http://www.ossec.net/ with central management on locked down machines would be more helpful in detecting anomalous behavior and security issues on the systems. Its also free so no wasted tax payer money on unneeded software.
Cacti is great for graphing performance, capacity planning and spotting anomalies while Nagios is tops for monitoring / alerting.
I have worked with many different monitoring tools and suites both commercial and open source. A well configured Nagios / Cacti solution is hard to beat for stability and usability.
"This marks the first time Amazon Web Services' cloud infrastructure has been used for this type of illegal activity"
I posted to my blog back in June that Amazon cloud nodes were compromised and performing brute force SSH scans against some of my hosts.
This story and my post merely highlight the obvious fact that most cloud services are just scalable hosting. Remember your instance / slice / vm can be compromised like any other web host.
Across the board I am seeing significant speed improvements over 4.85.
Congratulations to the developers this looks like another quality release. I am looking forward to testing some of the new features to determine what additional capabilities can be added to our online scanning.
Slashdot Mirror
Bah! That's nothing come back with a story after someone spends 10 years in the world of DayZ. :)
Feeling secure firing up a clean desktop?
Might want to check the back of the PC or even better bring your own keyboard.
The solution is better than nothing but I still wouldn't trust Internet cafe's --> http://www.keelog.com/
This page has a visualized correlation of ssh blacklisted IP's against Cities. It is updated daily. Source is the sshbl.org blacklist.
Current daily winners are Moscow and San Francisco with 17 each.
http://hackertarget.com/ssh-blacklist/
http://www.ossec.net/ with central management on locked down machines would be more helpful in detecting anomalous behavior and security issues on the systems. Its also free so no wasted tax payer money on unneeded software.
LastPass acquired Xmarks (browser plug-in for bookmark syncing) last year no mention of that database of more than 4.5 million users being breached.
- http://blog.xmarks.com/?p=2033
Cacti is great for graphing performance, capacity planning and spotting anomalies while Nagios is tops for monitoring / alerting. I have worked with many different monitoring tools and suites both commercial and open source. A well configured Nagios / Cacti solution is hard to beat for stability and usability.
Have a look at OSSEC with active response.
"This marks the first time Amazon Web Services' cloud infrastructure has been used for this type of illegal activity"
I posted to my blog back in June that Amazon cloud nodes were compromised and performing brute force SSH scans against some of my hosts.
This story and my post merely highlight the obvious fact that most cloud services are just scalable hosting. Remember your instance / slice / vm can be compromised like any other web host.
Amazon Cloud Service Brute Force Attacks
Since the tool is not run locally you can only assume that all the submitted url's are going into someone's database.
That someone is going to collect a lot of hacked accounts very quickly.
Hackers vs Phishers vs Hosted Hacked account collection Service?
I have just added the latest version to HackerTarget.com.
Across the board I am seeing significant speed improvements over 4.85.
Congratulations to the developers this looks like another quality release. I am looking forward to testing some of the new features to determine what additional capabilities can be added to our online scanning.
* Full disclosure - I run HackerTarget.com *