Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Open Source

Heartbled and Shellshocked … What Can We Do?

– Well, it happened again. A serious security bug was found in a piece of open-source code called Bash, which is integrated into such ubiquitous software packages as Linux, Mac OS and Apache, and potentially Android. This time the bug, which is called Shellshock, has supposedly been lurking…

Heartbleed Lessons – FST and Lab Certification

– There has been much written following the “discovery” of the Heartbleed bug that plagues OpenSSL … some informative, some constructive, some neither. Perhaps the most useful article to date is one published on April 18, 2014, which was written by Nicole Perlroth of The New York Times…

OSSIM : Open Source Security Information Manager

– Previously I had written about using honeypots within your infrastructure to add an extra layer of detection for malicious events. I mentioned that you can integrate it into the rest of your security event management and log aggregation via enabling syslog on the honeypot. Some of the feedback I…