A colleague sent me a link to an interesting article that looks just like an integer overflow issue: http://www.palmbeachpost.com/politics/content/news/epaper/2004/11/05/a29a_BROWVOTE_1105.html Broward machines count backward By Eliot Kleinberg Palm Beach...

A nasty set of security bug fixes by Mandrake in xorg-x11 had the funniest text I've seen in a security bulletin. Ever! I have highlighted the funny part in red. http://www.linuxsecurity.com/advisories/mandrake_advisory-5081.html Problem Description:...

Wow, 9 years recommended for spamming! http://www.msnbc.msn.com/id/6401091/

Normally, most phishing attacks don't get past the spam filters, but this one did, not sure why... anyway here it is, complete with an appropriate level of bad grammar! Oh, and the IP address points to China! Dear Customer: Recently there have been a...

Weighing in at a hefty 3Mb and 109pp, the NSA has posted the "Apple Mac OS Security Configuration Guide." If you use Macs you should read this doc at http://www.nsa.gov/snac/os/applemac/osx_client_final_v.1.pdf This is goodness.

Following my previous post about the Apache 'fix', I was asked what code examples I had showing lousy instances of strncpy and strncat. <rant> Many developers think that because they are using a counted string copy function the code is safe from...

This just came in my inbox from Bugtraq, a buffer overrun processing Apache 1.3.x .htpasswd files. " local buffer overflow in htpasswd for apache 1.3.31 not fixed in .33? " at http://www.securityfocus.com/archive/1/379842/2004-10-26/2004-11-01/0 What...

My good friend, Jesper Johansson, just did something that's really hard to do - make the front page of www.microsoft.com , with his "Anatomy of a Hack" paper. Go take a look... In a few days this'll be replaced with something else, in which case, you...

David LeBlanc and I have written a good deal about Integer Overflow issues, including the following: WSC 2nd Ed: pp620-624. Reviewing Code for Integer Manipulation Vulnerabilities ( http://msdn.microsoft.com/library/en-us/dncode/html/secure04102003.asp...

Interesting stuff, no?

A big thanks to Niels Dekker for providing me with the feedback. Here's the diff only. Chapter 5, Page 145 There’s a small error in the ArrayIndexError code: printf("Usage is %s [index] [value]\n"); Should read: printf("Usage is %s [index] [value]\n"...

The annual Security issue of MSDN is out, and you should find a copy in your local book or magazine store. Or, if you like, you can read the issue online at http://msdn.microsoft.com/msdnmag . I wrote an article in this issue outlining a method to reduce...

Man, I got a ton of email from all over the place about my last blog entry, and it seemed to fall into four groups: Perhaps the security work you guys are doing is paying off?! No way can this be true, you work for Microsoft, so how can you be unbiased...

A few days ago I decided to look into how IIS6 has faired security-wise since its release well over a year ago. But I didn't want to use Microsoft figures; I wanted to use other figures. This led me to Secunia.com as they have a very nice Web site tracking...