MS08-068 and SMBRelay – Christopher Budd provides background on this update and why it took some seven years to release the security update.
Couple good references from the latest MPUG mailing: MS Project, Early and Often and 10 Signs You Don’t Really Know Microsoft Project
Free, Downloadable, Enterprise-Class Log Management Solution Q1 Labs is providing a free, feature-rich log management solution called QRadar SLIM Free Edition (FE). A downloadable "virtual" appliance, QRadar SLIM FE lets IT professionals:
- Collect, analyze, report, and store network, host, server, application, and event logs, via syslog, from a wide variety of network systems (e.g., routers, switches, security devices, etc.)
- Obtain advanced analytics to quickly turn confusing events into useful results
- Search and report on event logs to meet specific regulatory requirements
Security experts reveal details of WPA hack In their paper, Practical attacks against WEP and WPA, Martin Beck and Erik Tews have published details about their attacks on WPA secured networks. The attack is essentially a variant of the chopchop attack used against WEP secured networks, which surfaced in early 2005. The name "chopchop attack" is a nod to the KoreK-developed chopchop tool, which allows the user to decrypt an arbitrary encrypted data packet without having to know the WEP key. – via heise Security UK