| SECURITY |
|
SPECIFICS |
| ALW
Unix Security Information
CERT
FTP Archive
COAST
Project and Laboratory
Computer
Security Research Lab at UC Davis
NIST
Computer Security
NSA
Security Manuals (aka. Rainbow Series)
Internet
Security
- learn to implement protection strategies using virtual private
networks, firewall, and policy management.
Internet
Security Engineering
- secure internet connectivity.
Microsoft
Security Advisor
Symantec
Security Center
- resource for consumers who need or want computer and network
security-related information.
Frank
O'Dwyer's Security Sources
- security-related source code.
Microsoft
Security Bulletin (MS99-032)
- provides a patch that eliminates security vulnerabilities in two
ActiveX controls.
Trend
Micro Security Alert
- features news of the worm that executes when email is opened or
simply previewed.
FAQ
- Microsoft Security Bulletin (MS99-032)
- offers information on vulnerabilities and their patch.
Security
Bugware
- a source for UNIX and NT vulnerabilities with exploits, bugs,
patches, descriptions and more.
EINet's
Computer Virus and Security Page
IPSec (Internet Protocol Security)
IPSec
Developers Forum
- works to advance IPSec as the standard for secure Virtual
Private Networking.
Top
View on the IPsec Technology
- discusses deployment of IPsec as part of a Commons Security
Framework. |
|
|
| UNIX
SECURITY |
/\ |
| An
Architectural Overview of UNIX Network Security
AntiCrack
- checks vulnerability of UNIX passwords in the same manner as
Crack does, but it's faster because it checks "raw (not
encrypted)" passwords.
Bugtraq
Archives
FreeBSD
Security How-To
- tips on how to make your system more secure.
Improving
the Security of Your Site by Breaking Into it
MLD's
Unix Security Page
- Unix & TCP/IP Network Security Page. Focused on system
penetration and system designs which lead to security failures.
Software available online.
Securing
NIS
Securing
X Windows
Unix
Security |
| FIREWALLS |
/\ |
| CIAC
Notes
- Computer Incident Advisory Capability Notes.
Gelb
Organization, L.L.C. - white papers on
creation and development of a firewall security system. General
Firewall White Paper - discusses
firewalls in general and for the Windows NT environment. Internet
Security Firewalls Tutorial Nmap
- audit firewall configuration using this stealth port scanner. FAQ
- Internet Firewalls
- discussion of basics, design, and implementation by Marcus J.
Ranum and Matt Curtin.
Usenet
- comp.security.firewalls |
| COOKIES |
/\ |
| Bake
your own Internet Cookie
- see how cookies can be used to provide personalized content,
learn about security bugs.
Cookie
Controversy
Cookies:
what are they?
Dark
Side of Cookies
EPIC
Cookies Page
How
Tasty are Your Cookies?
How
Web Servers' Cookies Threaten Your Privacy
Modem
Operandi FAQt: Persistent Cookies |
| JAVA
SECURITY |
/\ |
| Denial
of service
Java
Security
Java
Security Problems
Java
Security Resources
- discussion of various Java Security resources and collection of
links. |
| JAVA
SCRIPT SECURITY |
/\ |
| CERT
Advisory CA-97.20 - JavaScript Vulnerability
FAQ
- WWW Security |
| HTTP
SECURITY |
/\ |
| NCSA
httpd/Mosaic: Using PGP/PEM auth
Secure
Sockets Layer (SSL) Protocol@
Simple
Digest Security Scheme
- minimal security scheme for HTTP that does not require the use
of patented or export restricted technology and is believed to
provide the best effective security possible within those
constraints |
| X
WINDOWS SECURITY |
/\ |
| Securing
X Windows
X
Security Intro |
| SECURITY
AND ENCRYPTION |
/\ |
| alt.security.pgp
comp.security.pgp.announce
- announcements of new PGP versions, tools, FAQs, etc.
Policing
Cyberspace (PolCyb) '99
- international conference for the criminal justice and corporate
sectors. Opportunity to learn and network in the field of
cyberspace law enforcement. November 7-10, 1999. Richmond, BC.
Public
Key Infrastructure (PKI) Task Force
How
Electronic Encryption Works & How It Will Change Your Business
- discusses the business use of encryption, with the possible
failure modes highlighted.
Computer
Security Survey 1997
- investigation into the perceived and actual security risks of
doing business online by Colin Germain
Secure
Computing
- reporting and reviewing all aspects of company IT Security.
Internet
Privacy Coalition - formed to promote
privacy and security on the Internet through widespread public
availability of strong encryption and the relaxation of export
controls on cryptography. |
| BROWSER
SECURITY |
/\ |
| FAQ
- Scott Schnoll's Internet Explorer Security
- The definitive Internet Explorer Security FAQ, by Scott Schnoll,
MCSE |
| COMPUTER
SECURITY-RELATED ORGS. |
/\ |
| Better
Ethics Online
- how to protect your copyright online. How to detect unauthorized
use. A non-profit organization providing a free public service
supported by Members.
Computer
Emergency Response Team (CERT) (2)
Computer
Incident Advisory Capability (CIAC)
- provides computer security services free of charge to employees
and contractors of the Department of Energy
Computer
Security Technology Center (CSTC)
- operational incident response, product development, and
consulting services
Electronic
Privacy Information Center@
Federal
Computer Incident Response Capability
- provides extensive resources for computer security, including
online security tools, a virus databases and searchable security
bulletins.
Florida
Association of Computer Crime Investigators
- FACCI provides training and networking for law enforcement and
corporate information security personnel.
Forum
of Incident Response Teams - FIRST (1)
Georgia
RACF Users' Group HERT
- Hacker Emergency Response Team
- computer security research, alert and advocacy league.
Information
Assurance Technology Analysis Center Initiatives
for Computer Authentication Technology (ICAT)
- working to establish authentication and cryptographic
technology.
International
Association for Cryptologic Research
- whose primary purpose is to further research in cryptology and
related fields.
International
Computer Security Association (ICSA) (2)
International
Information Systems Security Certification Consortium
Laboratory
for Information Security
- at George Mason Univ.
National
Institute of Standards and Technology: Computer Security Resource
Clearinghouse
- designed to collect and disseminate computer security
information and resources to help users better protect their data
and systems.
Network
Security International Association
- NetSec Int'l is dedicated to anti-virus research, computer, and
network security.
NIST
Computer Security Division
San
Diego Regional Info Watch
- The purpose of SDRIW is to provide its participants the
opportunity to exchange information regarding the planning,
operational, and legal issues of network security.
SANS
Institute
- cooperative research and education organization for system
administrators, security professionals, and network
administrators. Site hosts glossary and salary survey. |
| VIRUSES |
/\ |
| HTML
- the notorious invisible HTML tag is exposed.
HTML
Virus
Image
Viruses
Microso
Internet Virus
Melissa
Virus@
Microsoft
Excel Virus Information
Word
Virus (6)
FAQ
- Macro Virus
NCSA
Anti-Virus Information - Alerts and Hoaxes
Truth
about "E-Mail Viruses"
- learn the true facts.
Virus
Hoax Information
Computer
Virus Hoaxes
- information source on common virus scams.
Protecting
Your Computer Against Viruses
- tips on how to make your computer safe from contracting viruses.
Robert
Slade's Guide to Computer Viruses
- how to avoid them, how to get rid of them, and how to get help.
Computer
Viruses and Data Protection
- by Ralph Burger
alt.comp.virus
- unmoderated forum for discussing viruses.
comp.virus
- computer viruses & security. (Moderated) |
|
/\ |
©Copyright
1997-2001 Cytware Corporation. All Rights Reserved. |
