Archive for the ‘LINKS’ Category.
March 19, 2001, 2:58 pm
OpenWall just published a security advisory entitled Passive Analysis of SSH (Secure Shell) Traffic. This advisory demonstrates several weaknesses in implementations of SSH (Secure Shell) protocols. When exploited, they let the attacker obtain sensitive information (basically password lengths) by passively monitoring encrypted SSH sessions. Fix information, patches to reduce the impact of traffic analysis, and a tool to demonstrate the attacks are provided.
[OpenWall]
March 19, 2001, 2:13 pm
White paper: Microsoft HailStorm. “Support will also be included for integration between Windows authentication and Passport authentication of users, so that a user logged onto Windows XP will also be logged onto Passport and therefore able to receive their HailStorm services.” [Scripting News]
March 19, 2001, 9:35 am
Earthlink tracks users via “super-cookie”? [MacNN]
See also: Gibson Research, Shields UP, Earthlink
Update 3/20/2001: False Alarm: EarthLink explained that this scary looking “serial number like” tag was actually a composite of information gained from various characteristics of the user’s computer and their Internet connection.
March 19, 2001, 8:05 am
Web Review: The Myth of 800×600. Developing fixed-size Web pages is a fundamentally flawed practice. Not only does it result in Web pages that remain at a constant size regardless of the user’s browser size, but it fails to take advantage of the medium’s flexibility. Nonetheless, Web site creators continue to develop fixed pages. [Tomalak’s Realm]
March 19, 2001, 7:58 am
Robert Scoble: “This is how Microsoft defined HailStorm to the developers on March 15…”
See also:
Directory of HailStorm sites
[Jake’s Brainpan]
March 19, 2001, 7:49 am
developerWorks: CVS for the developer or amateur “This free, dW-exclusive tutorial introduces you to CVS, the Concurrent Versions System, used by developers around the world to develop software in a flexible and collaborative manner. Intended for those new to CVS, this tutorial will get both general users and new developers up to speed quickly. Whether you’d like to use CVS to check out the latest sources of a particular software package, or whether you’d like to begin using CVS as a full-fledged developer, this tutorial is for you.” [Zope Newbie News]
