Information Security, privacy and ensuring that a company’s confidential data remains top secret and its protection are of pivotal importance in any business. The present day corporation employs multiple layers of security, deploying firewalls, IDS, IPS, HIPS etc. However, we all have chinks in our armor and corporations are no different. Leakages tend to occur at the seams of an organization. These days, we do not hear about cases of a lonely hacker toiling away to gain access to a company’s crown jewels whether it is a coca cola recipie or sensitive code or data, there are much more easier ways to gain access to a company’s data and assets. Read on for a detailed look at the information security hazards often found at a typical office workspace.

Well, looks like Microsoft has begun the automatic update of Internet Explorer to version 7 as a critical update. IE & update notification

The update file is a bit over 14 Megs, 14.8 MB to be exact.

Microsoft touts this as the next generation web browser with improvements such as enchanced security to protect us from malicious software and fradulent websites, a cleaner look, includes the much demanded tabbed browsing capability. Also, IE7 upgrade imports your existing IE settings such as current home page, search settings, favorites and compatible toolbars. 

A lot of us who use Linux at work/school or have always grown up using unix commands for years and more often than not, there might have been instances where a ls command comes more naturally than the dir command at the command prompt in Windows. For the most part, a lot of us work around this drawback using the excellent tool: Cygwin. Cygwin is available for windows users here.The Cygwin tools are ports of the popular GNU development tools for Microsoft Windows. They run thanks to the Cygwin library which provides the UNIX system calls and environment these programs expect.

With these tools installed, it is possible to write Win32 console or GUI applications that make use of the standard Microsoft Win32 API and/or the Cygwin API. As a result, it is possible to easily port many significant Unix programs without the need for extensive changes to the source code. This includes configuring and building most of the available GNU software . Even if the development tools are of little to no use to you, you may have interest in the many standard Unix utilities provided with the package. They can be used both from the bash shell (provided) or from the standard Windows command shell.

While Cygwin would be an obvious choice for many Unix/Linux power users, there is an excellent and a much simpler alternative to using Cygwin. In this article, we will show you how to run your Unix commands right in the windows command prompt.

This post comes from my annoyance on one of my machines running Windows XP SP2 as its OS. By default, XP annoits MS Word for editing html pages. It used to worse before I guess with Frontpage launching them. But in any case, here is a quick and easy way to change file type assoications. The examples given are with respect to changing html to open with Macromedia Dreamweaver as the editor by default.

Background Information

“File Type” associations are the links between your documents and the applications that create them. For instance, when you double-click a Microsoft Word Document on your desktop, Windows knows to start Word and instruct it to open the document because of the Microsoft Word Document file type. Likewise, when you click a website link in an email message, Windows knows which browser to open (e.g., Firefox, Internet Explorer) because of the HTTP Protocol file type.

Microsoft Internet Explorer allows users to open a file they are browsing in an HTML editor by using the File > Edit with (Default Application) option. The application used for this action corresponds to the HTML Editor which is set in the Programs tab of the Windows Internet Options. Macromedia Dreamweaver is not automatically added to this list upon installation. This article helps you to fix that problem

Google just launched a customized search service called Google Co-op to bring tailored search to Web sites and blogs. Co-op allows a user to use the Google search platform to create a search engine focused on any content they want with just a few specific websites included. Searches will return results only from the sites the user requested.

Users have a number of options to customize the search engine: choosing which pages they want to include in their index, how the content should be prioritized, whether others can contribute to the index, and what the search results page will look like.

This can be particularly useful for small websites and blogs who wish to monetize their search as the service can be integrated with Google Adsense. The Google Co-op search would be a better choice for bloggers than their default built-in search feature as they can create a search engine with just one site, namely the link to their own blog/website. It allows a kind of social search by allowing other people to add links to the search results and also allows sharing of revenue with those sites who embed your custom search engine into their site.

Virtual Networking Computing (VNC) is remote control software which allows you to view and interact with one computer using a simple program (viewer) on another computer (server) over a local area network or anywhere on the Internet. VNC is a cross-platform application that does not require the two computers to be the running the same operating system. For example you can use VNC to view your office Linux machine on your Windows PC at home. VNC is freely and publicly available and is distributed under the GNU General Public License (GPL). There are various distributions of VNC but the one we will be covering is RealVNC. VNC has two parts, a client and a server. The server is the program on the machine that shares its screen, and the client (or viewer) is the program that watches and interacts with the server. VNC software requires a TCP/IP connection between the server and the viewer. This is the standard networking protocol on LANs, WANs, broadband and dialup connections. Each computer has a unique IP address and may also have a name in the DNS. You will need to know the IP address or name of the server when you connect a viewer to it. If you are assigned a dynamic IP address, you might benefit from using a third party DNS management service.

Installing an SSH Server on Windows

Local port forwarding requires an SSH server running on the Windows machine. OpenSSH is provided as part of Cygwin which is an environment similar to Linux for Windows. Cygwin provides an install and update utility (setup.exe) to retrieve packages from the Internet. When you install Cygwin, select the OpenSSH package (available in the Net category). Once installed, complete the Cygwin configuration as shown below…

A root kit is a collection of programs that intruders often install after they have compromised the root account of a system.
These programs will help the intruders clean up their tracks, as well as provide access back into the system.
Root kits will sometimes leave processes running so that the intruder can come back easily and without the system administrator’s knowledge.

Solution

chkrootkit V. 0.46a

Nelson Murilo [[email protected]] (main author)
Klaus Steding-Jessen [[email protected]] (co-author)

This program locally checks for signs of a rootkit.
chkrootkit is available at: http://www.chkrootkit.org/

This tool includes software developed by the DFN-CERT, Univ. of Hamburg (chklastlog and chkwtmp), and small portions of ifconfig developed by Fred N. van Kempen, [[email protected]].

What’s chkrootkit?