SkyHorse.Org

ModSecurity 2.5 : a book by Magnus Mischel

December 10th, 2009 SkyHorse

ModSecurity 2.5 book cover

ModSecurity 2.5 book cover

When I received ModSecurity 2.5 by Magnus Mischel through the post I was expecting a decent, thick and technically focused book on setting up and configuring obscure areas of ModSecurity.
On reading it I was pleasantly surprised to find how practical, direct and friendly it was (it even has its own section explaining what “Regular Expressions” are), so this is not just for the expert user, but beginner sys admin too.
The book guides you through all the steps to setting up ModSecurity 2.5 in your apache server, from installation to setting up basic and advanced rules. It also takes a look at real-life examples which is a definite must read as its the hardest part for anyone starting to use the tool.
At £30.99 (£21.99 for e-book version) its a good investment for everyone thinking about or already using ModSecurity to protect apache web servers.

Language English
Paperback 280 pages [191mm x 235mm]
Release date November 2009
ISBN 1847194745
ISBN 13 978-1-847194-74-9
Author(s) Magnus Mischel
Topics and Technologies Open Source, Linux Servers
Published by Packt Publishing

  • Google Buzz
  • Delicious
  • Facebook
  • Twitter
  • LinkedIn
  • Share/Bookmark
Tags: apache, book, hacking, mod-security, modsecurity, Security

Related posts:

  • Fixing open DNS servers
  • Major flaw on the DNS Internet architecture discovered
  • modsec.sh updated

Posted in Uncategorized | No Comments »

Major flaw on the DNS Internet architecture discovered

July 8th, 2008 SkyHorse

Conspiracy fans unite: the worlds major Internet vendors sent their engineers out for secret meetings at the microsoft campus for the past few months to tackle the biggest flaw on the internet’s architecture since it began.

The issue resides on the obiquituous DNS system responsible for directing applications to the right servers when they request a URL. Although there is yet no evidence of this flaw being exploited, it will not take long for black hat hackers to use it to direct you to their own servers when you try to open your online banking or check your emails.

All major vendors will be releasing fixes to their systems at the same time, as to minimise the chances of such rogue practicies happening, something unheard of which clearly shows the gravity of the situation.

More detail at http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/
Dan’s website where you can check for the vulnerability: http://www.doxpara.com

  • Google Buzz
  • Delicious
  • Facebook
  • Twitter
  • LinkedIn
  • Share/Bookmark
Tags: DNS, hacking, Security

Related posts:

  • Fixing open DNS servers
  • ModSecurity 2.5 : a book by Magnus Mischel
  • modsec.sh updated

Posted in Computing | No Comments »

WordPress is hacked: All Upgrade to 2.1.2

March 4th, 2007 SkyHorse

WordPress, the software powering thousands of weblogs on the web, has recently seen it’s download files modified by an unknown “cracker” who changed the code to include code enabling those in the know to gain access to the websites running such software.

Only version 2.1.1 was affected.

WordPress › Blog » WordPress 2.1.1 dangerous, Upgrade to 2.1.2

  • Google Buzz
  • Delicious
  • Facebook
  • Twitter
  • LinkedIn
  • Share/Bookmark
Tags: hacking, hacking, hosting, wordpress

Related posts:

  • Web Host Company hacks into their own client’s accounts
  • The Definite Guide of Obscure Tweaks to Install and Maintain cPanel / WHM (version 10)
  • Auto update modsecurity rules – modsec.sh

Posted in hacking, hosting | No Comments »

Simple remedy for a big problem: how to disable the RFID on your passport

January 7th, 2007 SkyHorse

Sooner or later if you live in a country with the visa-waiver program with the US (i.e. most EU countries and a few more) your passport will be issued with a always-on radio frequency identification chips, making it easy for officials – and hackers – to grab your personal stats. Getting paranoid about strangers slurping up your identity? Here’s what you can do about it. But be careful – tampering with a passport is punishable by 25 years in prison. Not to mention the “special” customs search, with rubber gloves. Bon voyage!

1) RFID-tagged passports have a distinctive logo on the front cover; the chip is embedded in the back.

2) Sorry, “accidentally” leaving your passport in the jeans you just put in the washer won’t work. You’re more likely to ruin the passport itself than the chip.

3) Forget about nuking it in the microwave – the chip could burst into flames, leaving telltale scorch marks. Besides, have you ever smelled burnt passport?

4) The best approach? Hammer time! Hitting the chip with a blunt, hard object should disable it. A nonworking RFID doesn’t invalidate the passport, so you can still use it.

Based on http://www.wired.com/wired/archive/15.01/start.html?pg=9

  • Google Buzz
  • Delicious
  • Facebook
  • Twitter
  • LinkedIn
  • Share/Bookmark
Tags: hacking, Hardware, passport, RFID, Travel

Related posts:

  • GNU Radio: hacking the last frontier
  • Turning a camera phone with bluetooth into a mouse (HID for you and me)
  • Top tips for flying in comfort and style

Posted in Hardware, Travel, hacking | No Comments »

not quite there yet… » realizing…

November 17th, 2006 SkyHorse

The Hacker’s life philosophy is finally understood and explained. Interestingly, she, the writer, isn’t a techie nor a sociologist, but a common 25 year old female. Did I say common? Maybe that’s only at first sight, there’s nothing “common” about *this* philosopher…

not quite there yet… » realizing…

Loved the reading sis ;)

  • Google Buzz
  • Delicious
  • Facebook
  • Twitter
  • LinkedIn
  • Share/Bookmark
Tags: hacking, personality, Philosophy, sociology

Related posts:

  • Hacking the mind
  • Banksy: The Hacker of the Art world
  • Things you should read before you comment: The entire Pope’s speach on 12th September in Germany

Posted in Philosophy | No Comments »

« Previous Entries
  • Tags

    AI apple behavioural-targeting business Computing cPanel deep packet inspection design Downloads Games GNU/Linux google hacking hacking Hardware headphones hosting Ideas Instant Messaging iphone marketing mod-security online-advertising online media Personal Philosophy phorm poker Programming satire scripts Security sociology startups technology Travel ubuntu v-moda Visionarism web-2.0 web-marketing Web Design WHM wunderloop yahoo
  • Pages

    • About
    • Web Server Administration
      • Auto update modsecurity rules – modsec.sh
      • DirectAdmin to cPanel : a partial BASH solution
      • The Definite Guide of Obscure Tweaks to Install and Maintain cPanel / WHM (version 10)
        • Configuring E-mail (Exim) related areas
        • Fixing open DNS servers
        • Monitoring your server
        • Scripts and misc information
        • Security by Obscurity
        • Tweaking apache web server
  • Twitter Updates

    • Ads

    • RSS NMA

      • ITV expands cross-platform offering for This Morning 2 September, 2010
      • Apple launches music social network Ping 2 September, 2010
      • MySpace allows users to sync with Facebook 31 August, 2010
    • RSS Brand Republic

      • My Media Week: James Whitmore, Postar 2 September, 2010
      • Buxton picks cricketer Cook as brand ambassador 2 September, 2010
      • AOL nets five-year Google search deal 2 September, 2010
    • RSS iMedia Connection: Consumer Strategies

      • Social media: What lies ahead
      • The truth about consumers' targeting fears
      • 3 reasons your brand doesn't have more Facebook fans
    • RSS Behavioural Targeting news

      • Moving Targets: Somebody Follow Me, Please? - MediaPost Publications 1 September, 2010
      • Moving Beyond Behavioral Ads - ClickZ News 1 September, 2010
      • Cybercrime Still a Major Concern - eMarketer 1 September, 2010
      • DigiRant: Retargeting Needs Some 411 - digiday:DAILY 31 August, 2010
      • How to Make Google Matter in Social Media - GigaOm (blog) 30 August, 2010
    • RSS Adotas

      • Ping a Threat to Other Social Networks? 2 September, 2010
      • Twitter Swears OAuth for User Safety, Expands Link Shortener 2 September, 2010
      • AOL Renews Its Google Vows 2 September, 2010
    • RSS MarketingVox

      • Savvy Use of Online Ad Technologies Gooses Nevada Tourism Ad ROI 1 September, 2010
      • Users-generated Videos Drive Weather Channel Visits 1 September, 2010
      • Hotmail Adopts New Engagement Metrics 1 September, 2010
    • RSS ExchangeWire.com

      • One Media Manager Onboards Its 200th Facebook Advertiser; Facebook Looking To Launch Ad Network 2 September, 2010
      • OpenX Partners CCI To Build Out Automated Ad Trading Platform In Japan 1 September, 2010
      • AdAudience Moving Its Audience-Buying Offering From Wunderloop to Nugg.ad 31 August, 2010
    • RSS Segmentacion por comportamiento

      • Nota de prensa sobre la compra de wunderloop por Audience Science. 5 July, 2010
      • El gigante americano Audience Science compra wunderloop 5 July, 2010
      • Orange lanza su propio AdExchange 31 March, 2010
    • RSS Sandlines

      • the iPad and Marketing 28 January, 2010
      • The anticipation of disappointment 7 December, 2009
      • Groundhog Day 27 November, 2009
    • Ads

    • Blogroll

      • 90kts
      • Acxiom Poker Nights
      • Amy’s blog
      • Bytter’s blog
      • morena flor no samba da saudade
      • Not Quite There Yet
      • Swedish Pirate Party
    • Cartoons

      • Geek & Poke
      • Order of the Stick
      • User Friendly
    • Gaming

      • Neverwinter Nights
    • online media

      • Knowledge for the Digital Economy
      • Mike on Ads
    • Personal

      • Atelier de Camisa
      • Banksy
      • Designarte
      • My Amazon Wishlist
      • SkyServers.Org
    • Science

      • New Scientist
      • Rex Research
      • ScienceBox
      • Wired
    • Security

      • GPG4Win
      • GPGol
      • GPGShell
      • Mod Security
      • Offline Windows NT(2k,XP) Password Recovery
    • Web Design

      • PageStrength
      • SiteScore
      • UrlTrends
    • Akismet

      55,527 spam comments blocked by
      Akismet
    • Meta

      • Log in
      • Entries RSS
      • Comments RSS
      • WordPress.org

    © 2003 - 2010 Paulo Cunha | SkyHorse.Org is proudly powered by WordPress | Theme based on Bob