heise SSL Guardian: protection against unsafe SSL certificates
Https connections are often used to transfer important data, such as passwords, PINs, or credit card numbers. The browser ensures that the sender can be identified with a valid certificate and that the transferred data are encrypted. An error in the Debian Linux distribution has generated numerous certificates that are child’s play to crack. Many servers still use these weak certificates, even though it is impossible to establish a secure connection using them. The heise SSL Guardian checks the SSL certificates and warns you when it detects a weak one.
All Windows applications that use Windows CryptoAPI will be protected by SSL Guardian. This includes Internet Explorer and Outlook Express, as well as Windows Mail. However, SSL Guardian does not protect Firefox and Opera as these use their own crypto libraries and not CryptoAPI. In order to protect Firefox, the Firefox SSL Blacklist extension is needed, as this has a similar function.
The Guardian support Windows 2000, XP and Vista Operating Systems and is free.
There are two versions with different sized lists. The first is for users that have adequate bandwidth and time. The second is a third as large, but still detects more than 98% of the weak certificates.
More info and download: heise Security
F-Secure Client Security Version 7.12 Released
This service release fixes issues from the previous version of the product. For details, please see the Release Notes.
What is new in 7.1x release:
-Windows Vista support
-F-Secure Client Security 7.1x supports Windows Vista 32-bit versions.
-Improved real-time scanning performance on removable drives
-Enhanced logic of scanning to enable faster scanning for large files that reside on removable drives.
-Updated scanning report to elaborate what happens
-Scanning report has been updated to explain in more detail why certain files have been skipped.
-Faster spyware removal
-Spyware removal is significantly faster with this release. While previously the spyware scan was reinitiated with removal, now the scanning maintains information about its state.
-Reduced memory consumption
-The product has now been optimized to use less memory. There is a significant decrease in the amount of memory consumed. This shows as improved overall performance.
-Internet Shield IPv6 support
-IPv6 support in Internet Shield is now two-fold: the minimal Internet Protocol version 6 support enables user to block all IPv6 traffic if needed. This has been extended with ability to create firewall rules and handle IPv6 alerts in application control for IPv6 addresses. This extension is limited to Vista only, while the minimal support is available on all supported platforms.
-Updated identification and removal of conflicting programs (sidegrade)
-Sidegrade has been updated to include more common conflicting products, and cleaned from the unnecessary removals that would not cause conflict with our software.
-New manual database installation tool
-A new tool for updating protection databases manually, called fsdbupdate, installs all the latest database updates for customers with a valid subscription.
-Improved System Control with DeepGuard for latest malware types
-System Control with DeepGuard has been updated to protect from the very latest types of malware attacks.
-Remote Application List for System Control
-Administrator can configure System Control to deny or allow applications remotely with Policy Manager.
-Includes all previous hotfixes
This release is for the following operating systems:
-Windows Vista 32-bit, SP1
-Windows XP Home Edition with SP0 /SP1 / SP2 /SP3
-Windows XP Professional Edition with SP0 /SP1 / SP2 /SP3
-Windows XP Media Center Edition with SP1
-Windows 2000 Workstation with SP4 Rollup 1 or higher
Note: when F-Secure Client Security 7.1x is taken into use, F-Secure Policy Manager needs to be version 7.1x or later.
Product home page: F-Secure
Highly critical vulnerabilities reported in vBulletin
Some highly critical vulnerabilities have been reported in vBulletin, which can be exploited by malicious people to conduct script insertion attacks.
Input passed via “PHP_SELF” or via the “do” parameter when requesting a missing page is not properly sanitised before being logged. This can be exploited to insert arbitrary HTML and script code, which is executed in an administrator’s browser session in context of an affected site when the malicious logs are being viewed.
Reportedly, the vulnerabilities can be exploited to inject and execute arbitrary PHP code on an affected system.
It affect version 3.7.2 and 3.6.10 PL2. Prior versions may also be affected.
Solution: update to version 3.7.2 PL1 or 3.6.10 PL3.
Sources: Secunia and vBulletin.
Introduction
.
Welcome to Smokey’s Security Weblog!
Let’s introduce myself: my (nick)name is Smokey aka Smokey Bear.
Like my board Smokey’s Security Forums, this blog is mainly devoted to Security and all related issues. However, other issues like e.g. major occurances on my forum and social topics will be blogged too.
My board offer free security and malware related Support, Help, Advice and Education forums, however is not limited to such issues. Smokey’s have also forums with comprehensive Microsoft Windows related issues like Microsoft and Windows OS Based Products News, MS Download Center, MSDN Developer Information, software reviews, browser and tools forums, Webware, Social Networks info, Hardware- and Gadgets forums and last but not least a dedicated Windows Drivers, Linux Drivers, Firmware and BIOS Survey & Updates section containing (recently) released Drivers, Firmware and BIOSses, Windows 7 releases included. Note: most info on Smokey’s is real-time and therefore always up-to-date.
As extra service we have a OTL (formerly OTListIt2) Log Analyzing and Malware Removal/Cleaning Help Forum, full qualified OTL Log Analysers/Malware Hunters will be pleased to help you for free to clean your malware infected PC.
We are hosting and maintaining the Official Jetico Inc. Support Forums, including the following products:
- Jetico Personal Firewall V1
- Jetico Personal Firewall V2
- Jetico BestCrypt for Windows
- Jetico BestCrypt for Linux
- Jetico BestCrypt Volume Encryption
- Jetico BCArchive
- Jetico BCWipe for Windows
- Jetico BCWipe for UNIX
Disclaimer: information in this blog can be based on (not confirmed) statements of (anonymous) sources, Smokey’s Security Weblog don’t take any responsabilty for the credibility of these sources and their statements.
The posts/articles in this blog can be supplemented with so called “Possibly related posts” links. Because these links are automatically generated by WordPress.com, Smokey’s Security Weblog have no influence on the links itself and/or content of them. Therefore this Weblog don’t take any responsability for these links and all related issues.
About Copyright and this Blog: it is allowed to reproduce (parts of) posts in this blog if this reproduction is provided with a direct link to the original blog post. It is NOT allowed to copy, use and/or reproduce any image or blog banner.
Blog comments policy: to restrain indecent and off-topic comments and spam, comments are reviewed before publishing. Therefore, delay in comment publishing is unavoidable. Obligatory language of comments is English.
.
Smokey’s Security Forums is Site Member ASAP
My main task
Smokey’s Weblog RSS Newsfeed
Smokey’s Weblog Google FeedBurner
Technorati
Recommended: Free network protection with OpenDNS
Recommended: Dr.Web CureIt! Free Malware Scan
Recommended: Kaspersky Free Online Antivirus Scan
Recommended: Free Online Safe Password Generator
Advertisement: Buy the #1 ad blocker via Smokey’s
Advertisement: Meg&Millie’s hand-made, personalised gifts
Your IP and location
Blog Visitor Statistics
