Stop identifying yourself to the world. Stop giving away personally identifiable information about yourself on forum posts, facebook, twitter, or any other social sites.

It’s about meeting the developers half-way, and that’s mentioned, but it can’t be stressed enough. I just worry this might be used as an excuse for not writing secure code. If you tell developers they don’t have to worry about insecure code because a framework will save them you may as well tell them they can avoid exercise and eat all the twinkies they like because there’s a magic pill for that too.

Since so many websites use flash, and most computers you come across have adobe flash installed, this vulnerability is kind of a big deal due to the sheer volume of potentially affected computers. Install Google’s Chrome browser. It’s faster than your browser, and while you’re at it, head over to youtube with this link, and try youtube through html5.

What if there’s no open file to be found, then what? If you were looking for some sort of media file, it might be easy to use a memory based distro with tools like photorec

You can use this to check to see if anyone has modified, updated, upgraded, added, or removed any files on your system. After you’ve configured a system the way you want it, dump hash files for all the important directories, /etc, /bin, /usr/local, etc., or just dump the whole thing. Move the output to another system. Now if you want to check to see if something has changed, you can hash the file(s) in question and grep for the hash.

Capture filters are completely different than display filters, and for some reason it’s not immediately evident when you’re in Wireshark to understand what the syntax is for capture filters. Capture filters don’t follow these rules at all. But if you’re familiar with tcpdump, then you already know how to limit the capture with filters.

CK’s that contain no data are not reliably transmitted by TCP. If zero window probing is not supported, a connection may hang forever when an ACK segment that re-opens the window is lost. This type of attack has been realized since 2006. This means that an application or firewall must selectively abort TCP connections that appear malicious by staying in the persist state and consume large amounts of resources.

Assuming you’ve already installed and configured your directory to use TLS encryption, you should verify LDAP is working as you expect before you start streaming passwords and other important data across the wire. You can use Wireshark and it’s full blown gui interface, but it’s faster just to fire up tethereal for this test.

Think of all the software you install on your computer as windows on a battle tank. Every app is another window where armor used to be. The next time you get hit with a virus, the chance that it’s aimed at one of your windows just increased.

Instead of storing whole dd images, even if they’re just backups of small partitions, you can save space and bandwidth by piping dd into a compression utility like gzip. You can then unzip the files straight into sha1sum to get a checksum of what you just backed up.