There is a feature in OpenSSH since v3.9 which allows multiple SSH connections with the same caracteristics (host, port, remote login) to be made through a single TCP connection. This is useful because you’ll have to authenticate only once, and besides the new SSH connections will be much faster to establish.
Continue reading SSH : Multiplexing connections
Category: Security
Securing automated rsync over SSH
Quoting the RSYNC homepage : “rsync is an open source utility that provides fast incremental file transfer.”
To make rsync both secure and automated (i.e : non-interactive), you can use SSH as the transport and set up a key pair. This is what will be discussed in this post, along with a few improvements.
Network Security : Being the Man In The Middle using ARP
This post presents what is the attack known as “ARP Man in the Middle” which is basically a way for a malicious user to sniff network traffic on a fully switched network. If you don’t know this attack yet, go on reading.
Continue reading Network Security : Being the Man In The Middle using ARP
MSN : get rid of Backdoor.Generic3.SAT
If you got this virus (or know someone who did), and it is spreading to all of your MSN contacts with something like the following message :
hey How are you???? this is ur pic rite?!
http://www.msn- gallery.com/gallery.php?user=some_nickname.jpg
or in French something like :
http://msn-friends. iquebec.com/?photo=some_nickname
ta tof fais koi sur ce site :P
Then you can use the following article (there is a removal tool) to get rid of it : How to Remove MSN Virus Project 1/ Generic2.EXO / Backdoor.Generic3.SAT
Thanks to v-nessa.net for having shared this !
Web Security : What are XSS?
XSS (Cross Site Scripting) are a kind of attacks which are fairly popular these days and could target anyone, but are not nearly well known from most people.
In this post, I’ll try to give a short explanation of what they are.