Welcome to the Hostsplus Security Information Center
Welcome to the HostsPlus Security Information Center.
This is a portal site created by HostsPlus to enable our clients and other interested parties to learn more about Information Security.
>rss version="2.0">
>channel>
>title>Bugtraq>/title>
>link>http://seclists.org/#bugtraq>/link>
>description>The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!>/description>
>item>
>title>ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability>/title>
>link>http://seclists.org/bugtraq/2010/Mar/116>/link>
>description><p>Posted by ZDI Disclosures on Mar 12</p>ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability<br>
For further product information on the TippingPoint IPS,...<br>>/description>
>/item>
>item>
>title>ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability>/title>
>link>http://seclists.org/bugtraq/2010/Mar/115>/link>
>description><p>Posted by ZDI Disclosures on Mar 12</p>ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability<br>
For further product information on the TippingPoint IPS, visit:...<br>>/description>
>/item>
>item>
>title>[SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues>/title>
>link>http://seclists.org/bugtraq/2010/Mar/114>/link>
>description><p>Posted by dann frazier on Mar 12</p>----------------------------------------------------------------------<br>
Problem...<br>>/description>
>/item>
>item>
>title>VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability>/title>
>link>http://seclists.org/bugtraq/2010/Mar/113>/link>
>description><p>Posted by VUPEN Security Research on Mar 12</p>VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow <br>
VUPEN Vulnerability Research...<br>>/description>
>/item>
>item>
>title>[XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface!>/title>
>link>http://seclists.org/bugtraq/2010/Mar/112>/link>
>description><p>Posted by lis cker on Mar 12</p>there is a xss in phpmyadmin 3.3.0 when we create new database in interface, the "new_db" parameter do not filter <br>
GET:...<br>>/description>
>/item>
>item>
>title>[SECURITY] [DSA 2013-1] New egroupware packages fix several vulnerabilities>/title>
>link>http://seclists.org/bugtraq/2010/Mar/111>/link>
>description><p>Posted by Moritz Muehlenhoff on Mar 12</p>------------------------------------------------------------------------<br>
Problem type : remote...<br>>/description>
>/item>
>item>
>title>[SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities>/title>
>link>http://seclists.org/bugtraq/2010/Mar/110>/link>
>description><p>Posted by Giuseppe Iuculano on Mar 12</p>------------------------------------------------------------------------<br>
Problem type : remote...<br>>/description>
>/item>
>item>
>title>iDefense Security Advisory 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability>/title>
>link>http://seclists.org/bugtraq/2010/Mar/109>/link>
>description><p>Posted by iDefense Labs on Mar 12</p>iDefense Security Advisory 03.11.10<br>
included with...<br>>/description>
>/item>
>item>
>title>[USN-911-1] MoinMoin vulnerabilities>/title>
>link>http://seclists.org/bugtraq/2010/Mar/108>/link>
>description><p>Posted by Jamie Strandboge on Mar 12</p>===========================================================<br>
Kubuntu, Edubuntu,...<br>>/description>
>/item>
>item>
>title>[ MDVSA-2010:061 ] ncpfs>/title>
>link>http://seclists.org/bugtraq/2010/Mar/107>/link>
>description><p>Posted by security on Mar 12</p> _______________________________________________________________________<br>
Enterprise Server 5.0, Multi Network Firewall 2.0...<br>>/description>
>/item>
>item>
>title>Multiple vulnerabilities in SUPERAntiSpyware and Super Ad Blocker>/title>
>link>http://seclists.org/bugtraq/2010/Mar/106>/link>
>description><p>Posted by Luka Milkovic on Mar 11</p> Title: Multiple vulnerabilities in<br>
<a rel="nofollow" href="http://www.superantispyware.com/index.html">http://www.superantispyware.com/index.html</a>...<br>>/description>
>/item>
>item>
>title>[SECURITY] [DSA 2011-1] New dpkg packages fix path traversal>/title>
>link>http://seclists.org/bugtraq/2010/Mar/105>/link>
>description><p>Posted by Nico Golde on Mar 11</p>--------------------------------------------------------------------------<br>
Problem type :...<br>>/description>
>/item>
>item>
>title>[ MDVSA-2010:060 ] squid>/title>
>link>http://seclists.org/bugtraq/2010/Mar/104>/link>
>description><p>Posted by security on Mar 11</p> _______________________________________________________________________<br>
Enterprise Server 5.0...<br>>/description>
>/item>
>item>
>title>Skype URI Handler Input Validation>/title>
>link>http://seclists.org/bugtraq/2010/Mar/103>/link>
>description><p>Posted by Paul Craig on Mar 11</p> ( , ) (,<br>
Skype URI Handler Input Validation...<br>>/description>
>/item>
>item>
>title>Vulnerabilities in Abton>/title>
>link>http://seclists.org/bugtraq/2010/Mar/102>/link>
>description><p>Posted by MustLive on Mar 11</p>Hello Bugtraq!<br>
-----------------------------...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Daily Dave>/title>
>link>http://seclists.org/#dailydave>/link>
>description>This technical discussion list covers vulnerability research, exploit development, and security events/gossip. It was started by <a href="http://www.immunitysec.com/">ImmunitySec</a> founder Dave Aitel and many security luminaries participate. Many posts simply advertise Immunity products, but you can't really fault Dave for being self-promotional on a list named DailyDave.>/description>
>item>
>title>Wings>/title>
>link>http://seclists.org/dailydave/2010/q1/81>/link>
>description><p>Posted by dave on Mar 11</p>So kudos to team .cn for another great IE bug. Anyone burning great bugs<br>
it's interesting...<br>>/description>
>/item>
>item>
>title>Re: Mike Bailey's Flash presentation is good.>/title>
>link>http://seclists.org/dailydave/2010/q1/80>/link>
>description><p>Posted by Florian Weimer on Mar 09</p>Bugs in web application frameworks are typically not fixed in the<br>
that makes scanners not entirely useless.<br>>/description>
>/item>
>item>
>title>Mike Bailey's Flash presentation is good.>/title>
>link>http://seclists.org/dailydave/2010/q1/79>/link>
>description><p>Posted by dave on Mar 09</p>People in the web application security space are often more into<br>
But web application hacking can be as complex as a CLOUDBURST style...<br>>/description>
>/item>
>item>
>title>Re: Does anyone have video of this?>/title>
>link>http://seclists.org/dailydave/2010/q1/78>/link>
>description><p>Posted by Nate Lawson on Mar 04</p>I'm not sure why you're so excited about this. This panel is up every<br>
As for the NSA, crypto is such...<br>>/description>
>/item>
>item>
>title>Perforce>/title>
>link>http://seclists.org/dailydave/2010/q1/77>/link>
>description><p>Posted by Intevydis on Mar 04</p>Hi,<br>
to trigger send the following data to port "...<br>>/description>
>/item>
>item>
>title>Re: Does anyone have video of this?>/title>
>link>http://seclists.org/dailydave/2010/q1/76>/link>
>description><p>Posted by Dave Aitel on Mar 04</p>Btw, for those who missed it:<br>
-dave<br>>/description>
>/item>
>item>
>title>Does anyone have video of this?>/title>
>link>http://seclists.org/dailydave/2010/q1/75>/link>
>description><p>Posted by Dave Aitel on Mar 02</p>NSA, cryptoexperts jab at RSA Conference Cryptographers' Panel<br>
<a rel="nofollow" href="http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1407881,00.html">http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1407881,00.html</a><br>>/description>
>/item>
>item>
>title>FIRST 2010!>/title>
>link>http://seclists.org/dailydave/2010/q1/74>/link>
>description><p>Posted by dave on Mar 02</p>I'm giving a keynote at FIRST 2010. As you might imagine, FIRST is an<br>
Incident response happens when your secure...<br>>/description>
>/item>
>item>
>title>Month of PHP Security 2010 - CALL FOR PAPERS>/title>
>link>http://seclists.org/dailydave/2010/q1/73>/link>
>description><p>Posted by Stefan Esser on Feb 27</p>Month of PHP Security 2010 - CALL FOR PAPERS<br>
The intention of...<br>>/description>
>/item>
>item>
>title>dnsmap v0.30 + embedded devices discovery trick>/title>
>link>http://seclists.org/dailydave/2010/q1/72>/link>
>description><p>Posted by Adrian P. on Feb 25</p>Hello folks,<br>
ranges,...<br>>/description>
>/item>
>item>
>title>Re: XSS in viewstate>/title>
>link>http://seclists.org/dailydave/2010/q1/71>/link>
>description><p>Posted by Nicolas RUFF on Feb 21</p> Hello,<br>
serialization logic (but it...<br>>/description>
>/item>
>item>
>title>Re: XSS in viewstate>/title>
>link>http://seclists.org/dailydave/2010/q1/70>/link>
>description><p>Posted by David Byrne on Feb 19</p>We usually see MAC protection turned off on at least one page during an<br>
Chris Weber wrote:<br>>/description>
>/item>
>item>
>title>Re: XSS in viewstate>/title>
>link>http://seclists.org/dailydave/2010/q1/69>/link>
>description><p>Posted by David Byrne on Feb 19</p>In our original advisory, we did comment that Microsoft hinted at this vulnerability in a rather buried document <br>
first time (as far as we know) that the .Net framework was demonstrated to be vulnerable to XSS through the...<br>>/description>
>/item>
>item>
>title>Re: XSS in viewstate>/title>
>link>http://seclists.org/dailydave/2010/q1/68>/link>
>description><p>Posted by dave on Feb 19</p>We usually see MAC protection turned off on at least one page during an<br>
Chris Weber wrote:<br>>/description>
>/item>
>item>
>title>Re: XSS in viewstate>/title>
>link>http://seclists.org/dailydave/2010/q1/67>/link>
>description><p>Posted by David Byrne on Feb 19</p><a rel="nofollow" href="http://www.hacking-lab.com/misc/downloads/ViewState_Afames.pdf">http://www.hacking-lab.com/misc/downloads/ViewState_Afames.pdf</a><br>
-dave<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Firewall Wizards>/title>
>link>http://seclists.org/#firewall-wizards>/link>
>description>Tips and tricks for firewall administrators>/description>
>item>
>title>Call for papers: ISP-10, Orlando, USA, July 2010>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/6>/link>
>description><p>Posted by James Heralds on Feb 22</p>It would be highly appreciated if you could share this announcement with<br>
be held during 12-14 of July 2010...<br>>/description>
>/item>
>item>
>title>Re: Inline 2 port POE Firewall>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/5>/link>
>description><p>Posted by bruces on Feb 16</p>What about the RouterBoard 433 series boards. Three NICs and POE, <br>
Quoting Kerry Milestone <km4 () sanger ac uk>:<br>>/description>
>/item>
>item>
>title>Inline 2 port POE Firewall>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/4>/link>
>description><p>Posted by Kerry Milestone on Feb 16</p>Hello,<br>
fairly cheap price - rather than have to...<br>>/description>
>/item>
>item>
>title>Re: Login straight to priv mode in PIX with TACACS server>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/3>/link>
>description><p>Posted by John Morrison on Feb 12</p>Michel,<br>
cannot contact the TACACS+ server is to remove the network cables.<br>>/description>
>/item>
>item>
>title>Login straight to priv mode in PIX with TACACS server>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/2>/link>
>description><p>Posted by Michel Ferreira on Feb 11</p>Hi,<br>
command if I need console access I still will be...<br>>/description>
>/item>
>item>
>title>Draft paper submission deadline is extended: ISP-10>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/1>/link>
>description><p>Posted by James Heralds on Feb 05</p>Draft paper submission deadline is extended: ISP-10<br>
The conference will be held at the same time and location where...<br>>/description>
>/item>
>item>
>title>Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP>/title>
>link>http://seclists.org/firewall-wizards/2010/Feb/0>/link>
>description><p>Posted by endrazine on Feb 04</p>Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP<br>
The goal of this...<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/37>/link>
>description><p>Posted by pkc_mls on Jan 28</p>William Fitzgerald a écrit :<br>
on the LAN.<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/36>/link>
>description><p>Posted by Paul D. Robertson on Jan 27</p>I'm going to give you the non-firewall, imperfect but quick and easy <br>
the "internal" network on the router....<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/35>/link>
>description><p>Posted by William Fitzgerald on Jan 27</p>Hi everyone,<br>
Pete.LeMay wrote:<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/34>/link>
>description><p>Posted by Will Brickles on Jan 27</p>Using DD-WRT, what comes to mind immediately is to put your devices into separate VLANs and then use iptables to <br>
Using other (much more...<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/33>/link>
>description><p>Posted by K K on Jan 27</p>Yes.<br>
Kevin<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/32>/link>
>description><p>Posted by Paul Melson on Jan 26</p>With DD-WRT you can assign a different VLAN to each interface of the<br>
connected to that switch from each...<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/31>/link>
>description><p>Posted by Mark on Jan 26</p>Will:<br>
firewall filter the traffic, in essence you would be creating a...<br>>/description>
>/item>
>item>
>title>Re: Is it possible to control access between clients on same LAN with a firewall?>/title>
>link>http://seclists.org/firewall-wizards/2010/Jan/30>/link>
>description><p>Posted by Eric Gearhart on Jan 26</p>You sound like you might already know this, but I may as well<br>
separate...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>IDS Focus>/title>
>link>http://seclists.org/#focus-ids>/link>
>description>Technical discussion about Intrusion Detection Systems. You can also read the archives of a <A HREF="http://seclists.org/ids/">previous IDS list</A>>/description>
>item>
>title>Call for Papers: EC2ND 2010>/title>
>link>http://seclists.org/focus-ids/2010/Mar/0>/link>
>description><p>Posted by Konrad Rieck on Mar 08</p>Dear Colleagues,<br>
6th European Conference on Computer...<br>>/description>
>/item>
>item>
>title>Announcing xtractr (on pcapr)>/title>
>link>http://seclists.org/focus-ids/2010/Feb/1>/link>
>description><p>Posted by kowsik on Feb 22</p>We are happy to announce xtractr, a collaborative cloud app for<br>
<a rel="nofollow" href="http://www.pcapr.net/">http://www.pcapr.net/</a>...<br>>/description>
>/item>
>item>
>title>CFP: Workshop on the Analysis of System Logs>/title>
>link>http://seclists.org/focus-ids/2010/Feb/0>/link>
>description><p>Posted by Kathryn Mohror on Feb 05</p> Workshop on the Analysis of System Logs (WASL) 2010<br>
AUTHOR...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Full Disclosure>/title>
>link>http://seclists.org/#fulldisclosure>/link>
>description>An unmoderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately 80% of the posts are worthless drivel, so finding the gems takes patience.>/description>
>item>
>title>[HITB-Announce] HITBSecConf2010 - Dubai Agenda Released>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/240>/link>
>description><p>Posted by Hafez Kamal on Mar 14</p>Conference agenda for HITBSecConf2010 - Dubai has been announced!<br>
1.) Daniel Mende (ERNW GmbH) with Oliver Roeschke (ERNW GmbH) -- Attacking...<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/239>/link>
>description><p>Posted by Son of Ram on Mar 13</p>Can I have a chance to be a part of n3td3v operations?<br>
to be the guy who defends...<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/238>/link>
>description><p>Posted by Michal Zalewski on Mar 13</p>Totally!<br>
authors to sign up themselves and syndicate their work? This may just...<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/237>/link>
>description><p>Posted by james o' hare on Mar 13</p>I see Twitter becoming the new way to disclose vulnerabilities,<br>
Andrew<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/236>/link>
>description><p>Posted by bugtraq on Mar 13</p>It's like hackernews and @stake all over again! <br>
<a rel="nofollow" href="http://www.qasec.com/">http://www.qasec.com/</a><br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/235>/link>
>description><p>Posted by William Warren on Mar 13</p>Poopies..that's the end of securityfocus unfortunately.<br>>/description>
>/item>
>item>
>title>New vulnerabilities in Abton>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/234>/link>
>description><p>Posted by MustLive on Mar 13</p>Hello Full-Disclosure!<br>
mentioned in...<br>>/description>
>/item>
>item>
>title>2nd CfP: ACCESS 2010 || September 20-25, 2010 - Valencia, Spain>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/233>/link>
>description><p>Posted by Sandra Sendra on Mar 13</p>=================<br>
General page:...<br>>/description>
>/item>
>item>
>title>...because you can't get enough of clickjacking>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/232>/link>
>description><p>Posted by Michal Zalewski on Mar 12</p>[ I promise to post something more interesting shortly - but in the<br>
source of considerable amount of...<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/231>/link>
>description><p>Posted by Randal T. Rioux on Mar 12</p>Who didn't see this coming?<br>
Randy<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/230>/link>
>description><p>Posted by Son of Ram on Mar 12</p>Would the damages come from professional losses? (Pardon me, but I believe you said you never had a paying job) or <br>
----- Original Message -----...<br>>/description>
>/item>
>item>
>title>Re: Is Hal Turner a hero? Updates on police survellience and my life being ruined from afar. (rambling rant)>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/229>/link>
>description><p>Posted by LeToff on Mar 12</p>mrx wrote:<br>
Oh it's so cute...<br>>/description>
>/item>
>item>
>title>Re: Is Hal Turner a hero? Updates on police survellience and my life being ruined from afar. (rambling rant)>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/228>/link>
>description><p>Posted by mrx on Mar 12</p>Son of Ram wrote:<br>
Your private face should be visible to only those that you...<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/227>/link>
>description><p>Posted by james o' hare on Mar 12</p>What would the follow up say "We were completely wrong sue us for<br>
Andrew<br>>/description>
>/item>
>item>
>title>Re: SecurityFocus to partially shut down>/title>
>link>http://seclists.org/fulldisclosure/2010/Mar/226>/link>
>description><p>Posted by Michal Zalewski on Mar 12</p>"While the news portal section of SecurityFocus will no longer be<br>
/mz<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Honeypots>/title>
>link>http://seclists.org/#honeypots>/link>
>description>Discussions about tracking attackers by setting up decoy honeypots or entire <A HREF="http://www.honeynet.org">honeynet</A> networks.>/description>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/13>/link>
>description><p>Posted by Jason Ross on Mar 03</p>But it would have the advantage of allowing you to capture further<br>
traffic for analysis through whatever tools you choose.<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/12>/link>
>description><p>Posted by Alexandre Dulaunoy on Mar 03</p>We have used various techniques to make DNS honeypots. But there is<br>
information by doing and...<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/11>/link>
>description><p>Posted by Brent Huston on Mar 03</p>Likely nothing today, most malware isn't smart enough to figure that out.<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/10>/link>
>description><p>Posted by Jason Lewis on Mar 03</p>Slightly related, I was wondering what might happen if I made every<br>
query to the honeypot resolve back to the honeypot?<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/9>/link>
>description><p>Posted by Brent Huston on Mar 03</p>One of the tactics our clients use is that they stand up one of our HoneyPoint Agents on a decoy box and then send all <br>
Let me know if that helps!<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/8>/link>
>description><p>Posted by chr1x on Mar 02</p>This post looks pretty interesting!<br>
open possible...<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/7>/link>
>description><p>Posted by Jason Lewis on Mar 02</p>I just figured I'd setup something to log access and see what shows<br>
up. I wasn't planning on directing traffic to the system.<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/6>/link>
>description><p>Posted by Jason Lewis on Mar 02</p>Cool, this is the kind of thing I was thinking of doing. I was hoping<br>
Thanks.<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/5>/link>
>description><p>Posted by Jason Ross on Mar 02</p>There's quite a lot of (bad and good) bots "out there" looking for DNS<br>
will collect a fair amount of queries.<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/4>/link>
>description><p>Posted by Valdis . Kletnieks on Mar 02</p>On Tue, 02 Mar 2010 15:00:43 EST, Jason Lewis said:<br>
and hope that works?<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/3>/link>
>description><p>Posted by Jason Ross on Mar 02</p>Below is how I've got BIND set up in Debian Linux for a similar purpose.<br>
Cheers,<br>>/description>
>/item>
>item>
>title>Re: DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/2>/link>
>description><p>Posted by Tillmann Werner on Mar 02</p>Jason,<br>
Tillmann<br>>/description>
>/item>
>item>
>title>DNS honeypots?>/title>
>link>http://seclists.org/honeypots/2010/q1/1>/link>
>description><p>Posted by Jason Lewis on Mar 02</p>Anyone have any pointers to dns honeypots or maybe just BIND<br>
actually executing them?<br>>/description>
>/item>
>item>
>title>Honeynet Project Forensic Challenge 2010/2 - browsers under attack>/title>
>link>http://seclists.org/honeypots/2010/q1/0>/link>
>description><p>Posted by christian . seifert on Feb 27</p>The Honeynet Project has revived an successful program from the past: The Honeynet Project Forensic Challenge 2010. The <br>
individuals and organizations not only learn about threats, but also learn how to...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Incidents>/title>
>link>http://seclists.org/#incidents>/link>
>description>Lightly moderated list for dicussing actual security incidents (unexplained probes, breakins, etc). Topics include information about new rootkits, backdoors, trojans, virii, and worms.>/description>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>[ISN] InfoSec News Mailing List>/title>
>link>http://www.infosecnews.org/mailman/listinfo/isn>/link>
>description>InfoSecNews>/description>
>item>
>title>Change in Focus>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018863.html>/link>
>description>InfoSec News: Change in Focus: http://www.securityfocus.com/news/11582
>/description>
>/item>
>item>
>title>TJX Hacking Conspirator Gets 4 Years>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018862.html>/link>
>description>InfoSec News: TJX Hacking Conspirator Gets 4 Years: http://www.wired.com/threatlevel/2010/03/tjx-conspirator-sentenced-to-46-month/
was sentenced Thursday in Boston to 46 months in prison and fined [...]>/description>
>/item>
>item>
>title>Final CFP: TrustBus'10-- Deadline Extended>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018861.html>/link>
>description>InfoSec News: Final CFP: TrustBus'10-- Deadline Extended: Forwarded from: "M. Carmen Fernández Gago" <mcgago@ (at) cc.uma.es>
http://www.isac.uma. [...]>/description>
>/item>
>item>
>title>State Web site breach tied to foreign attacker>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018860.html>/link>
>description>InfoSec News: State Web site breach tied to foreign attacker: http://www.desmoinesregister.com/article/20100311/NEWS10/3110351/-1/networking/State-Web-site-breach-tied-to-foreign-attacker
A hacking incident on an Iowa homeland security Web site last week has [...]>/description>
>/item>
>item>
>title>ZeuS botnet code keeps getting better... for criminals>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018859.html>/link>
>description>InfoSec News: ZeuS botnet code keeps getting better... for criminals: http://www.networkworld.com/news/2010/031110-zeus-botnet.html
to steal financial credentials and execute unauthorized transactions in [...]>/description>
>/item>
>item>
>title>Secunia Weekly Summary - Issue: 2010-10>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018858.html>/link>
>description>InfoSec News: Secunia Weekly Summary - Issue: 2010-10: ========================================================================
[...]>/description>
>/item>
>item>
>title>Why Bob Maley's Firing is Bad for All of Us>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018857.html>/link>
>description>InfoSec News: Why Bob Maley's Firing is Bad for All of Us: http://threatpost.com/en_us/blogs/why-bob-maleys-firing-bad-all-us-031110
shouldn't come as a surprise, but it does. [...]>/description>
>/item>
>item>
>title>Pennsylvania's Web security officer leaves post a week after talking about PennDOT hacking incident>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018856.html>/link>
>description>InfoSec News: Pennsylvania's Web security officer leaves post a week after talking about PennDOT hacking incident: http://www.pennlive.com/midstate/index.ssf/2010/03/pennsylvanias_web_security_off.html
Maley was at an information security conference in San Francisco talking [...]>/description>
>/item>
>item>
>title>The FBI supply chain illustrated>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018855.html>/link>
>description>InfoSec News: The FBI supply chain illustrated: http://blogs.csoonline.com/the_fbi_supply_chain_illustrated
the U.S. supply chain at the RSA Conference last week, staffers at the [...]>/description>
>/item>
>item>
>title>Colorado Springs man allegedly sabotaged TSA computers>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018854.html>/link>
>description>InfoSec News: Colorado Springs man allegedly sabotaged TSA computers: http://www.denverpost.com/ci_14648083
>/description>
>/item>
>item>
>title>Zeus botnets suffer mighty blow after ISP taken offline>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018853.html>/link>
>description>InfoSec News: Zeus botnets suffer mighty blow after ISP taken offline: http://www.theregister.co.uk/2010/03/10/massive_zeus_takedown/
Zeus-related botnets have suddenly gone quiet, continuing a recent trend [...]>/description>
>/item>
>item>
>title>WhitePages.com halts ad networks over malware>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018852.html>/link>
>description>InfoSec News: WhitePages.com halts ad networks over malware: http://news.cnet.com/8301-27080_3-10466753-245.html
>/description>
>/item>
>item>
>title>Thailand approves extradition of credit card hack suspect>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018851.html>/link>
>description>InfoSec News: Thailand approves extradition of credit card hack suspect: http://www.theregister.co.uk/2010/03/08/thailand_extradites_hacking_suspect/
Malaysian man suspected of participating in credit card thefts of more [...]>/description>
>/item>
>item>
>title>RSA: Cybersecurity A Joint Fed, Industry Effort>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018850.html>/link>
>description>InfoSec News: RSA: Cybersecurity A Joint Fed, Industry Effort: http://www.informationweek.com/news/government/security/showArticle.jhtml?articleID=223200125
last week, laying out their plans for government cybersecurity, [...]>/description>
>/item>
>item>
>title>Cybersecurity program has serious defects, GAO says>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018849.html>/link>
>description>InfoSec News: Cybersecurity program has serious defects, GAO says: http://gcn.com/articles/2010/03/08/cnci-assessment-030810.aspx
>/description>
>/item>
>item>
>title>Ford Motor Rolls Out New Security Features To Prevent Car-Hacking>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018848.html>/link>
>description>InfoSec News: Ford Motor Rolls Out New Security Features To Prevent Car-Hacking: http://www.darkreading.com/vulnerability_management/security/client/showArticle.jhtml?articleID=223200163
>/description>
>/item>
>item>
>title>Backdoor found in Energizer Duo USB battery charger>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018847.html>/link>
>description>InfoSec News: Backdoor found in Energizer Duo USB battery charger: http://news.cnet.com/8301-27080_3-10465429-245.html
>/description>
>/item>
>item>
>title>FDIC: Hackers took more than $120M in three months>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018846.html>/link>
>description>InfoSec News: FDIC: Hackers took more than $120M in three months: http://www.computerworld.com/s/article/9167598/FDIC_Hackers_took_more_than_120M_in_three_months?taxonomyId=17
$25 million in the third quarter of 2009, according to the U.S. [...]>/description>
>/item>
>item>
>title>Tokyo's Cyber Emergency Centre at the vanguard of hacking defence>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018845.html>/link>
>description>InfoSec News: Tokyo's Cyber Emergency Centre at the vanguard of hacking defence: http://technology.timesonline.co.uk/tol/news/tech_and_web/article7053320.ece
world keeps a running log of global cyber-attacks. Bloodcurdling names [...]>/description>
>/item>
>item>
>title>The Corporate Side of Snooping>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018844.html>/link>
>description>InfoSec News: The Corporate Side of Snooping: http://www.nytimes.com/2010/03/07/business/07shelf.html
are constantly being spun by the same gang of politicians and lobbyists [...]>/description>
>/item>
>item>
>title>Microsoft's tax-for-hacks 'horrible' idea, say security experts>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018843.html>/link>
>description>InfoSec News: Microsoft's tax-for-hacks 'horrible' idea, say security experts: http://www.computerworld.com/s/article/9166458/Microsoft_s_tax_for_hacks_horrible_idea_say_security_experts?taxonomyId=17
>/description>
>/item>
>item>
>title>Facebook founder Mark Zuckerberg 'hacked into emails of rivals and journalists'>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018842.html>/link>
>description>InfoSec News: Facebook founder Mark Zuckerberg 'hacked into emails of rivals and journalists': http://www.dailymail.co.uk/news/worldnews/article-1255888/Facebook-founder-Mark-Zuckerberg-hacked-emails-rivals-journalists.html
email accounts of rivals and journalists. [...]>/description>
>/item>
>item>
>title>Westin Bonaventure Los Angeles latest victim of hotel hackers>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018841.html>/link>
>description>InfoSec News: Westin Bonaventure Los Angeles latest victim of hotel hackers: http://content.usatoday.com/communities/hotelcheckin/post/2010/03/hackers-breach-westin-bonaventure-los-angeles-networks-cybercriminal/1
You may have to monitor your credit card statements - and even place a [...]>/description>
>/item>
>item>
>title>Linux Advisory Watch: March 6th, 2010>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018840.html>/link>
>description>InfoSec News: Linux Advisory Watch: March 6th, 2010: +----------------------------------------------------------------------+
| | [...]>/description>
>/item>
>item>
>title>At RSA, Some Security Pros Don't Practice What They Preach>/title>
>link>http://www.infosecnews.org/pipermail/isn/2010-March/018839.html>/link>
>description>InfoSec News: At RSA, Some Security Pros Don't Practice What They Preach: http://www.darkreading.com/vulnerability_management/security/encryption/showArticle.jhtml?articleID=223101624
wireless users at one of the industry's biggest security conferences [...]>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>MS Sec Notification>/title>
>link>http://seclists.org/#microsoft>/link>
>description>Beware that MS often uses these security bulletins as marketing propaganda to downplay serious vulnerabilities in their products -- note how most have a prominent and often-misleading "mitigating factors" section.>/description>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2010/q1/6>/link>
>description><p>Posted by Microsoft on Mar 09</p>********************************************************************<br>
-...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for March 2010>/title>
>link>http://seclists.org/microsoft/2010/q1/5>/link>
>description><p>Posted by Microsoft on Mar 09</p>********************************************************************<br>
With...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for February 2010>/title>
>link>http://seclists.org/microsoft/2010/q1/4>/link>
>description><p>Posted by Microsoft on Feb 09</p>********************************************************************<br>
February 2010 can be found at...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for January 2010>/title>
>link>http://seclists.org/microsoft/2010/q1/3>/link>
>description><p>Posted by Microsoft on Jan 21</p>********************************************************************<br>
January 2010 can be found at...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revision>/title>
>link>http://seclists.org/microsoft/2010/q1/2>/link>
>description><p>Posted by Microsoft on Jan 14</p>********************************************************************<br>
-...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for January 2010>/title>
>link>http://seclists.org/microsoft/2010/q1/1>/link>
>description><p>Posted by Microsoft on Jan 12</p>********************************************************************<br>
<a rel="nofollow" href="http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx">http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx</a>....<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Re-Release>/title>
>link>http://seclists.org/microsoft/2010/q1/0>/link>
>description><p>Posted by Microsoft on Jan 12</p>********************************************************************<br>
-...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2009/q4/9>/link>
>description><p>Posted by Microsoft on Dec 08</p>********************************************************************<br>
* MS08-037 - Important...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for December 2009>/title>
>link>http://seclists.org/microsoft/2009/q4/8>/link>
>description><p>Posted by Microsoft on Dec 08</p>********************************************************************<br>
December 2009 can be found at...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2009/q4/7>/link>
>description><p>Posted by Microsoft on Nov 24</p>********************************************************************<br>
* MS08-076 - Important...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2009/q4/6>/link>
>description><p>Posted by Microsoft on Nov 10</p>********************************************************************<br>
*...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Summary for November 2009>/title>
>link>http://seclists.org/microsoft/2009/q4/5>/link>
>description><p>Posted by Microsoft on Nov 10</p>********************************************************************<br>
November 2009 can be found at...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Advance Notification for November 2009>/title>
>link>http://seclists.org/microsoft/2009/q4/4>/link>
>description><p>Posted by Microsoft on Nov 05</p>********************************************************************<br>
Notification for November 2009 can be found...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2009/q4/3>/link>
>description><p>Posted by Microsoft on Nov 03</p>********************************************************************<br>
-...<br>>/description>
>/item>
>item>
>title>Microsoft Security Bulletin Major Revisions>/title>
>link>http://seclists.org/microsoft/2009/q4/2>/link>
>description><p>Posted by Microsoft on Oct 28</p>********************************************************************<br>
-...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>NANOG@merit.edu>/title>
>link>http://www.merit.edu/mail.archives/nanog/index.html>/link>
>description>Latest posts to NANOG Mailing List>/description>
>item>
>title>Re: 4bytes ASn and RFC1745>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06510.html>/link>
>description>Nathan Ward (03/14/10)>/description>
>/item>
>item>
>title>4bytes ASn and RFC1745>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06509.html>/link>
>description>Bit Gossip (03/14/10)>/description>
>/item>
>item>
>title>Re: IPv6, multihoming, and customer allo>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06508.html>/link>
>description>Owen DeLong (03/14/10)>/description>
>/item>
>item>
>title>Re: IPv6, multihoming, and customer allo>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06507.html>/link>
>description>Antonio Querubin (03/14/10)>/description>
>/item>
>item>
>title>IPv6, multihoming, and customer allocati>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06506.html>/link>
>description>Rick Ernst (03/14/10)>/description>
>/item>
>item>
>title>RE: security questions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06505.html>/link>
>description>Brandon Kim (03/13/10)>/description>
>/item>
>item>
>title>Re: security questions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06504.html>/link>
>description>Larry Brower (03/13/10)>/description>
>/item>
>item>
>title>security questions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06503.html>/link>
>description>adrian kok (03/13/10)>/description>
>/item>
>item>
>title>=?GB2312?B?aVBob25lIEFwcGxpY2F0aW9uIERld>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06502.html>/link>
>description>Garrison (03/13/10)>/description>
>/item>
>item>
>title>Re: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06501.html>/link>
>description>Leo Bicknell (03/13/10)>/description>
>/item>
>item>
>title>Re: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06500.html>/link>
>description>Ravi Pina (03/13/10)>/description>
>/item>
>item>
>title>RE: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06499.html>/link>
>description>Paul Stewart (03/13/10)>/description>
>/item>
>item>
>title>RE: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06498.html>/link>
>description>Paul Stewart (03/13/10)>/description>
>/item>
>item>
>title>Re: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06497.html>/link>
>description>Barry Shein (03/13/10)>/description>
>/item>
>item>
>title>Re: Network Naming Conventions>/title>
>link>http://www.merit.edu/mail.archives/nanog/msg06496.html>/link>
>description>Barry Shein (03/13/10)>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>netsec@merit.edu>/title>
>link>http://www.merit.edu/mail.archives/netsec/index.html>/link>
>description>Latest posts to netsec mailing list>/description>
>item>
>title>SANS NewsBites Vol. 12 Num. 20 : Inter-a>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03532.html>/link>
>description>The SANS Institute (03/12/10)>/description>
>/item>
>item>
>title>Security industry faces attacks it canno>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03531.html>/link>
>description>Howell, Paul (03/12/10)>/description>
>/item>
>item>
>title>FW: [ISN] Why Bob Maley's Firing is Bad>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03530.html>/link>
>description>Howell, Paul (03/12/10)>/description>
>/item>
>item>
>title>AnAnalysisoftheSkypeIMBotLogicand>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03529.html>/link>
>description>Howell, Paul (03/12/10)>/description>
>/item>
>item>
>title>Update: LifeLock to pay $12M to settle F>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03528.html>/link>
>description>Howell, Paul (03/10/10)>/description>
>/item>
>item>
>title>FW: US-CERT Technical Cyber Security Ale>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03527.html>/link>
>description>Howell, Paul (03/10/10)>/description>
>/item>
>item>
>title>1024-bit RSA encryption cracked by caref>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03526.html>/link>
>description>Howell, Paul (03/10/10)>/description>
>/item>
>item>
>title>SANS NewsBites Vol. 12 Num. 19 : $120 Mi>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03525.html>/link>
>description>The SANS Institute (03/09/10)>/description>
>/item>
>item>
>title>FW: [ISN] FDIC: Hackers took more than $>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03524.html>/link>
>description>Howell, Paul (03/09/10)>/description>
>/item>
>item>
>title>HTC Phones Pre-installed With Mariposa B>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03523.html>/link>
>description>Howell, Paul (03/09/10)>/description>
>/item>
>item>
>title>Ford Motor Rolls Out New Security Featur>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03522.html>/link>
>description>Howell, Paul (03/09/10)>/description>
>/item>
>item>
>title>What's in a Name?>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03521.html>/link>
>description>Howell, Paul (03/09/10)>/description>
>/item>
>item>
>title>FW: US-CERT Cyber Security Bulletin SB10>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03520.html>/link>
>description>Howell, Paul (03/08/10)>/description>
>/item>
>item>
>title>SANS NewsBites Vol. 12 Num. 18 : Source>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03519.html>/link>
>description>The SANS Institute (03/05/10)>/description>
>/item>
>item>
>title>The Myth of iPhone App Piracy>/title>
>link>http://www.merit.edu/mail.archives/netsec/msg03518.html>/link>
>description>Howell, Paul (03/03/10)>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title> SANS ISC SecNewsFeed>/title>
>link> http://isc.sans.org>/link>
>description>>![CDATA[]]>>/description>
>image>
>title>SANS ISC SecNewsFeed>/title>
>url>http://isc.sans.org/images/status.gif>/url>
>link>http://isc.sans.org>/link>
>/image>
>item>
>title>SQL Injection, Active X on decline: IBM X-Force (NetworkWorld Security)>/title>
>link>http://www.networkworld.com/news/2010/031210-sql-injection-active-x-on.html>/link>
>/item>
>item>
>title>A new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Windows Safari users http://support.apple.com/kb/HT4070 ), (Thu, Mar 11th) (InternetStormCenter)>/title>
>link>http://isc.sans.org/diary.html?storyid=8416&rss>/link>
>/item>
>item>
>title>The H Week - Faster password cracking and Linux 2.6.34 in testing (Heise Security News)>/title>
>link>http://rss.feedsportal.com/c/32569/f/491736/s/97cf580/l/0L0Sh0Eonline0N0Csecurity0Cnews0Citem0CThe0EH0EWeek0EFaster0Epassword0Ecracking0Eand0ELinux0E20E60E340Ein0Etesting0E9535530Bhtml0Cfrom0Crss/story01.htm>/link>
>/item>
>item>
>title>CVE-2010-0962 (airportexpress, airportextreme, timecapsule) (Natl. Vulnerability Database)>/title>
>link>http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0962>/link>
>/item>
>item>
>title>Exploit Code Released for Critical IE Flaw (March 9, 10 & 11, 2010) (SANS Newsbites)>/title>
>link>http://www.sans.org/newsletters/newsbites/newsbites.php?vol=12&issue=20&rss=Y#sID310>/link>
>/item>
>item>
>title>Cybercrime surge pushes 2009 losses to 559 million dollars (AFP) (Yahoo Security)>/title>
>link>http://us.rd.yahoo.com/dailynews/rss/security/*http://news.yahoo.com/s/afp/20100312/ts_alt_afp/usonlinecrime>/link>
>/item>
>item>
>title>Trojan armed with hardware-based anti-piracy control (The Register)>/title>
>link>http://go.theregister.com/feed/www.theregister.co.uk/2010/03/12/new_zeus_features/>/link>
>/item>
>item>
>title>Friday Squid Blogging: Cipherlopods (Schneier blog)>/title>
>link>http://www.schneier.com/blog/archives/2010/03/friday_squid_bl_223.html>/link>
>/item>
>item>
>title>Bugtraq: SECURITY DSA 2014-1 New moin packages fix several vulnerabilities (SecurityFocus Vulnerabilities)>/title>
>link>http://www.securityfocus.com/archive/1/510051>/link>
>/item>
>item>
>title>10.11.11 WinSmMuPl &quot;.mp3&quot; File Remote Buffer Overflow (SANS @Risk)>/title>
>link>http://www.sans.org/newsletters/risk/display.php?v=9&i=11&rss=Y#10.11.11>/link>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>SecurityFocus News>/title>
>link>http://www.securityfocus.com>/link>
>description>
>/description>
>image>
>title>SecurityFocus>/title>
>url>http://www.securityfocus.com/rss/SFLogo_v1.gif>/url>
>link>http://www.securityfocus.com>/link>
>/image>
>item>
>title>News: Change in Focus>/title>
>link>http://www.securityfocus.com/news/11582?ref=rss>/link>
>description>Change in Focus>/description>
>/item>
>item>
>title>News: Twitter attacker had proper credentials>/title>
>link>http://www.securityfocus.com/news/11569?ref=rss>/link>
>description>Twitter attacker had proper credentials>/description>
>/item>
>item>
>title>News: PhotoDNA scans images for child abuse>/title>
>link>http://www.securityfocus.com/news/11570?ref=rss>/link>
>description>>![CDATA[ PhotoDNA scans images for child abuse>br/>>br/>
]]>>/description>
>/item>
>item>
>title>News: Conficker data highlights infected networks>/title>
>link>http://www.securityfocus.com/news/11568?ref=rss>/link>
>description>Conficker data highlights infected networks>/description>
>/item>
>item>
>title>Brief: Google offers bounty on browser bugs>/title>
>link>http://www.securityfocus.com/brief/1067?ref=rss>/link>
>description>Google offers bounty on browser bugs>/description>
>/item>
>item>
>title>Brief: Cyberattacks from U.S. "greatest concern">/title>
>link>http://www.securityfocus.com/brief/1066?ref=rss>/link>
>description>>![CDATA[ Cyberattacks from U.S. "greatest concern">br/>>br/>
]]>>/description>
>/item>
>item>
>title>Brief: Microsoft patches as fraudsters target IE flaw>/title>
>link>http://www.securityfocus.com/brief/1065?ref=rss>/link>
>description>Microsoft patches as fraudsters target IE flaw>/description>
>/item>
>item>
>title>Brief: Attack on IE 0-day refined by researchers>/title>
>link>http://www.securityfocus.com/brief/1064?ref=rss>/link>
>description>Attack on IE 0-day refined by researchers>/description>
>/item>
>item>
>title>News: Monster botnet held 800,000 people's details>/title>
>link>http://www.securityfocus.com/news/11580?ref=rss>/link>
>description>>![CDATA[ Monster botnet held 800,000 people's details>br/>>br/>
]]>>/description>
>/item>
>item>
>title>News: Google: 'no timetable' on China talks>/title>
>link>http://www.securityfocus.com/news/11581?ref=rss>/link>
>description>Google: 'no timetable' on China talks>/description>
>/item>
>item>
>title>News: Latvian hacker tweets hard on banking whistle>/title>
>link>http://www.securityfocus.com/news/11577?ref=rss>/link>
>description>Latvian hacker tweets hard on banking whistle>/description>
>/item>
>item>
>title>News: MS uses court order to take out Waledac botnet>/title>
>link>http://www.securityfocus.com/news/11578?ref=rss>/link>
>description>>![CDATA[ MS uses court order to take out Waledac botnet>br/>>br/>
]]>>/description>
>/item>
>item>
>title>Infocus: Enterprise Intrusion Analysis, Part One>/title>
>link>http://www.securityfocus.com/infocus/1904?ref=rss>/link>
>description>Enterprise Intrusion Analysis, Part One>/description>
>/item>
>item>
>title>Infocus: Responding to a Brute Force SSH Attack>/title>
>link>http://www.securityfocus.com/infocus/1903?ref=rss>/link>
>description>Responding to a Brute Force SSH Attack>/description>
>/item>
>item>
>title>Infocus: Data Recovery on Linux and <i>ext3</i>>/title>
>link>http://www.securityfocus.com/infocus/1902?ref=rss>/link>
>description>>![CDATA[ Data Recovery on Linux and <i>ext3</i>>br/>>br/>
]]>>/description>
>/item>
>item>
>title>Infocus: WiMax: Just Another Security Challenge?>/title>
>link>http://www.securityfocus.com/infocus/1901?ref=rss>/link>
>description>WiMax: Just Another Security Challenge?>/description>
>/item>
>item>
>title>Gunter Ollmann: Time to Squish SQL Injection>/title>
>link>http://www.securityfocus.com/columnists/505?ref=rss>/link>
>description>Time to Squish SQL Injection>/description>
>/item>
>item>
>title>Mark Rasch: Lazy Workers May Be Deemed Hackers>/title>
>link>http://www.securityfocus.com/columnists/504?ref=rss>/link>
>description>>![CDATA[ Lazy Workers May Be Deemed Hackers>br/>>br/>
]]>>/description>
>/item>
>item>
>title>Adam O'Donnell: The Scale of Security>/title>
>link>http://www.securityfocus.com/columnists/503?ref=rss>/link>
>description>The Scale of Security>/description>
>/item>
>item>
>title>Mark Rasch: Hacker-Tool Law Still Does Little>/title>
>link>http://www.securityfocus.com/columnists/502?ref=rss>/link>
>description>Hacker-Tool Law Still Does Little>/description>
>/item>
>item>
>title>More rss feeds from SecurityFocus>/title>
>link>http://www.securityfocus.com/rss/index.shtml>/link>
>description>News, Infocus, Columns, Vulnerabilities, Bugtraq ...>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Nmap Development>/title>
>link>http://seclists.org/#nmap-dev>/link>
>description>Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to <A HREF="http://nmap.org">Nmap</A> and related projects.>/description>
>item>
>title>Re: Nping/gthostbynameCached>/title>
>link>http://seclists.org/nmap-dev/2010/q1/890>/link>
>description><p>Posted by Gisle Vanem on Mar 14</p>Any progress? The problem is still there.<br>
--gv<br>>/description>
>/item>
>item>
>title>Re: Nmap SoC Ideas?>/title>
>link>http://seclists.org/nmap-dev/2010/q1/889>/link>
>description><p>Posted by Chip Panarchy on Mar 14</p>Progress status bar &/or estimated time of scan completion<br>>/description>
>/item>
>item>
>title>Re: Nmap SoC Ideas?>/title>
>link>http://seclists.org/nmap-dev/2010/q1/888>/link>
>description><p>Posted by Daniel Roethlisberger on Mar 14</p>Fyodor <fyodor () insecure org> 2010-03-13:<br>
scanning of networks is infeasible.<br>>/description>
>/item>
>item>
>title>Re: Comments on smtp-open-relay and smtp-enum-users>/title>
>link>http://seclists.org/nmap-dev/2010/q1/887>/link>
>description><p>Posted by Duarte Silva on Mar 14</p>The changes have been made to smtp-open-relay.nse. It is also now<br>
Thanks for the suggestions :P<br>>/description>
>/item>
>item>
>title>Re: smtp-enum-users.nse>/title>
>link>http://seclists.org/nmap-dev/2010/q1/886>/link>
>description><p>Posted by Duarte Silva on Mar 14</p>The script had to change a bit. I think it will need some more testing<br>
--script-args smtp-enum-users.method={RCPT,EXPN}<br>>/description>
>/item>
>item>
>title>[NSE] RPC library new version and scripts>/title>
>link>http://seclists.org/nmap-dev/2010/q1/885>/link>
>description><p>Posted by Patrik Karlsson on Mar 14</p>Hi all,<br>
can be found at the top of rpc.lua. I've also tried to document as much of the known limitations as possible...<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/884>/link>
>description><p>Posted by Henri Doreau on Mar 14</p>Hi,<br>
Nice work Gutek!<br>>/description>
>/item>
>item>
>title>Re: Nmap SoC Ideas?>/title>
>link>http://seclists.org/nmap-dev/2010/q1/883>/link>
>description><p>Posted by Ron on Mar 13</p>I've been keeping a wishlist lately, here's mine (let me know if you need clarification on anything):<br>
often realize way too late in a...<br>>/description>
>/item>
>item>
>title>Nmap SoC Ideas?>/title>
>link>http://seclists.org/nmap-dev/2010/q1/882>/link>
>description><p>Posted by Fyodor on Mar 13</p>Hi Folks. It is that time of the year again for the Summer of Code!<br>
That...<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/881>/link>
>description><p>Posted by David Fifield on Mar 13</p>Okay, that's a good explanation.<br>
David Fifield<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/880>/link>
>description><p>Posted by Gutek on Mar 13</p>Btw, please find attached the list of those untranslated words, with my<br>
This way, anyone can give its own opinion on each point.<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/879>/link>
>description><p>Posted by Gutek on Mar 13</p>Well, in fact it's on purpose : i've choosen not to translate some<br>
- as you said, "PDF, TTL" but also "IPv4" are *common...<br>>/description>
>/item>
>item>
>title>Re: Problems writing a nmap-service-probe for jdwp (Java debug wire protocol)>/title>
>link>http://seclists.org/nmap-dev/2010/q1/878>/link>
>description><p>Posted by Michael Schierl on Mar 13</p>Am 13.03.2010 02:43, schrieb Brandon Enright:<br>
so using any magic port numbers will not work...<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/877>/link>
>description><p>Posted by David Fifield on Mar 13</p>This is great! Running Zenmap with LANG=fr_FR looks so good that I'm now<br>
$ msgattrib...<br>>/description>
>/item>
>item>
>title>Re: Request to translators: profile editor strings>/title>
>link>http://seclists.org/nmap-dev/2010/q1/876>/link>
>description><p>Posted by Gutek on Mar 13</p>Done !<br>
A.G.<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Nmap Hackers>/title>
>link>http://seclists.org/#nmap-hackers>/link>
>description>Moderated list for the most important new releases and announcements regarding the <A HREF="http://nmap.org">Nmap Security Scanner</A> and related projects. We recommend that all Nmap users <a href="http://cgi.insecure.org/mailman/listinfo/nmap-hackers">subscribe</a>.>/description>
>item>
>title>Nmap 5.21 released>/title>
>link>http://seclists.org/nmap-hackers/2010/2>/link>
>description><p>Posted by Fyodor on Jan 27</p>Hello everyone. I'm pleased to release Nmap 5.21, which contains zero<br>
development projects. If you want to know...<br>>/description>
>/item>
>item>
>title>Lots of Nmap News>/title>
>link>http://seclists.org/nmap-hackers/2010/1>/link>
>description><p>Posted by Fyodor on Jan 22</p>Hi folks. I'm happy to report that the 5.20 release went well. But<br>
If you're running from a build of the latest SVN checkout, you...<br>>/description>
>/item>
>item>
>title>Nmap 5.20 Released>/title>
>link>http://seclists.org/nmap-hackers/2010/0>/link>
>description><p>Posted by Fyodor on Jan 20</p>Happy new year, everyone. I'm happy to announce Nmap 5.20--our first<br>
The...<br>>/description>
>/item>
>item>
>title>Nmap 5.00 Released!>/title>
>link>http://seclists.org/nmap-hackers/2009/3>/link>
>description><p>Posted by Fyodor on Jul 16</p>Hello everyone. I'm delighted to announce the release of Nmap 5.00!<br>
1) The new Ncat tool aims to be your Swiss Army Knife...<br>>/description>
>/item>
>item>
>title>Nmap news: stable release candidate 4.90RC1, SoC team, and new translations>/title>
>link>http://seclists.org/nmap-hackers/2009/2>/link>
>description><p>Posted by Fyodor on Jun 26</p>Hi Folks. I'm pleased to announce some exciting Nmap news:<br>
Please test it out, and let us know if you find any problems...<br>>/description>
>/item>
>item>
>title>Nmap 4.85BETA6 now avail w/Conficker detection>/title>
>link>http://seclists.org/nmap-hackers/2009/1>/link>
>description><p>Posted by Fyodor on Apr 01</p>Hi Folks! In case you missed all the news reports yesterday, a couple<br>
millions of infections, and this massive botnet...<br>>/description>
>/item>
>item>
>title>Nmap News: 4.84BETA4 release, Nmap book news, Summer of Code, Twitter, etc.>/title>
>link>http://seclists.org/nmap-hackers/2009/0>/link>
>description><p>Posted by Fyodor on Mar 27</p>Hello everyone. We've seen 848 messages on nmap-dev this year, but<br>
4.85BETA4 release,...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Penetration Testing>/title>
>link>http://seclists.org/#pen-test>/link>
>description>While this list is intended for "professionals", participants frequenly disclose techniques and strategies that would be useful to anyone with a practical interest in security and network auditing.>/description>
>item>
>title>Re: proposed pen-test>/title>
>link>http://seclists.org/pen-test/2010/Mar/71>/link>
>description><p>Posted by Matt Gardenghi on Mar 11</p>I'd vote that you didn't do this. It's cool, but a waste of your time. <br>
you need to cover those, but what is...<br>>/description>
>/item>
>item>
>title>Re: Professional Scrpt Kiddies vs Real Talent>/title>
>link>http://seclists.org/pen-test/2010/Mar/70>/link>
>description><p>Posted by Mike on Mar 11</p>Good discussion, but I feel both are equally important. I mean when I<br>
intelligently interpret the data and we don't...<br>>/description>
>/item>
>item>
>title>RE: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/69>/link>
>description><p>Posted by Frye, Dan on Mar 11</p>Does anyone know if a "bakeoff" of pentest vendors has ever been done?<br>
test network then publish the results of who scored the highest (%...<br>>/description>
>/item>
>item>
>title>Re: Professional Scrpt Kiddies vs Real Talent>/title>
>link>http://seclists.org/pen-test/2010/Mar/68>/link>
>description><p>Posted by 5.K1dd on Mar 11</p>Translation: "0ur cR3w 1$ l33t HaX0rz - 3v3ry0n3 3l$3 r l4m3rz +<br>
I guess the white hats are...<br>>/description>
>/item>
>item>
>title>Re: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/67>/link>
>description><p>Posted by Daniel Clemens on Mar 11</p>ASV's and Pentesters are two different animals all together. <br>
Prove to peers and...<br>>/description>
>/item>
>item>
>title>Re: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/66>/link>
>description><p>Posted by Mohamed Farid on Mar 11</p>There is a lot of Pen test firms - but my advise is to check with your<br>
better if you let them penetrate your system their selves..<br>>/description>
>/item>
>item>
>title>Controlled DoS>/title>
>link>http://seclists.org/pen-test/2010/Mar/65>/link>
>description><p>Posted by Tibor Kaskoto on Mar 11</p>Respected Members,<br>
anything? What is the approach to a 99.99% availability...<br>>/description>
>/item>
>item>
>title>Re: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/64>/link>
>description><p>Posted by Brent Huston on Mar 11</p>Obtain and check references, do a Google search on the company name and the names of the principles. Check for real <br>
time and energy. 15 mins per vendor and a browser will make it all make sense....<br>>/description>
>/item>
>item>
>title>Re: DNS Pen-Test Tools>/title>
>link>http://seclists.org/pen-test/2010/Mar/63>/link>
>description><p>Posted by gigi sulli on Mar 11</p> I want to suggest hostmap: <a rel="nofollow" href="http://hostmap.lonerunners.net">http://hostmap.lonerunners.net</a><br>
<a rel="nofollow" href="http://www.iacertification.org">http://www.iacertification.org</a>...<br>>/description>
>/item>
>item>
>title>Re: Professional Scrpt Kiddies vs Real Talent>/title>
>link>http://seclists.org/pen-test/2010/Mar/62>/link>
>description><p>Posted by Eric Milam on Mar 11</p>I think it is important to note that these days there is beginning to be<br>
tools. I have written only one...<br>>/description>
>/item>
>item>
>title>Re: proposed pen-test>/title>
>link>http://seclists.org/pen-test/2010/Mar/61>/link>
>description><p>Posted by Steve Friedl on Mar 11</p>Nobody, because a pen-test is not *actual* fraud, and there is no<br>
This may...<br>>/description>
>/item>
>item>
>title>Re: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/60>/link>
>description><p>Posted by Rudra Kamal Sinha Roy on Mar 11</p>Hi Tony,<br>
Tip 2: Focus on the vendor’s real knowledge and not just on certifications...<br>>/description>
>/item>
>item>
>title>Re: RE: Wireless Encryption Methods (eg; WPA2) vs Forced Secure Proxy Redirects>/title>
>link>http://seclists.org/pen-test/2010/Mar/59>/link>
>description><p>Posted by Cedric Blancher on Mar 11</p>Le vendredi 05 mars 2010 à 10:31 +0100, Malick Sy a écrit : <br>
and that will...<br>>/description>
>/item>
>item>
>title>RE: Professional Scrpt Kiddies vs Real Talent>/title>
>link>http://seclists.org/pen-test/2010/Mar/58>/link>
>description><p>Posted by Craig S. Wright on Mar 11</p>The entire notion that security is about pen testing is flawed.<br>
getting the site pen...<br>>/description>
>/item>
>item>
>title>Fwd: Evaluating pentesters>/title>
>link>http://seclists.org/pen-test/2010/Mar/57>/link>
>description><p>Posted by Daniel Hood on Mar 11</p>I'm usually on the otherside of the fence with this sort of stuff<br>
department. Not a product RnD...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>digg.com: Stories / Popular>/title>
>description>digg.com: Stories / Popular>/description>
>link>http://digg.com/>/link>
>title>Fatal wolf attack shows wisdom of national park gun rule ...>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/2oTyCyXtzHA/Fatal_wolf_attack_shows_wisdom_of_national_park_gun_rule>/link>
>description>The anti-self-defense lobby derisively dismissed the idea of needing to defend oneself in national parks, saying that such places were "too peaceful" for such a need. A jogger fatally mauled by wolves in Alaska shows one of the flaws with such "logic."
<a href="http://feedads.g.doubleclick.net/~at/lCDIPFQpPIVPMJ-oXycg13j1rmU/1/da"><img src="http://feedads.g.doubleclick.net/~at/lCDIPFQpPIVPMJ-oXycg13j1rmU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/2oTyCyXtzHA" height="1" width="1"/>>/description>
>item>
>title>How to: Make Potato Chips in the Microwave >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/2kVZsNXajtI/How_to_Make_Potato_Chips_in_the_Microwave>/link>
>description>Microwaves have gotten a bad rap with some people because they just don't cook some things as they should be cooked. However, according to Savory Sweet Life, it is possible to make potato chips in the microwave that taste great. Try these out some night for a midnight snack.
<a href="http://feedads.g.doubleclick.net/~at/r5uqOuFCln8bLLAIq3TsKKSp6to/1/da"><img src="http://feedads.g.doubleclick.net/~at/r5uqOuFCln8bLLAIq3TsKKSp6to/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/2kVZsNXajtI" height="1" width="1"/>>/description>
>item>
>title>The New Rove-Cheney Assault On Reality>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/XkX_ajDUI4M/The_New_Rove_Cheney_Assault_On_Reality>/link>
>description>The revisionist history peddled by Liz Cheney and Karl Rove must be aggressively refuted, and we must remember who really failed to keep America safe.
<a href="http://feedads.g.doubleclick.net/~at/Z9WQyH-KP9GrIwZw8GEuEIaR1jc/1/da"><img src="http://feedads.g.doubleclick.net/~at/Z9WQyH-KP9GrIwZw8GEuEIaR1jc/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/XkX_ajDUI4M" height="1" width="1"/>>/description>
>item>
>title>Manny Pacquiao Dominates Joshua Clottey for Decision>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/8tMib0tQvaA/Manny_Pacquiao_Dominates_Joshua_Clottey_for_Decision>/link>
>description>With the biggest fight crowd in the U.S. in 17 years cheering him on at Cowboys Stadium, Pacquiao dominated a strangely passive Joshua Clottey from the opening bell Saturday night to retain his welterweight title and cement his status as the best pound-for-pound fighter in the world.
<a href="http://feedads.g.doubleclick.net/~at/BXm8YPATqomkEnL0JgYFVjjWMIU/1/da"><img src="http://feedads.g.doubleclick.net/~at/BXm8YPATqomkEnL0JgYFVjjWMIU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/8tMib0tQvaA" height="1" width="1"/>>/description>
>item>
>title> 7 Cat Species Found in 1 Forest—A Record (Gallery)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/F9dLPBi6jTw/7_Cat_Species_Found_in_1_ForestmA_Record_Gallery_2>/link>
>description>Released in February, the picture was taken during a two-year survey by the Wildlife Conservation Society (WCS). The research found seven cat species in a 354-square-mile (570-square-kilometer) range—the highest diversity of cat species yet photographed in a single area.
<a href="http://feedads.g.doubleclick.net/~at/mWynQRFu_5zi7GxvZ4w0T0RB-ok/1/da"><img src="http://feedads.g.doubleclick.net/~at/mWynQRFu_5zi7GxvZ4w0T0RB-ok/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/F9dLPBi6jTw" height="1" width="1"/>>/description>
>item>
>title>Could GPS devices create a world without signs? >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/vCx8bfvpVys/Could_GPS_devices_create_a_world_without_signs>/link>
>description>These tools are inexorably changing the way we navigate highways. It's true that we use signs in tandem with personal navigation systems today, but that may not always be the case. Experts envision a future in which we trust digital directions so completely that we no longer make much use of real-world cues.
<a href="http://feedads.g.doubleclick.net/~at/wM63hpbsjBOoD0CP6wM4LGIQ928/1/da"><img src="http://feedads.g.doubleclick.net/~at/wM63hpbsjBOoD0CP6wM4LGIQ928/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/vCx8bfvpVys" height="1" width="1"/>>/description>
>item>
>title>Kissinger admitted to South Korean hospital >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/Ryz9GUoYDdo/Kissinger_admitted_to_South_Korean_hospital>/link>
>description>Former U.S. Secretary of State Henry Kissinger was admitted to a hospital in Seoul, South Korea, on Saturday with a stomach virus, a doctor told CNN.
<a href="http://feedads.g.doubleclick.net/~at/_ehv8PGvodoLOTPuSCYhKmyLGCg/1/da"><img src="http://feedads.g.doubleclick.net/~at/_ehv8PGvodoLOTPuSCYhKmyLGCg/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/Ryz9GUoYDdo" height="1" width="1"/>>/description>
>item>
>title>Will London 2012 Be ‘The Green Olympics’?>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/LR0rsrJYJWY/Will_London_2012_Be_The_Green_Olympics_2>/link>
>description>London looks set to raise the bar even higher with plans to blow Vancouver’s achievements out of the water in 2012. The London Olympic Authority have stated that they are aiming to make London 2012 the first sustainable Olympic Games, setting a precedent for future events.
<a href="http://feedads.g.doubleclick.net/~at/lTVft3sB1BOrFKRjDdJDPEjl3b4/1/da"><img src="http://feedads.g.doubleclick.net/~at/lTVft3sB1BOrFKRjDdJDPEjl3b4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/LR0rsrJYJWY" height="1" width="1"/>>/description>
>item>
>title>How Apple Blew Its Chance To Own AdMob For $600 Million>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/VFMtQQFfHq0/How_Apple_Blew_Its_Chance_To_Own_AdMob_For_600_Million>/link>
>description>Apple had a chance to own mobile advertising company AdMob for $600 million, but blew it, the New York Times reports.
<a href="http://feedads.g.doubleclick.net/~at/J9Plc2tn2pZBAhdg9OVyr2OGApI/1/da"><img src="http://feedads.g.doubleclick.net/~at/J9Plc2tn2pZBAhdg9OVyr2OGApI/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/VFMtQQFfHq0" height="1" width="1"/>>/description>
>item>
>title>Genius Promotion Campaign : IKEA Subway Display in Paris >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/9oT3ZOI3q3w/Genius_Promotion_Campaign_IKEA_Subway_Display_in_Paris>/link>
>description>From 10 to 24 March 2010, IKEA develops an interesting event in four important metro stations in Paris. Furniture collections are currently displayed in high-traffic spots, giving the potential customers a chance to interact with the brand by checking out the products.
<a href="http://feedads.g.doubleclick.net/~at/PzfMIaeFIO0Z9dLnhTB_5KDyvzU/1/da"><img src="http://feedads.g.doubleclick.net/~at/PzfMIaeFIO0Z9dLnhTB_5KDyvzU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/9oT3ZOI3q3w" height="1" width="1"/>>/description>
>item>
>title>Leaving The Screen: Adapting Movie Franchises for Video Game>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/9d4l2C7endo/Leaving_The_Screen_Adapting_Movie_Franchises_for_Video_Game>/link>
>description>Games based on film licenses tend to be pretty wretched. Yet given the arrival of "Aliens vs. Predator," a film-based game that not only works but actually makes sense, it's clear that some films are just a better fit for the interactive realm.
<a href="http://feedads.g.doubleclick.net/~at/aMA61_GzDVdmCzZD6jayel-r9B8/1/da"><img src="http://feedads.g.doubleclick.net/~at/aMA61_GzDVdmCzZD6jayel-r9B8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/9d4l2C7endo" height="1" width="1"/>>/description>
>item>
>title>Another Prius Accelerates Unintentionally in NYC and Crashes>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/ix0xLozHhF0/Another_Prius_Accelerates_Unintentionally_in_NYC_and_Crashes>/link>
>description>Not one day after a high-profile incident involving a Prius taking off on its owner in Southern California, we're hearing reports that another one of Toyota's popular hybrids has suffered unintended acceleration in New York.
<a href="http://feedads.g.doubleclick.net/~at/My6OGCXQtNxi2Pam8Ww7MHO7_hQ/1/da"><img src="http://feedads.g.doubleclick.net/~at/My6OGCXQtNxi2Pam8Ww7MHO7_hQ/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/ix0xLozHhF0" height="1" width="1"/>>/description>
>item>
>title>Human Cells 'Forage' Like Amoebae, Bacteria>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/loHfKwxJYDw/Human_Cells_Forage_Like_Amoebae_Bacteria>/link>
>description>When cells move about in the body, they follow a complex pattern similar to that which amoebae and bacteria use when searching for food, researchers have found. The discovery has a practical value for drug development: Incorporating this basic behavior into computer simulations of biological processes that involve cell migration...
<a href="http://feedads.g.doubleclick.net/~at/5wyKNu2fa-U8w7zcoFqk0ub1Uu4/1/da"><img src="http://feedads.g.doubleclick.net/~at/5wyKNu2fa-U8w7zcoFqk0ub1Uu4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/loHfKwxJYDw" height="1" width="1"/>>/description>
>item>
>title>Hitler Without A Mustache [PIC]>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/o47QLh71xtQ/Hitler_Without_A_Mustache_PIC>/link>
>description>And look at that purple suit...
<a href="http://feedads.g.doubleclick.net/~at/Re0Lkdp6_436x8pK371R-vUKyB8/1/da"><img src="http://feedads.g.doubleclick.net/~at/Re0Lkdp6_436x8pK371R-vUKyB8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/o47QLh71xtQ" height="1" width="1"/>>/description>
>item>
>title>It Was The Cars Fault (PIC) >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/yR3f_mYCv_I/It_Was_The_Cars_Fault_PIC>/link>
>description>*****
<a href="http://feedads.g.doubleclick.net/~at/MdO0kifVFqNryBAEYiyjpnv4B0U/1/da"><img src="http://feedads.g.doubleclick.net/~at/MdO0kifVFqNryBAEYiyjpnv4B0U/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/yR3f_mYCv_I" height="1" width="1"/>>/description>
>item>
>title>Homework before Hoops (pic)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/b8K1jX7OmPc/Homework_before_Hoops_pic>/link>
>description>*****
<a href="http://feedads.g.doubleclick.net/~at/6IHhI2HMbmx9y0p_njvWvsZ78Sw/1/da"><img src="http://feedads.g.doubleclick.net/~at/6IHhI2HMbmx9y0p_njvWvsZ78Sw/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/b8K1jX7OmPc" height="1" width="1"/>>/description>
>item>
>title>Leo Laporte crowd surfing while live streaming @ Diggnation>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/cOTWtCaehpg/Leo_Laporte_crowd_surfing_while_live_streaming_Diggnation>/link>
>description>Leo Laporte crowd surfing while live streaming on the Internet at Diggnation Live case. As seen at SXSW 2010 at Stubbs BBQ in Austin, TX!
<a href="http://feedads.g.doubleclick.net/~at/k-4FayrsEIDA9gP4bsyybdOytfU/1/da"><img src="http://feedads.g.doubleclick.net/~at/k-4FayrsEIDA9gP4bsyybdOytfU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/cOTWtCaehpg" height="1" width="1"/>>/description>
>item>
>title>Man claims he caught girlfriend in a threesome, killed all>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/1xqsFMEzVco/Man_claims_he_caught_girlfriend_in_a_threesome_killed_all>/link>
>description>Cops say story is a lie. The 50-year-old told cops he killed the woman and two men and had already chopped up his rivals' bodies and dumped them in New Jersey. Cops found the body of Deborah Blount, 51, in her Brownsville apartment Friday morning and arrested her boyfriend, John Brandon, at the scene.
<a href="http://feedads.g.doubleclick.net/~at/YWOD_iEDGOWO5ZuU6wTFEwUff_M/1/da"><img src="http://feedads.g.doubleclick.net/~at/YWOD_iEDGOWO5ZuU6wTFEwUff_M/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/1xqsFMEzVco" height="1" width="1"/>>/description>
>item>
>title>Should We Be Trying to Save the Dodo?>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/32p72ulqhe0/Should_We_Be_Trying_to_Save_the_Dodo>/link>
>description>Declaring a species extinct is no trivial matter. A team of Australian researchers are trying to bring a more rigorous approach to this area with the help of the dodo.
<a href="http://feedads.g.doubleclick.net/~at/egwAARx3k_Jm-nHvW0Ql8kSoeMg/1/da"><img src="http://feedads.g.doubleclick.net/~at/egwAARx3k_Jm-nHvW0Ql8kSoeMg/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/32p72ulqhe0" height="1" width="1"/>>/description>
>item>
>title>The Frame: Hunting for "The Hobbit" (PICS)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/FF75klQqd0c/The_Frame_Hunting_for_The_Hobbit_PICS>/link>
>description>The discovery of ***** floresiensis shocked and divided scientists. Here apparently was a band of distant relatives that exhibited features not seen for millions of years but were living at the same time as much more modern humans
<a href="http://feedads.g.doubleclick.net/~at/t-bLI6Lg7VmUX4f15SOIU0dVJH4/1/da"><img src="http://feedads.g.doubleclick.net/~at/t-bLI6Lg7VmUX4f15SOIU0dVJH4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/FF75klQqd0c" height="1" width="1"/>>/description>
>item>
>title>New Version of Digg Revealed>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/vgdkd9fGFlI/New_Version_of_Digg_Revealed>/link>
>description>At the “Bigg Digg Shindigg” event at the South by Southwest Interactive Conference (SXSWi), Digg CEO Jay Adelson revealed that the popular social bookmarking site is getting a major overhaul, teasing the audience about new features such as personalized feeds and the return of the Digg leaderboard.
<a href="http://feedads.g.doubleclick.net/~at/bdkLn7Rb7qGEC55k5xGAdzKVWKk/1/da"><img src="http://feedads.g.doubleclick.net/~at/bdkLn7Rb7qGEC55k5xGAdzKVWKk/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/vgdkd9fGFlI" height="1" width="1"/>>/description>
>item>
>title>When malware strikes via bad ads on good sites >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/PKbU0KqZadA/When_malware_strikes_via_bad_ads_on_good_sites>/link>
>description>Who is responsible for malware in ads, Web site owners or ad networks and delivery firms? Matt Drudge and Michael Arrington found themselves this week in an unpleasant position when visitors to their respective Drudge Report and TechCrunch sites were targeted by malware that appeared to have come from ads...
<a href="http://feedads.g.doubleclick.net/~at/u6HUhv0Y8KAlb4Rm-IOoZLpLiO0/1/da"><img src="http://feedads.g.doubleclick.net/~at/u6HUhv0Y8KAlb4Rm-IOoZLpLiO0/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/PKbU0KqZadA" height="1" width="1"/>>/description>
>item>
>title>Burrito the Golfing Chihuahua! [video]>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/V2zCj2FdJ1s/Burrito_the_Golfing_Chihuahua_video>/link>
>description>This is Burrito, and although he’s not very good at golf, I love him because he at least dresses the part. Where did his owner find such tiny golf clubs? I don’t care: all that matters is that he has them.
<a href="http://feedads.g.doubleclick.net/~at/zo984FJ89gbBRgTN2WWpgB8EzGs/1/da"><img src="http://feedads.g.doubleclick.net/~at/zo984FJ89gbBRgTN2WWpgB8EzGs/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/V2zCj2FdJ1s" height="1" width="1"/>>/description>
>item>
>title>NFL: Verizon In, Sprint Out >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/AFb2rSyzdz4/NFL_Verizon_In_Sprint_Out>/link>
>description>There's bad news for NFL fans on the Sprint network. The NFL has officially taken on rival Verizon as the official wireless
<a href="http://feedads.g.doubleclick.net/~at/yOno2IySHxKewwUmu8-WqbK-C_s/1/da"><img src="http://feedads.g.doubleclick.net/~at/yOno2IySHxKewwUmu8-WqbK-C_s/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/AFb2rSyzdz4" height="1" width="1"/>>/description>
>item>
>title>Seven Improved Security Features in Windows 7>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/Tkkv8-qDoog/Seven_Improved_Security_Features_in_Windows_7>/link>
>description>While no operating system is perfect, Microsoft appears to have made significant security improvements with the release of Windows 7.
<a href="http://feedads.g.doubleclick.net/~at/WYLMjPXoIMO00z4fakZUPAQMc5s/1/da"><img src="http://feedads.g.doubleclick.net/~at/WYLMjPXoIMO00z4fakZUPAQMc5s/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/Tkkv8-qDoog" height="1" width="1"/>>/description>
>item>
>title>Senators resist Obama over projects in health bill>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/x1hGvAU_i7U/Senators_resist_Obama_over_projects_in_health_bill>/link>
>description>President Barack Obama says he wants projects helping specific states yanked from the health care bill Congress is writing. Democratic senators, being senators, beg to differ.
<a href="http://feedads.g.doubleclick.net/~at/5EGUp4qMZYPsL6MvRUNoXD0tqeo/1/da"><img src="http://feedads.g.doubleclick.net/~at/5EGUp4qMZYPsL6MvRUNoXD0tqeo/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/x1hGvAU_i7U" height="1" width="1"/>>/description>
>item>
>title>Final Fantasy XIII Sells 450K Units in the Americas in 1 day>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/KowkUwUGN7M/Final_Fantasy_XIII_Sells_450K_Units_in_the_Americas_in_1_day>/link>
>description>A very strong start for the latest Final Fantasy title with two thirds of sales on PS3 - now updated with the figures for Other Regions as well.
<a href="http://feedads.g.doubleclick.net/~at/7NDBeIt0NINtJR_vzgsn_v1iYpo/1/da"><img src="http://feedads.g.doubleclick.net/~at/7NDBeIt0NINtJR_vzgsn_v1iYpo/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/KowkUwUGN7M" height="1" width="1"/>>/description>
>item>
>title>Driverless car to test out Pikes Peak climb>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/hNZfjS7G59g/Driverless_car_to_test_out_Pikes_Peak_climb>/link>
>description>Guiding a car through the treacherous turns and switchbacks of the Pikes Peak Hill Climb course is a test for top professionals, but a team of Stanford researchers is preparing to tackle that challenge with a driverless car guided by GPS tracking.
<a href="http://feedads.g.doubleclick.net/~at/p88tJ8Lx_LPYXNMYL2gsBHJFs64/1/da"><img src="http://feedads.g.doubleclick.net/~at/p88tJ8Lx_LPYXNMYL2gsBHJFs64/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/hNZfjS7G59g" height="1" width="1"/>>/description>
>item>
>title>Things Get Ugly Between Agassi And Sampras (VIDEO)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/GliXcB03Kp4/Things_Get_Ugly_Between_Agassi_And_Sampras_VIDEO>/link>
>description>Andre Agassi is kind of an ass
<a href="http://feedads.g.doubleclick.net/~at/sxAxcGIEyyS8wFmo1nOZN2eA-ck/1/da"><img src="http://feedads.g.doubleclick.net/~at/sxAxcGIEyyS8wFmo1nOZN2eA-ck/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/GliXcB03Kp4" height="1" width="1"/>>/description>
>item>
>title>My New Teeth Cleaner (pic)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/72jqTiKKMls/My_New_Teeth_Cleaner_pic>/link>
>description>*****
<a href="http://feedads.g.doubleclick.net/~at/6mTU6PsgaM_4YfNhDWUan7j2zz4/1/da"><img src="http://feedads.g.doubleclick.net/~at/6mTU6PsgaM_4YfNhDWUan7j2zz4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/72jqTiKKMls" height="1" width="1"/>>/description>
>item>
>title>Cupcakes! 25 Photos of Sugary Goodness>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/DpI7kfP0rew/Cupcakes_25_Photos_of_Sugary_Goodness>/link>
>description>Cupcakes may be the perfect dessert. Which one is your favorite?
<a href="http://feedads.g.doubleclick.net/~at/ja5zUddrXVITJLyUnp-6p_ByVUM/1/da"><img src="http://feedads.g.doubleclick.net/~at/ja5zUddrXVITJLyUnp-6p_ByVUM/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/DpI7kfP0rew" height="1" width="1"/>>/description>
>item>
>title>More Democrats come out against health care bill >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/I0q5QKdr8xE/More_Democrats_come_out_against_health_care_bill_3>/link>
>description>As House Democratic leaders advised their members Friday to prepare for a legislative battle over health care that could stretch through next weekend, four additional rank-and-file Democrats have come out against the Obama administration's signature domestic priority.
<a href="http://feedads.g.doubleclick.net/~at/ZZMDneEzZjDWbV6wxO6mngmCE5U/1/da"><img src="http://feedads.g.doubleclick.net/~at/ZZMDneEzZjDWbV6wxO6mngmCE5U/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/I0q5QKdr8xE" height="1" width="1"/>>/description>
>item>
>title>This is why we don't have the next Half-Life game yet.>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/qxCbvkXPy3c/This_is_why_we_don_t_have_the_next_Half_Life_game_yet>/link>
>description>*****
<a href="http://feedads.g.doubleclick.net/~at/n1LBMttcpcObgwjvJxPNqt_kN9s/1/da"><img src="http://feedads.g.doubleclick.net/~at/n1LBMttcpcObgwjvJxPNqt_kN9s/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/qxCbvkXPy3c" height="1" width="1"/>>/description>
>item>
>title>Top 10 Google Apps Marketplace Apps >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/Czjc39xZV20/Top_10_Google_Apps_Marketplace_Apps>/link>
>description>Google's Apps suite for domain owners and businesses has finally received some star treatment with the launch of the Apps Marketplace. Which Google-friendly apps are free, worth the cost, and entirely useful? These 10 are definitely worth a look.
<a href="http://feedads.g.doubleclick.net/~at/xsl5PD3Hkniv1_2VSKwSUKbuhGo/1/da"><img src="http://feedads.g.doubleclick.net/~at/xsl5PD3Hkniv1_2VSKwSUKbuhGo/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/Czjc39xZV20" height="1" width="1"/>>/description>
>item>
>title>Comcast-NBCU merger: how the regulators will decide>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/kWEcLb5dfHQ/Comcast_NBCU_merger_how_the_regulators_will_decide>/link>
>description>Representatives from the Department of Justice and FCC were low-key about what they thought about the proposed Comcast-NBC Universal merger at yesterday's Senate hearing. But they offered a road map of how they're going to evaluate the deal. We've got details.
<a href="http://feedads.g.doubleclick.net/~at/ubgDuL1kSVIT6NskPdoDdDUkNe8/1/da"><img src="http://feedads.g.doubleclick.net/~at/ubgDuL1kSVIT6NskPdoDdDUkNe8/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/kWEcLb5dfHQ" height="1" width="1"/>>/description>
>item>
>title>Members of Congress Boosted their budgets 5% last Year>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/S1lc4XavAnc/Members_of_Congress_Boosted_their_budgets_5_last_Year>/link>
>description>Job losses, home foreclosures and the worst economy in decades have forced many Americans to cut back or do without. But not members of Congress, who voted themselves a 5 percent increase in their own budgets last year.
<a href="http://feedads.g.doubleclick.net/~at/x1IovVOQ-uWjF_AwusaMGJrnD58/1/da"><img src="http://feedads.g.doubleclick.net/~at/x1IovVOQ-uWjF_AwusaMGJrnD58/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/S1lc4XavAnc" height="1" width="1"/>>/description>
>item>
>title>Barack Obama's approval rating drops to 46% >/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/acUYDqz-7SI/Barack_Obama_s_approval_rating_drops_to_46>/link>
>description>President Barack Obama yesterday delayed a trip to Asia amid falling approval ratings and grave doubts that his 11th hour attempt to push health care reform through Congress will succeed. A new poll by Gallup showed Mr Obama's approval rating at a record low of 46% since taking office. In the optimistic early days of his presidency 69%
<a href="http://feedads.g.doubleclick.net/~at/hMsH0zPHXo0OyTIwJXXm_IbvzmM/1/da"><img src="http://feedads.g.doubleclick.net/~at/hMsH0zPHXo0OyTIwJXXm_IbvzmM/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/acUYDqz-7SI" height="1" width="1"/>>/description>
>item>
>title>9 Lame Vampires Much Cooler than the Vampires in Twilight>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/9mrHxuTbQpg/9_Lame_Vampires_Much_Cooler_than_the_Vampires_in_Twilight>/link>
>description>These vampires suck (no pun intended). However, they still kick the ***** out of Twilight's sorry excuse for the bloodsucking undead.
<a href="http://feedads.g.doubleclick.net/~at/pFwSAI4mS59qaa9Y1jk0kzuZxPY/1/da"><img src="http://feedads.g.doubleclick.net/~at/pFwSAI4mS59qaa9Y1jk0kzuZxPY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/9mrHxuTbQpg" height="1" width="1"/>>/description>
>item>
>title>Quite the Distraction (PIC)>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/WUWCuowMIxo/Quite_the_Distraction_PIC>/link>
>description>Females are capable of providing quite the distraction for any male athlete.
<a href="http://feedads.g.doubleclick.net/~at/apbHmeIKsDCzhyVBEAvFNvgkzHY/1/da"><img src="http://feedads.g.doubleclick.net/~at/apbHmeIKsDCzhyVBEAvFNvgkzHY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/WUWCuowMIxo" height="1" width="1"/>>/description>
>item>
>title>Sex being AWESOME helps sell condoms in SouthEast Asia>/title>
>link>http://feeds.digg.com/~r/digg/popular/~3/pR8NQ709k1s/Sex_being_AWESOME_helps_sell_condoms_in_SouthEast_Asia>/link>
>description>With more Southeast Asians flouting cultural prudishness by speaking openly about sex, condom companies in Indonsia and Thailand, such as Thai Nippon Rubber hope to raise revenues here in 2010. But that's proving to be a challenge due to deeply engrained social and cultural views that associate condoms with extramarital sex, prostitution and sin.
<a href="http://feedads.g.doubleclick.net/~at/cFY7EN7GMARt2IUh80lDLd9zoHY/1/da"><img src="http://feedads.g.doubleclick.net/~at/cFY7EN7GMARt2IUh80lDLd9zoHY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/digg/popular/~4/pR8NQ709k1s" height="1" width="1"/>>/description>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>The RISKS Forum>/title>
>link>http://seclists.org/#risks>/link>
>description>Peter G. Neumann moderates this regular digest of current events which demonstrate risks to the public in computers and related systems. Security risks are often discussed.>/description>
>item>
>title>Risks Digest 25.96>/title>
>link>http://seclists.org/risks/2010/q1/7>/link>
>description><p>Posted by RISKS List Owner on Mar 13</p>RISKS-LIST: Risks-Forum Digest Saturday 13 March 2010 Volume 25 : Issue 96<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.95>/title>
>link>http://seclists.org/risks/2010/q1/6>/link>
>description><p>Posted by RISKS List Owner on Feb 28</p>RISKS-LIST: Risks-Forum Digest Sunday 28 February 2010 Volume 25 : Issue 95<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.94>/title>
>link>http://seclists.org/risks/2010/q1/5>/link>
>description><p>Posted by RISKS List Owner on Feb 14</p>RISKS-LIST: Risks-Forum Digest Sunday 14 February 2010 Volume 25 : Issue 94<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.93>/title>
>link>http://seclists.org/risks/2010/q1/4>/link>
>description><p>Posted by RISKS List Owner on Jan 29</p>RISKS-LIST: Risks-Forum Digest Friday 29 January 2010 Volume 25 : Issue 93<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.92>/title>
>link>http://seclists.org/risks/2010/q1/3>/link>
>description><p>Posted by RISKS List Owner on Jan 26</p>RISKS-LIST: Risks-Forum Digest Tuesday 26 January 2010 Volume 25 : Issue 92<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.91>/title>
>link>http://seclists.org/risks/2010/q1/2>/link>
>description><p>Posted by RISKS List Owner on Jan 19</p>RISKS-LIST: Risks-Forum Digest Tuesday 19 January 2010 Volume 25 : Issue 91<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.90>/title>
>link>http://seclists.org/risks/2010/q1/1>/link>
>description><p>Posted by RISKS List Owner on Jan 08</p>RISKS-LIST: Risks-Forum Digest Friday 8 January 2010 Volume 25 : Issue 90<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.89>/title>
>link>http://seclists.org/risks/2010/q1/0>/link>
>description><p>Posted by RISKS List Owner on Jan 07</p>RISKS-LIST: Risks-Forum Digest Thursday 7 January 2010 Volume 25 : Issue 89<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.88>/title>
>link>http://seclists.org/risks/2009/q4/8>/link>
>description><p>Posted by RISKS List Owner on Dec 26</p>RISKS-LIST: Risks-Forum Digest Saturday 26 December 2009 Volume 25 : Issue 88<br>
The current issue can...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.87>/title>
>link>http://seclists.org/risks/2009/q4/7>/link>
>description><p>Posted by RISKS List Owner on Dec 15</p>RISKS-LIST: Risks-Forum Digest Tuesday 15 December 2009 Volume 25 : Issue 87<br>
The current issue can...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.86>/title>
>link>http://seclists.org/risks/2009/q4/6>/link>
>description><p>Posted by RISKS List Owner on Dec 14</p>RISKS-LIST: Risks-Forum Digest Monday 14 December 2009 Volume 25 : Issue 86<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.85>/title>
>link>http://seclists.org/risks/2009/q4/5>/link>
>description><p>Posted by RISKS List Owner on Nov 28</p>RISKS-LIST: Risks-Forum Digest Saturday 28 November 2009 Volume 25 : Issue 85<br>
The current issue can...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.84>/title>
>link>http://seclists.org/risks/2009/q4/4>/link>
>description><p>Posted by RISKS List Owner on Nov 25</p>RISKS-LIST: Risks-Forum Digest Weds 25 November 2009 Volume 25 : Issue 84<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.83>/title>
>link>http://seclists.org/risks/2009/q4/3>/link>
>description><p>Posted by RISKS List Owner on Nov 06</p>RISKS-LIST: Risks-Forum Digest Friday 6 November 2009 Volume 25 : Issue 83<br>
The current issue can be...<br>>/description>
>/item>
>item>
>title>Risks Digest 25.82>/title>
>link>http://seclists.org/risks/2009/q4/2>/link>
>description><p>Posted by RISKS List Owner on Oct 20</p>RISKS-LIST: Risks-Forum Digest Tuesday 20 October 2009 Volume 25 : Issue 82<br>
The current issue can be...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title> SANS Internet Storm Center, InfoCON: green>/title>
>link> http://isc.sans.org>/link>
>description>>![CDATA[]]>>/description>
>image>
>title>SANS Internet Storm Center, InfoCON: green>/title>
>url>http://isc.sans.org/images/status.gif>/url>
>link>http://isc.sans.org>/link>
>/image>
>item>
>title>Infocon: green>/title>
>link>http://isc.sans.org/diary.html?rss>/link>
>description>>![CDATA[Reminder: Daylight Saving Time starts tonight in several countries. See http://www.timeanddate.com/time/dst2010.html for more details.]]>>/description>
>/item>
>item>
>title>Reminder: Daylight Saving Time starts tonight in several countries. See http://www.timeanddate.com/time/dst2010.html for more details., (Sun, Mar 14th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8428&rss>/link>
>description>>![CDATA[ ...(more)... ]]>>/description>
>/item>
>item>
>title>
Evil Sports Sites, (Sat, Mar 13th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8425&rss>/link>
>description>>![CDATA[One of our regular readers submitted a Google query to us that points to yet another temptation that ...(more)... ]]>>/description>
>/item>
>item>
>title>
Firebug 1.5.3 is out. See http://blog.getfirebug.com/2010/03/12/firebug-1-5-3/ , (Sat, Mar 13th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8422&rss>/link>
>description>>![CDATA[ ...(more)... ]]>>/description>
>/item>
>item>
>title>
A new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Windows Safari users http://support.apple.com/kb/HT4070 ), (Thu, Mar 11th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8416&rss>/link>
>description>>![CDATA[ ...(more)... ]]>>/description>
>/item>
>item>
>title>
Firefox 3.6 is being pushed out to users. http://www.mozilla.com/en-US/firefox/3.6/releasenotes/, (Fri, Mar 12th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8419&rss>/link>
>description>>![CDATA[ ...(more)... ]]>>/description>
>/item>
>item>
>title>
Interesting SKYPE SPIM., (Thu, Mar 11th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8413&rss>/link>
>description>>![CDATA[Earlier this week Jared sent us an interesting SKYPE spim. Isuspect this was sent using the Sk ...(more)... ]]>>/description>
>/item>
>item>
>title>
New version of foxit pdf reader available. http://www.foxitsoftware.com/downloads/index.php, (Thu, Mar 11th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8410&rss>/link>
>description>>![CDATA[ ...(more)... ]]>>/description>
>/item>
>item>
>title>
Cert write up on Skype IMBot Logic and Functionality., (Thu, Mar 11th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8407&rss>/link>
>description>>![CDATA[CERT.at has provided a good technical analysis of a Skype IMBot ...(more)... ]]>>/description>
>/item>
>item>
>title>
One a day keeps the hackers away. Read our discussion of the top 25 coding errors in the appsec streetfighter blog http://appsecstreetfighter.com ., (Thu, Mar 11th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8404&rss>/link>
>description>>![CDATA[------
Johannes B. Ullrich, Ph ...(more)... ]]>>/description>
>/item>
>item>
>title>
What's My Firewall Telling Me? (Part 4), (Wed, Mar 10th)>/title>
>link>http://isc.sans.org/diary.html?storyid=8395&rss>/link>
>description>>![CDATA[Theres been a lot of discussion about the recent stories on parsing firewall logs - Mar ...(more)... ]]>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Nessus.org Plugins>/title>
>link>http://www.nessus.org/scripts.php>/link>
>description>All the newest security checks for the Nessus scanner>/description>
>image about="http://www.nessus.org/images/RssLogo.jpg">
>title>Nessus Plugins>/title>
>url>http://www.nessus.org/images/RssLogo.jpg>/url>
>link>http://www.nessus.org/>/link>
>/image>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45052">
>title>WMI Firewall Enumeration>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45052>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45051">
>title>WMI Anti-virus Enumeration>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45051>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45050">
>title>WMI Anti-spyware Enumeration>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45050>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45049">
>title>Google Picasa < 3.6 Build 105.41>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45049>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45048">
>title>Google Picasa Detection (Windows)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45048>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45047">
>title>Samba 'CAP_DAC_OVERRIDE' File Permission Security Bypass>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45047>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45046">
>title>Samba 'CAP_DAC_OVERRIDE' File Permission Security Bypass (version check)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45046>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45045">
>title>Safari < 4.0.5 Multiple Vulnerabilities>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45045>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45044">
>title>Mac OS X : Safari < 4.0.5>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45044>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45043">
>title>CSS Web Installer CSSWEBLib.Installer ActiveX InstallProduct1 Method Overflow>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45043>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45042">
>title>USN911-1 : moin vulnerabilities>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45042>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45041">
>title>MDVSA-2010:061: ncpfs>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45041>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45040">
>title>FreeBSD : egroupware -- two vulnerabilities (5231)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45040>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45039">
>title>OpenSSL < 0.9.8m Multiple Vulnerabilities>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45039>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45038">
>title>USN909-1 : dpkg vulnerability>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45038>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45037">
>title>USN908-1 : apache2 vulnerabilities>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45037>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45036">
>title>SuSE Security Update: evolution-data-server (2010-02-08)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45036>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45035">
>title>SuSE 11.2 Security Update: rubygem-actionpack-2_3 (2010-02-05)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45035>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45034">
>title>SuSE 11.2 Security Update: MozillaThunderbird (2010-03-05)>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45034>/link>
>/item>
>item about="http://www.nessus.org/plugins/index.php?view=single&id=45033">
>title>Solaris 9 (x86) : 117144-02>/title>
>description>>![CDATA[Synopsis :>br />
]]>>/description>
>link>http://www.nessus.org/plugins/index.php?view=single&id=45033>/link>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>SecuriTeam>/title>
>link>http://www.securiteam.com>/link>
>description>Welcome to the SecuriTeam RSS Feed - sponsored by Beyond Security. Know Your Vulnerabilities! Visit BeyondSecurity.com for your web site, network and code security audit and scanning needs.>/description>
>image>
>title>SecuriTeam.com>/title>
>url>http://www.securiteam.com/beyond-logo-small.png>/url>
>link>http://www.securiteam.com>/link>
>/image>
>item>
>title>LedgerSMB Multiple Vulnerabilities>/title>
>link>http://www.securiteam.com/securitynews/5EP3H1P0AU.html>/link>
>description>>![CDATA[It has been brought to our attention that a number of security vulnerabilities have been noted in SQL-Ledger. Several of these affect earlier versions of LedgerSMB, and three hotfixes have been released for problems that continue to affect the LedgerSMB codebase.]]>>/description>
>/item>
>item>
>title>Kaspersky Lab Multiple Products Local Privilege Escalation Vulnerability>/title>
>link>http://www.securiteam.com/securitynews/5RP2W150AC.html>/link>
>description>>![CDATA[Insecure permissions have been detected in the multiple Kaspersky Lab antivirus products.]]>>/description>
>/item>
>item>
>title>Piwik Cookie Unserialize Vulnerability>/title>
>link>http://www.securiteam.com/securitynews/6H00B0AQAS.html>/link>
>description>>![CDATA[Piwik unserializes() user input which allows an attacker to send a carefully crafted cookie that when unserialized utilizes Piwik's classes to upload arbitrary files or execute arbitrary PHP code.]]>>/description>
>/item>
>item>
>title>Invision Power Board SQL PHP File Inclusion and SQL Injection>/title>
>link>http://www.securiteam.com/securitynews/6T0022AQAC.html>/link>
>description>>![CDATA[Invision Power Board has a PHP file inclusion vulnerability that is trivial to exploit with a web browser and a known location of a php file residing on the target system. Authorisation is not required. The SQL injection vulnerability is somewhat tricky to exploit as there are quite a few restrictions that make creating a successful sql attack vector difficult. Nevertheless a crafty attacker might issue a series of requests that might allow him to gain some information about the target system or even read files from the disk depending on permissions granted to the db account that is used by the forum.]]>>/description>
>/item>
>item>
>title>U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) Vulnerability>/title>
>link>http://www.securiteam.com/securitynews/6E00420QAS.html>/link>
>description>>![CDATA[The U.S. Defense Information Systems Agency (DISA) publishes Security Readiness Review scripts (SRRs) to ensure systems and software meet security baselines required by the Department of Defense. Unprivileged local users can obtain root access on Unix systems where the DISA SRR scripts are run.]]>>/description>
>/item>
>item>
>title>Netifera - Modular Open Source Platform for Security Tools>/title>
>link>http://www.securiteam.com/tools/5QP0B0KQUE.html>/link>
>description>>![CDATA[]]>>/description>
>/item>
>item>
>title>WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems>/title>
>link>http://www.securiteam.com/tools/5RP012KQKA.html>/link>
>description>>![CDATA[]]>>/description>
>/item>
>item>
>title>Webshag - Web Server Audit Tool>/title>
>link>http://www.securiteam.com/tools/5QP0L0UQAI.html>/link>
>description>>![CDATA[]]>>/description>
>/item>
>item>
>title>Browser Fuzzer>/title>
>link>http://www.securiteam.com/tools/5OP0L00Q0Y.html>/link>
>description>>![CDATA[]]>>/description>
>/item>
>item>
>title>FSpy - Linux Filesystem Activity Monitoring>/title>
>link>http://www.securiteam.com/tools/6D00V0ANFY.html>/link>
>description>>![CDATA[]]>>/description>
>/item>
>item>
>title>Publique! CMS and SQL Injection Vulnerabilities>/title>
>link>http://www.securiteam.com/unixfocus/5FP3I1P0AO.html>/link>
>description>>![CDATA[A remotely exploitable vulnerability was found in the framework core component. Exploitation of this bug does not require authentication and will lead to remotely exposed potentially sensitive information from the Publique! database. Particularly, an attacker can extract usernames and passwords needed to authenticate to the administrative interface and gain full control of the web site and (depending on certain conditions) the server itself.]]>>/description>
>/item>
>item>
>title>Files2Links F2L-3000 SQL Injection Vulnerability>/title>
>link>http://www.securiteam.com/unixfocus/5DP3G1P0AA.html>/link>
>description>>![CDATA[The login page of the F2L-3000 version 4.0.0 is vulnerable to SQL Injection. Exploitation of the vulnerability may allow attackers to bypass authentication and access sensitive information stored on the device.]]>>/description>
>/item>
>item>
>title>HP-UX Running Apache Data Injection and DoS Vulnerability>/title>
>link>http://www.securiteam.com/unixfocus/5QP2V150AO.html>/link>
>description>>![CDATA[A potential security vulnerability has been identified with HP-UX running Apache v2.0.59.12 and earlier. The vulnerability could be exploited remotely to inject unauthorized data or to create a Denial of Service (DoS).]]>>/description>
>/item>
>item>
>title>MIT krb5 KDC denial of service in cross-realm referral processing>/title>
>link>http://www.securiteam.com/unixfocus/5MP2W0K0AK.html>/link>
>description>>![CDATA[An unauthenticated remote attacker could cause the KDC to crash due to a null pointer dereference. Legitimate requests can also cause this crash to occur.]]>>/description>
>/item>
>item>
>title>AproxEngine Multiple Vulnerabilities>/title>
>link>http://www.securiteam.com/unixfocus/5BP2V0A0AG.html>/link>
>description>>![CDATA[Vulnerabilities have been discovered in AproxEngine, which can be exploited by malicious users to manipulate certain data, conduct spoofing, SQL injection, and script insertion attacks and by malicious people to conduct SQL injection and script insertion attacks.]]>>/description>
>/item>
>item>
>title>Microsoft Indeo Codec Memory Corruption Vulnerability>/title>
>link>http://www.securiteam.com/windowsntfocus/6S00D00QAW.html>/link>
>description>>![CDATA[The Indeo codec on systems running Microsoft Windows 2000, Windows XP, and Windows Server 2003 could allow code to run on users systems when opening specially crafted content.]]>>/description>
>/item>
>item>
>title>HP DDMI Execution of Arbitrary Code>/title>
>link>http://www.securiteam.com/windowsntfocus/6T00C2AQ0Y.html>/link>
>description>>![CDATA[A potential security vulnerability has been identified with HP Discovery & Dependency Mapping Inventory (DDMI) running on Windows. The vulnerability could be exploited remotely by an authorized user to execute arbitrary code.]]>>/description>
>/item>
>item>
>title>Microsoft Windows License Logging Service Heap Corruption Vulnerability>/title>
>link>http://www.securiteam.com/windowsntfocus/6M00D0UQ0W.html>/link>
>description>>![CDATA[This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. Authentication is not required on certain configurations to exploit this vulnerability.]]>>/description>
>/item>
>item>
>title>Microsoft Office Excel Code Execution Vulnerabilities>/title>
>link>http://www.securiteam.com/windowsntfocus/6K00B0UQ0K.html>/link>
>description>>![CDATA[Attackers using specially crafted XLS files can execute arbitrary code via memory corruptions, invalid index, and invalid pointer errors.]]>>/description>
>/item>
>item>
>title>Microsoft SharePoint 2007 ASP.NET Source Code Disclosure>/title>
>link>http://www.securiteam.com/windowsntfocus/6W0040UQ0W.html>/link>
>description>>![CDATA[It was found that the download facility of Microsoft SharePoint Team Services can be abused to reveal the source code of ASP.NET files.]]>>/description>
>/item>
>item>
>title>Trango Broadband Wireless Rogue SU Authentication Bug>/title>
>link>http://www.securiteam.com/exploits/5LP2V0K0AG.html>/link>
>description>>![CDATA[Currently there is a flaw in the authentication mechanism of these radios which, if an attacker knows some details, can allow interception of ethernet packets broadcast from the Access Point to the Subscriber Unit and potentially allows injection into the communication from the Subscriber Unit to the Access Point.]]>>/description>
>/item>
>item>
>title>Exposing HMS HICP Protocol and Intellicom NetBiterConfig.exe Remote Buffer Overflow>/title>
>link>http://www.securiteam.com/exploits/5CP2W0A0AU.html>/link>
>description>>![CDATA[SCADA weaknesses created by HICP Protocol and NetBiter WebSCADA.]]>>/description>
>/item>
>item>
>title>Family Connections Multiple Remote Vulnerabilities>/title>
>link>http://www.securiteam.com/exploits/6U00D20QAQ.html>/link>
>description>>![CDATA[Many fields are not properly sanitised and some checks can be bypassed.]]>>/description>
>/item>
>item>
>title>VideoCache vccleaner Root Vulnerability>/title>
>link>http://www.securiteam.com/exploits/6T00C20QAY.html>/link>
>description>>![CDATA[VideoCache is a Squid URL rewriter plugin written in Python for bandwidth optimization while browsing video sharing websites. Version 1.9.2 allows a user with the privileges of the Squid proxy server to append semi-arbitrary data to arbitrary files with root privileges, upon the administrator's execution of the 'vccleaner' utility.]]>>/description>
>/item>
>item>
>title>QuickHeal Antivirus 2010 Local Privilege Escalation>/title>
>link>http://www.securiteam.com/exploits/6S00B20QAQ.html>/link>
>description>>![CDATA[All files under the install folder have Full control for BUILTIN\users and can be replace with malicious files.]]>>/description>
>/item>
>item>
>title>Why Silent Updates Boost Security>/title>
>link>http://www.securiteam.com/securityreviews/5NP0E00R5A.html>/link>
>description>>![CDATA[Thomas Duebendorfer Google Switzerland GmbH and Stefan Frei Communication Systems Group, ETH Zurich, Switzerland looked into the performance of Web browser update mechanisms. The analysis of anonymized Google Web server logs allowed us to compare and rank the update strategies deployed by Google Chrome, Mozilla Firefox, Apple Safari, and Opera.]]>>/description>
>/item>
>item>
>title>PDF Silent HTTP Form Repurposing Attacks>/title>
>link>http://www.securiteam.com/securityreviews/5MP0D00R5G.html>/link>
>description>>![CDATA[This paper sheds light on a modified approach to triggering web attacks through JavaScript protocol handler in the context of opening a PDF in a browser.]]>>/description>
>/item>
>item>
>title>Frame Pointer Overwrite Demonstration (Linux)>/title>
>link>http://www.securiteam.com/securityreviews/6M0010UNFQ.html>/link>
>description>>![CDATA[This paper assumes you have read the proper background information and/or technical details about the above subject. If not, please do so, because this read does not include key concepts but instead technical exploitation examples. That being said, enjoy. Knowledge is power.]]>>/description>
>/item>
>item>
>title>Format String Exploitation Demonstration (Linux)>/title>
>link>http://www.securiteam.com/securityreviews/6E0030KNFO.html>/link>
>description>>![CDATA[This paper assumes you have read the proper background information and/or technical details about the above subject. If not, please do so, because this read does not include key concepts but instead technical exploitation examples. That being said, enjoy. Knowledge is power.]]>>/description>
>/item>
>item>
>title>Hacking SOHO Routers>/title>
>link>http://www.securiteam.com/securityreviews/6D00C0KN5S.html>/link>
>description>>![CDATA[The purpose of this paper is to outline the security measures being taken by vendors to prevent such attacks in their home routing products, what those security measures accomplish, and where they fall short. We will use existing network tools to examine common vulnerabilities in a range of popular devices and demonstrate weaknesses in the security of those devices; additionally, we will examine common trends in security measures that have been duplicated across vendors, and examine how those trends help and hinder the security of their devices. In particular, we will examine the following home routers, which are some of the latest offerings from their respective vendors at the time of this writing: * Linksys WRT160N]]>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Security Basics>/title>
>link>http://seclists.org/#basics>/link>
>description>A high-volume list which permits people to ask "stupid questions" without being derided as "n00bs". I recommend this list to network security newbies, but be sure to read Bugtraq and other lists as well.>/description>
>item>
>title>Re: Reporting SSH abuse>/title>
>link>http://seclists.org/basics/2010/Mar/49>/link>
>description><p>Posted by James Bensley on Mar 10</p>I find in these situations, who is it you should actually tell? In the<br>
a damn?<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/48>/link>
>description><p>Posted by Dave LaDuke on Mar 10</p>Thanks for telling him, I had planned to have some fun later.<br>
Securing Apache Web Server with thawte...<br>>/description>
>/item>
>item>
>title>RE: Reporting SSH abuse>/title>
>link>http://seclists.org/basics/2010/Mar/47>/link>
>description><p>Posted by Dan Lynch on Mar 10</p>I could swear I once read an "authoritative" source doc on this subject, maybe an RFC (Site Security Handbook?), or <br>
<a rel="nofollow" href="http://blog.anta.net/2007/04/18/composing-abuse-reports/">http://blog.anta.net/2007/04/18/composing-abuse-reports/</a>...<br>>/description>
>/item>
>item>
>title>Re: Reporting SSH abuse>/title>
>link>http://seclists.org/basics/2010/Mar/46>/link>
>description><p>Posted by Liquid on Mar 10</p>Dan Pilcheck wrote:<br>
the IP and what its hammering against. (ssh in this case). Hope this...<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/45>/link>
>description><p>Posted by doug schmidt on Mar 10</p><a rel="nofollow" href="http://www.cymru.com/Documents/secure-ios-template.html">http://www.cymru.com/Documents/secure-ios-template.html</a><br>
install and use a...<br>>/description>
>/item>
>item>
>title>Reporting SSH abuse>/title>
>link>http://seclists.org/basics/2010/Mar/44>/link>
>description><p>Posted by Dan Pilcheck on Mar 09</p>Hello list,<br>
up with. I suppose there's not much else to...<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/43>/link>
>description><p>Posted by Mike Hale on Mar 09</p>Wouldn't you want to encrypt your passwords in 5? Level 7 can be<br>
cracked in seconds online.<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/42>/link>
>description><p>Posted by Curt Shaffer on Mar 09</p>Step one is to now change all of your passwords unless you put bogus hashes in there when you posted this. Otherwise, <br>
it benefits your...<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/41>/link>
>description><p>Posted by Alex on Mar 09</p>Hi you<br>
the...<br>>/description>
>/item>
>item>
>title>RE: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/40>/link>
>description><p>Posted by Jatmoko, Arif (ID - Jakarta) on Mar 09</p>If this is a Cisco Catalyst, that should be support SSH. Just enable SSH by entering the command :<br>
You should, at least learn some basic command or consults about configuring Catalyst IOS to someone has...<br>>/description>
>/item>
>item>
>title>Re: securing a segment of a network>/title>
>link>http://seclists.org/basics/2010/Mar/39>/link>
>description><p>Posted by krymson on Mar 09</p>Would that be a primary concern about the current state of audits and checklists? Basically, there is a *lot* of effort <br>
applicatiions, shares and/or privileges. Splitting the network does not address this in any way, at best it...<br>>/description>
>/item>
>item>
>title>FW: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/38>/link>
>description><p>Posted by Craig S. Wright on Mar 09</p>ARGGG!<br>
Nipper, (Network Infrastructure Parser)...<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/37>/link>
>description><p>Posted by John Morrison on Mar 09</p>Joe,<br>
Download and installed the latest...<br>>/description>
>/item>
>item>
>title>Re: Help hardening router>/title>
>link>http://seclists.org/basics/2010/Mar/36>/link>
>description><p>Posted by David Goldsmith on Mar 09</p>Did you change the various encrypted passwords before posting the<br>
be sure to fully...<br>>/description>
>/item>
>item>
>title>Re: securing a segment of a network>/title>
>link>http://seclists.org/basics/2010/Mar/35>/link>
>description><p>Posted by Adam Pal on Mar 08</p>Hi Roger,<br>
"Keep the same, maintain the...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>link>http://seclists.org/#jobs>/link>
>description>A popular list for advertising or finding jobs in the security field. Employers post openings and job seekers post resumes (run by SecurityFocus). For privacy reasons, only the current year is archived.>/description>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>link>http://seclists.org/#vuln-dev>/link>
>description>A moderated list for discussing possible security issues and devising exploits for them.>/description>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>SecurityFocus Vulnerabilities>/title>
>link>http://www.securityfocus.com>/link>
>description>
>/description>
>image>
>title>SecurityFocus>/title>
>url>http://www.securityfocus.com/rss/SFLogo_v1.gif>/url>
>link>http://www.securityfocus.com>/link>
>/image>
>item>
>title>Vuln: Microsoft Internet Explorer 'iepeers.dll' Remote Code Execution Vulnerability>/title>
>link>http://www.securityfocus.com/bid/38615>/link>
>description>>![CDATA[ Microsoft Internet Explorer 'iepeers.dll' Remote Code Execution Vulnerability ]]>>/description>
>/item>
>item>
>title>Vuln: MoinMoin Multiple Unspecified Security Vulnerabilities>/title>
>link>http://www.securityfocus.com/bid/38023>/link>
>description>>![CDATA[ MoinMoin Multiple Unspecified Security Vulnerabilities ]]>>/description>
>/item>
>item>
>title>Vuln: Linux Kernel Subsystem Connector Missing Capability Check Security Bypass Vulnerabilities>/title>
>link>http://www.securityfocus.com/bid/36834>/link>
>description>>![CDATA[ Linux Kernel Subsystem Connector Missing Capability Check Security Bypass Vulnerabilities ]]>>/description>
>/item>
>item>
>title>Vuln: Linux Kernel PI Futex Invalid Pointer Dereference Local Denial of Service Vulnerability>/title>
>link>http://www.securityfocus.com/bid/38165>/link>
>description>>![CDATA[ Linux Kernel PI Futex Invalid Pointer Dereference Local Denial of Service Vulnerability ]]>>/description>
>/item>
>item>
>title>Bugtraq: VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability>/title>
>link>http://www.securityfocus.com/archive/1/510053>/link>
>description>>![CDATA[ VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability ]]>>/description>
>/item>
>item>
>title>Bugtraq: [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface!>/title>
>link>http://www.securityfocus.com/archive/1/510052>/link>
>description>>![CDATA[ [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface! ]]>>/description>
>/item>
>item>
>title>Bugtraq: [SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities>/title>
>link>http://www.securityfocus.com/archive/1/510051>/link>
>description>>![CDATA[ [SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities ]]>>/description>
>/item>
>item>
>title>Bugtraq: [USN-911-1] MoinMoin vulnerabilities>/title>
>link>http://www.securityfocus.com/archive/1/510049>/link>
>description>>![CDATA[ [USN-911-1] MoinMoin vulnerabilities ]]>>/description>
>/item>
>item>
>title>More rss feeds from SecurityFocus>/title>
>link>http://www.securityfocus.com/rss/index.shtml>/link>
>description>News, Infocus, Columns, Vulnerabilities, Bugtraq ...>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>VulnWatch>/title>
>link>http://seclists.org/#vulnwatch>/link>
>description>A non-discussion, non-patch, all-vulnerability annoucement list supported and run by a community of volunteer moderators distributed around the world.>/description>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>title>Web App Security>/title>
>link>http://seclists.org/#webappsec>/link>
>description>Provides insights on the unique challenges which make web applications notoriously hard to secure, as well as attack methods including SQL injection, cross-site scripting (XSS), cross-site request forgery, and more.>/description>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/42>/link>
>description><p>Posted by Yu Qu on Mar 08</p>Hi, Peine and others:<br>
Ministry of Education Key Lab for Intelligent...<br>>/description>
>/item>
>item>
>title>RE: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/41>/link>
>description><p>Posted by Calderon, Juan Carlos (GE, Corporate, consultant) on Mar 08</p>Yeah, Steve's is just a nice approach, my experience is the same, you<br>
To:...<br>>/description>
>/item>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/40>/link>
>description><p>Posted by Morgan Reed on Mar 08</p>Sounds like the right approach, though I'm not aware of any Java based CMS.<br>
<a rel="nofollow" href="http://www.cenzic.com/2009HClaunch_Securityfocus">http://www.cenzic.com/2009HClaunch_Securityfocus</a>...<br>>/description>
>/item>
>item>
>title>Re: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/39>/link>
>description><p>Posted by Steve Pinkham on Mar 08</p>Rogan Dawes wrote:<br>
>...<br>>/description>
>/item>
>item>
>title>Security BSides Austin - sponsors needed!>/title>
>link>http://seclists.org/webappsec/2010/q1/38>/link>
>description><p>Posted by Benjamin Tomhave on Mar 08</p>Hi folks,<br>
become officially...<br>>/description>
>/item>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/37>/link>
>description><p>Posted by Marc-André Laverdière on Mar 08</p>You can have a try at Securibench. Some of the apps in there don't run without <br>
It's Finally Here - The Cenzic Website HealthCheck....<br>>/description>
>/item>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/36>/link>
>description><p>Posted by Federico Maggi on Mar 08</p> OWASP's WebGoat Project has designed a non-trivial web application in Java, exactly for this purpose.<br>
--------------------------------------<br>>/description>
>/item>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/35>/link>
>description><p>Posted by Kvetch on Mar 08</p>Check out Daffodil CRM - <a rel="nofollow" href="http://sourceforge.net/projects/daffodilcrm/">http://sourceforge.net/projects/daffodilcrm/</a><br>
--------------------------------------<br>>/description>
>/item>
>item>
>title>Re: Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/34>/link>
>description><p>Posted by Wagner Elias on Mar 08</p>OWASP Broken Web App Project contains WebGoat an app vulnerable in Java.<br>
2010/3/8 Holger Peine <Holger.Peine () fh-hannover de>:<br>>/description>
>/item>
>item>
>title>Need a real Java web application with vulnerabilities>/title>
>link>http://seclists.org/webappsec/2010/q1/33>/link>
>description><p>Posted by Holger Peine on Mar 08</p>Hello,<br>
-...<br>>/description>
>/item>
>item>
>title>SamuraiWTF 0.8 released>/title>
>link>http://seclists.org/webappsec/2010/q1/32>/link>
>description><p>Posted by Kevin Johnson on Mar 05</p>Hi all,<br>
cell: 904.403.8024<br>>/description>
>/item>
>item>
>title>removing version identifying attribution data>/title>
>link>http://seclists.org/webappsec/2010/q1/31>/link>
>description><p>Posted by Robin Wood on Mar 04</p>With a lot of open source web apps there is usually some kind of file<br>
rather not expose my clients to data leakage which I...<br>>/description>
>/item>
>item>
>title>Vulnerabilities Animated Clips>/title>
>link>http://seclists.org/webappsec/2010/q1/30>/link>
>description><p>Posted by Maty Siman on Mar 03</p>One of the biggest challenges of the security community is to build true<br>
help developers understand a...<br>>/description>
>/item>
>item>
>title>Advanced PHP Hacking>/title>
>link>http://seclists.org/webappsec/2010/q1/29>/link>
>description><p>Posted by Laurent OUDOT at TEHTRI-Security on Mar 03</p>Hi,<br>
deeper down to your...<br>>/description>
>/item>
>item>
>title>Re: Cookie Secure Attribute - Clarification>/title>
>link>http://seclists.org/webappsec/2010/q1/28>/link>
>description><p>Posted by 51l3n73y3s on Mar 01</p>I would make the attribute as Secure and then also set the requireSSL of the <br>
This list is...<br>>/description>
>/item>
>/channel>
>/rss>
>rss version="2.0">
>channel>
>/channel>
>/rss>