An Argument for Moving Your SSH Port off 22

Whether or not one should move their SSH off port 22 is a hot discussion topic in security circles. The prevailing (and correct) belief is that changing the SSH port is a security by obscurity measure, because any attacker worth their weight in salt can just run a...

Defensible network architecture

For the nearly 20 years since Zwicky, Cooper and Chapman first wrote about Firewalls the firewall has been the primary defense mechanism of nearly every entity attached to the Internet.  While perimeter protection is still important in the modern enterprise, the fact...

OpenSSL fix for POODLE

OpenSSL released a patch for the poodle attack: http://threatpost.com/openssl-releases-patch-for-poodle-attack/108875

Security in USB is broken

Researchers Karsten Nohl and Jakob Lell created a proof-of-concept malicious malware, BadUSB, highlighting how fundamentally the USB security is broken. The malware resides in the firmware of the USB device. Currently there is no way of knowing if the firmware has...

LibreSSL – new fork of OpenSSL

The OpenBSD project is starting a new fork of OpenSSL. Based on blogs and comments, it seems that a cleanup of the code is overdue. The new fork can be found here: http://www.libressl.org/. They need donations to support Multi-OS version of the software. Consider...