lien entre utilisateurs
- Check Point ABRA tout son bureau sur clé USB
- Les services dans les nuages font-ils courir un risque à l'entreprise
- Citrix lance XenApp 6
- Deux nouveaux routeurs VPN gigabit DrayTek
- CA SiteMinder Cross Site Scripting via WebWorks Help

Dernier articles de SecuObs :
- Edenwall obtient une subvention de la DGA
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- Une faille dans l’implémentation RSA de OpenSSL
- Flint un scanner pour simuler, vérifier et nettoyer les règles de filtrage
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- 100 000 dollars pour le Pwn2own 2010
- Un botnet qui rapporte gros
- Webraider offre un reverse shell contre une simple injection SQL
- Des nouvelles du traité secret ACTA
- Keimpx un outil d'audit pour les réseaux Microsoft Windows

Revue de presse internationale :
- Certified Pre-Owned Items
- Student Nabbed For Hacking School Computers
- ????? ?????
- Friday Squid Blogging Cipherlopods
- BI shouldn't look like BI on smart phones
- A year later, Zer01's Web site disappears
- Scareware, Sinowal, Client-Side Exploits Serving Spam Campaign in the Wild
- Web security breaches rock Hotmail
- FBI Hoaxes Boost Online Fraud
- x86 Disassembly - wikibooks PDF
- Media Player classic StatsReader .stats file stack buffer Overflow poc
- Trojan armed with hardware-based anti-piracy control
- new usrp fpga code location
- Easy IM-ME flashing
- Shopping with Cooliris

Annuaire des videos
- Robot Following a Colored Target
- US to Use Immigration to Push National Biometric ID
- smartphone botnet article
- Understanding botnet
- Official sqlmap video demonstration 10
- Official sqlmap video demonstration 12
- Creating running and deleting files with Device File names
- Using SSLStrip to proxy an SSL connection and sniff it
- FIREWALL LINUX IPTABLES Disquete de Boot do BrazilFW www professorramos com
- RSA Conference USA 2010 Opening Ceremony
- Shmoocon 2010 Blackberry Mobile Spyware The Monkey Steals the Berries 4 6
- RSA Conference USA 2010 Remarks from Secretary Janet Napolitano US Homeland Security 1
- Shmoocon 2010 GPU vs CPU Supercomputing Security Shootout 1 3
- RSA Conference USA 2010 Shifts in the Security Paradigm What Cloud and Collaboration Demand
- Malware Analyzis Sandbox and PC Remote Control over Twitter Hak5

Revue Twitter
- BUGTRAQ: [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface! http://bit.ly/9keNFS
- RT @H_FJ: Looking down, from the edge of the precipice of Javascript Improvements, into the daunting abyss of Real Code.
- ZeuS botnet code keeps getting better? for criminals http://bit.ly/abpbFW
- RT @Tony_BradleyPCW: 12 Smart Ways to Save Time and Effort with Enterprise VoIP Software. http://bit.ly/dl4ETn
- CLR Profiler ..Heap Display: I want to do something similar to display stack
- Microsoft Fixes Eight Bugs, Warns Of IE Zero-Day - http://tinyurl.com/ylx2qxy
- Zeus related botnet servers taken offline http://bit.ly/b9fhpm
- @danchodanchev standard botnet operators learning on the job. Seems that many folks fail to understand today's evolved threat.
- Why Didn?t The Aurora Botnet Operators Use DIY Malware Kits? - http://blog.damballa.com/?p=593
- RT @jeremiahg: Did you know XSS can retrieve passwords from a browser's password manager stored for the vulnerable website?

Mini-Tagwall
Revue de presse : security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone

+ de mots clés pour la revue de presse

Annuaires des videos : vmware, security, virus, biometric, windows, lockpicking, password, botnet, metasploit, tutorial, attack, crypt, linux

+ de mots clés pour les videos

Revue Twitter : security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall

+ de mots clés pour la revue Twitter



Top bi-hebdo des articles de SecuObs
- Apprendre à parler Skype pour mieux le faire taire !
- Des nouvelles du traité secret ACTA
- Une faille dans l’implémentation RSA de OpenSSL
- SET 0.4.1 - Social Engineering Toolkit - une plateforme de Social Engineering
- Keimpx un outil d'audit pour les réseaux Microsoft Windows
- 100 000 dollars pour le Pwn2own 2010
- Webraider offre un reverse shell contre une simple injection SQL
- Les acteurs de la lutte contre la cybercriminalité
- Imposter 0.9 une plateforme de phishing ciblant les navigateurs Web
- Keimpx un outil d'audit pour les réseaux Microsoft Windows

Top bi-hebdo de la revue de presse
- Sea World killer whale attack video leads to malware
- How to Jailbreak iPhone 3.1.3 IPSW with PwnageTool 3.1.5
- Dev Team Confirms iPhone 3.1.3 IPSW Jailbreak
- FREE Kaspersky Internet Security 2010 Activation Code Valid for 6 Months
- Rozlyn Papa sex tape rumours lead to malware
- Bajolet a-t-il dénoncé des agents de la DGSE
- installer backtrack 4 [tuto]
- Nouveau dictionnaire WPA Livebox
- Windows 7 browser choice screen March 1 Office 2010 ballot screen Highly critical Firefox vulnerability Google CEO Schmidt knows everything about you
- Flight simulator, c est périmé

Top bi-hebdo de l'annuaire des videos
- Comment creer un server botnet!!!!(Réseau de pc zombies)
- install MacOSX Snow Leopard in Windows PC using Vmware Workstation as virtual machine
- Blaze botnet in action www opensc ws
- Windows Backtrack 4 in Virtualbox Part 1
- Basic Squid Proxy Server Tutorial Part 3 of 3
- Ch0ry Euro iPhone 3G 3GS 30 Hack WIFI key
- Running Wireshark on Mac OS X 10 6 Snow Leopard
- Windows XP Pro SP3 in VMWare off iSCSI Target using gPXE over 802.11n
- SSLstrip wmv
- Avast Internet Security 5 0 396 Final Free Full Download Licensed with Serial Key

Top bi-hebdo de la revue Twitter
- Wirshark + SSH = Wireshark Remote Capturing - http://www.howtoforge.com/wireshark-remote-capturing (via @welias)
- RT @FrikiFeeds: The newbie's guide to hacking the Linux kernel | TuxRadar Linux http://dlvr.it/6sQp
- RT @manicode: Very interesting Java ESAPI-like library coming out of Apache : http://bit.ly/9poefg
- Exploit for Apache mod_isapi = 2.2.14 Dangling Pointer (CVE2010-0425) vulnerability ported to Metasploit http://bit.ly/ctDQjk
- Watching Metasploit Tricks 1 from @mubix - http://vimeo.com/9695470
- Discoverer: Automatic Protocol Reverse Engineering from Network Traces #pdf http://ow.ly/1gHd1
- RT @InfoSec208: The Virtual USB Analyzer: http://bit.ly/dpXc5F
- RT @damienmiller: Help test the new OpenSSH release (it's a big one): http://bit.ly/avLI9B #openbsd #openssh
- Product Watch: Free Tool Cleans Up Rusty, Unsafe Firewall Settings - Dark Reading http://bit.ly/d8hGhS #Security
- Apache releases version 2.2.15 with 5 security fixes including OpenSSL issue. http://bit.ly/9OGP6H

Top des articles les plus commentés
- [Metasploit 2.x – Partie 1] Introduction et présentation
- Microsoft !Exploitable un nouvel outil gratuit pour aider les développeurs à évaluer automatiquement les risques
- Webshag, un outil d'audit de serveur web
- Les navigateurs internet, des mini-systèmes d’exploitation hors de contrôle ?
- CAINE un Live[CD|USB] pour faciliter la recherche légale de preuves numériques de compromission
- [Renforcement des fonctions de sécurité du noyau Linux – Partie 1] Présentation
- Microsoft Gazelle, mini-OS virtuel basé sur MashupOS pour une navigation Web sécurisée par isolation
- Yellowsn0w un utilitaire de déblocage SIM pour le firmware 2.2 des Iphone 3G
- Nessus 4.0 placé sous le signe de la performance, de l'unification et de la personnalisation
- [Hacking Hardware - Partie 1] - Introduction et présentation

Re-Issuing Debian-Flawed Certificates
Les derniers commentaires publiés sur SecuObs (1-5):
- Skype - URI Handler Input Validation
- OWASP CSRFTester Test Applications for CSRF
- ESRT @MarioVilas @DidierStevens - Added shellcode to Tweet to my library
- ESRT @ThisIsHNN @th3j35t3r - releases 2nd video of enhanced XerXeS attack - i
- plecost v0.2.2-7 Beta Update

Si vous voulez bloquer ce service sur vos fils RSS
Si vous voulez nous contacter ou nous proposer un fil RSS

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]

S'abonner au fil RSS global de la revue de presse



Re-Issuing Debian-Flawed Certificates

Par No Tricks
Le [2009-11-26] à 23:13:00



Présentation : In 2008 it was discovered that the OpenSSL package in Debian had been producing low entropy public keys for about a year and a half on its Etch distribution. While it was relatively easy to patch the offending code only a few lines , it was going to be more difficult to track down and re-issue all the weak public keys that had found their way into SSL server certificates. From my post on the topic An article in the Register, called Debian's Epic SSL Blunder, states that the number of SSL certificates that may need replacing could be in the hundreds of thousands or even millions. So while the OpenSSL PRNG code can be easily patched, identifying and replacing all the weak keys generated by the flawed code is a big operational headache. It may be months or years before all the weak keys and their corresponding certificates are tracked down and upgraded. At the Internet Measurement Conference IMC held in early November, researchers Scott Yilek, Eric Rescorla, Hovav Shacham, Brandon Enright, and Stefan Savage presented a study on the rate at which Debian-flawed SSL server certificates were being replaced. In short, the news could have been better. The researchers tracked a collection of approximately 50,000 public web servers over a period of 6 months. Initially around 1.5pourcents of the servers 751 to be exact were using Debian-flawed keys in their certificates, and the observed rate at which these certificate were being re-issued is shown in the graph below image The researchers stress that as compared to typical patching rates for general vulnerabilities, re-issuing certificates for the sample of weak servers was very slow. A long term study by Qualys reported this year that the patching half-life for vulnerabilities is 30 days, and so over a 6 month period we should see an exponential decrease in unpatched endpoints. However the graph above is approximately linear, and 30pourcents of the Debian-flawed certificates were still not re-issued after almost 180 days. The authors conclude that unlike other vulnerabilities which have been studied and typically show a short, fast, fixing phase followed by levelling off, certificates were replaced on a slower cycle with substantial fixing extending well past five months after the announcement. We also found that in some cases certificate authorities continued to issue certificates to weak keys long after the vulnerability was announced. Incidentally the researchers also found that approximately 2pourcents of the sampled servers 1000 or so were still using 512-bit RSA keys. While such keys are not as weak as those produced by the Debian flaw, recovering the associated private keys was recently shown to require nothing more than a 3-day desktop calculation. Nonetheless, this faction of 512-but keys is a dramatic improvement over the results of a survey conducted in 2000 which found almost a quarter of the 8,000 servers sampled were using 512-bit keys.




AddThis Social Bookmark Widget



Les derniers articles du site "No Tricks" :

- Recovering RSA Private Keys using Faulty Signatures
- More Microsoft SDL Giveaways
- Passwords for USB Keypads
- RSA-512 factoring service two weeks effort for 5,000
- USB devices back on duty for the DoD
- Month Summary, Feb 2010
- A Short Security Manifesto
- A look back, Jan Feb 2009
- A dissection of Koobface
- NodeXL Network Overview, Discovery and Exploration in Excel




S'abonner au fil RSS global de la revue de presse

Menu > Articles de la revue de presse : - l'ensemble [tous | francophone] - par mots clé [tous] - par site [tous] - le tagwall [voir] - Top bi-hebdo de la revue de presse [Voir]



Si vous voulez bloquer ce service sur vos fils RSS :
- avec iptables "iptables -A INPUT -s 88.191.75.173 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 88.191.75.173 to any 80"
- Nous contacter par mail





Les derniers commentaires publiés sur SecuObs (6-25):
- cookiemonster v1.6
- Automatic Reverse Engineering of Data Structures from Binary Execution
- Samhain v2.6.3 Beltane v2.3.19 released
- Social-Engineering Ninja v0.1 Beta - PHP scripts
- Botan 1.9.4
- The Beginning of the End of Data Retention
- A Notepad PoC for the remote CHM help file hijack MS vulnerability
- What's New in Chanalyzer 34
- gnupg 2.0.15
- fwbuilder 4.0.0
- ESRT @sbrabez - w3af 10-rc2 updated on FreeBSD
- ESRT @MarioVilas - gnupgpy is a Python API which wraps the GNU Privacy Guard
- ESRT @mosesrenegade @JoelEsler - How to make Snort Attribute tables using Nma
- ESRT @Trancer00t - Metasploit exploit module for the new MSIE 0day vuln
- ESRT @ToolsWatch - FireCAT v1.6.2 updated with 4 Firebug add-ons
- ESRT @komeilipour - Discoverer: Automatic Protocol Reverse Engineering from N
- BeEF Key Logging
- SubSeven v2.3.2010 released
- OpenSCAP v0.5.7 released
- Building a Linux Incident Response Forensic Disk


SecuToolBox :

Mini-Tagwall des articles publiés sur SecuObs :

Archives Failles Secunia :
- SA38869 GNU Cpio rmt Buffer Overflow Vulnerability
- SA38836 GNU Tar rmt Buffer Overflow Vulnerability
- SA38908 Skype URI Handling /Datapath Vulnerability
- SA38885 Ubuntu update for apache2
- SA38911 Drupal Monthly Archive by Node Type Module Security Bypass

Archives Mailing Full Disclosure :
- Full-disclosure Claude Mercier/CLSC-CHSLD BVLV/Reg03/SSSS est absent(e).
- Re: Full-disclosure SecurityFocus to partially shut down
- Full-disclosure 2nd CfP: ICCGI 2010 || September 20-25, 2010 - Valencia, Spain
- Full-disclosure SecurityFocus to partially shut down
- Full-disclosure 2nd CfP: INTERNET 2010 || September 20-25, 2010 - Valencia, Spain

Archives Mailing Bugtraq :
- USN-909-1 dpkg vulnerability
- Skype URI Handler Input Validation
- MDVSA-2010:060 squid
- Vulnerabilities in Abton
- Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker
- SECURITY DSA 2011-1 New dpkg packages fix path traversal

Mini-Tagwall de l'annuaire video :

Mini-Tagwall des articles de la revue de presse :

Mini-Tagwall des Tweets de la revue Twitter :