Because 2 much of a good thing is wonderful! Notice the flickey tail!
Terminal escape injection techniques
It’s interesting in that shell scripts (small one’s) seem just like friendly bits of code that you can run. That’s not always the case, it’s probably never a good idea to just download a script and run it (esp using curl or wget). I discovered this very interesting article the other day about terminal escape injection and it works on pretty much every platform – mac, windows linux and even within python!
When in dought use cat -v in fact cat -v may be my new default for viewing code!
https://www.infosecmatter.com/terminal-escape-injection/
Beta testers needed!
Hi I’m very proud to announce that my application (which I still haven’t found a name for!) is ready for beta release. It’s a very light command line app that uses log data for security hardening, so if you use Ubuntu, debian or linux (and or nginx or apache2) and are comfortable with the command line then please do get in touch. At this stage it’s a fairly simple app and in effect a security tool for those of us who can not afford thousands of dollars towards their own IDS.
This application will probably be most useful for smb running their own sites (small aws installs for example) for people who want extra security, and to stop a lot of the “noise” that hits the average web server.
If you want more information, have a look at the intro vid I made that is put up on youtube..
All I ask is that you supply the version of ubuntu / linux that you’re using and that after looking at the app take the time to fill in a short survey.
Look forward to hearing from you
Regards Steve Abrahall
PS if your interested email me at
steveabrahall AT gmail DOT comm
To find out what version of the os your usinglsb_release -a
Cisco people update and Patch NOW!
Just a quick shout out …. So one of the things that is some times talked about is the problem of the “non heterogeneous” or homogenous networking environment. The illusion that choosing the market dominant product (because everyone else buys it) is the right thing to do …. Anyhow it seems that Cisco is in a bit of bother due to its some what hated buggy protocol CDP. If your a cisco nerd and haven’t caught up on this it might be time to do a bit of serious patching!
Have a look at this wired article
Cisco Flaws Put Millions of Workplace Devices at Risk
And also the Reg have something about it
Tens of millions of Cisco devices vulnerable to CDPwn flaws: Network segmentation blown apart by security bugs
Stay safe on the Interwebs!