Debian-news is about one simple thing - news about Debian GNU/Linux and the top free distributions based on Debian GNU/Linux.


Last H.O.P.E and Tackling the Debian OpenSSL Issue

The majority of tools (asides from the official Debian tools) are designed for discovering vulnerable servers that don’t belong to you! The Debian tool is great unless for one reason or another you don’t / can’t have Perl installed.

Read it here


Kevin Figueroa, Marco Figueroa and Anthony L. Williams reminded me that VLAN’s and other layer 2 stuff is still vulnerable to many attacks. Most are just Denial of Service stuff that would be detected almost instantly and very easily fixed (although not easily preventable) but the cross VLAN packet injection / snooping made me rethink some of my installations that packet injection / snooping would not be a critical issue but might not be desirable. Bare in mind though that in order to attack layer 2 someone needs to own a box on my layer 2 infrastructure which is much more of an issue!

No Response to “Last H.O.P.E and Tackling the Debian OpenSSL Issue” »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *


You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Debian-News is not related to the Debian Project.
All logos and trademarks on this site are property of their respective owners.