by hirantha
Tue, June 01 2010 09:43
VMWare released a security update pertaining to ESX/ESXi which addresses a number of security vulnerabilities (43 or so) in ESX/ESXi 4.0.
Complete update can be found here : http://lists.vmware.com/pipermail/security-announce/2010/000093.html
resource for hardening vShere : http://blogs.vmware.com/security/2010/04/vsphere-40-hardening-guide-released.html
by hirantha
Thu, May 20 2010 20:05
Electronic Frontier Foundation (EFF) has published a paper on browsers being tracked by it's unique fingerprint. It turns out our browsers are more unique than we would like to think they are so it is possible for websites to track users around using the unique fingerprint. While it may not be possible to know the exact user's identity, tracking from one web location to another is definitely a possibility. User agent string, system fonts, screen resolutions and much more of the computer attributes all contributes to the unique fingerprint of computer + browser combination. Disabling Javascript and active contents help with this a little bit but you need to decide whether privacy is worth losing the ability to view the active content.
To test how unique your computer + browser combination, goto https://panopticlick.eff.org/ and click on the "Test Me" button.
Full paper can be found at https://panopticlick.eff.org/browser-uniqueness.pdf
by hirantha
Fri, March 12 2010 13:21
This Microsoft advisory outlines a vulnerability in Internet Explorer 6 and 7, which could allow remote code execution. While there are some mitigations available for IE7 (the Enhanced Security Mode) in Server 2003 and Server 2008, the best advice is to upgrade to Internet Explorer 8, which is not vulnerable.
Microsoft Security Advisory (981374)
by hirantha
Thu, January 28 2010 05:37
these patches released today: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
This affects Cisco Unified MeetingPlace versions 5, 6, and 7.
by hirantha
Tue, November 24 2009 07:47
Microsoft has released Security Advisory 977981. It details vulnerabilities in Internet Explorer 6 and 7 on various operating systems. The advisory does not provide any patches or new versions at this point, but does provide several recommendations for mitigation.
