@securityninja
- No public Twitter messages.
Categories
- Application Security (147)
- Data Loss (32)
- Dublin Security Group (1)
- Events (1)
- Hacking (56)
- Ninja News and Updates (89)
- PCI DSS (17)
- Slideshare (6)
- Videos (9)
Archives
Yearly Archives: 2008
SHA3 first round candidates announced
NIST has announced the first round of candidates for the new SHA3 hashing algorithm. Nothing too exciting on the site so far but it does list the candidates and provide download links for the algorithms code. It is interesting to see Ron Rivest (MD6) and Bruce Schneier (Skein) are listed as candidates for the first round. Interesting times ahead! Dave
A well defined SDL doesn't garauntee security
I did briefly mention the recent IE flaw which caused a bit of a media frenzy last week but I would like to look into why the the flaw was in the software in the first place. Microsoft have released a very honest review of how the flaw made it into the live software here. The flaw was basically a TOCTOU (Time Of Check Time Of Use) error in which an array wasn’t evaluated close … Read more
Microsoft early christmas present
Well Microsoft will be giving us all an early christmas present this week. Unfortunately instead of finding a nice present in our stockings we will be finding a lovely new Microsoft patch! Wooo! In all seriousness its the second time in the past few months that Microsoft has issued an out of cycle patch. The vulnerability it will be patching is in the Internet Explorer browser. The discussion of this vulnerability started last week and … Read more
Airport Security
I wouldn’t normally comment on airport security on this blog but I feel I have to now! I’m not talking about the fact you need to turn up 2/3 hours before the flight, with the size of airports like Heathrow you need that time to reach your gate What I’m commenting (moaning about?) on is the security checks in the airport that you have to go through. I have traveled through 4 different airports in … Read more
