September | 2006 | Andrew Hay

September 28, 2006
by Andrew Hay
360 commentsGetting+to+Know+Netflow2006-09-29+00%3A50%3A17Andrew+Hay

Getting to Know Netflow

After I had posted my article on configuring NetFlow export on Cisco devices, various people emailed me asking what, exactly, NetFlow is. It just so happens that Dark Reading has recently published an article on the topic. To explain what … Continue reading →

September 28, 2006
by Andrew Hay
350 commentsVML+Exploit+Caught+on+Camera2006-09-28+04%3A41%3A35Andrew+Hay

VML Exploit Caught on Camera

Our friends at Websense have recorded what happens when a workstation visits an infected site exploiting the current VML issue. They did a similar video when the WMF zero-day was released and their workstation was instantly flooded with Spyware applications … Continue reading →

September 28, 2006
by Andrew Hay
340 commentsBreach+Acquires+ModSecurity2006-09-28+04%3A26%3A32Andrew+Hay

Breach Acquires ModSecurity

Breach Security, Inc. today announced the acquisition of Thinking Stone Ltd., the leading provider of services and enhancements for the ModSecurity web application firewall. ModSecurity is the most widely deployed web application firewall in the world with more than 10,000 … Continue reading →

September 28, 2006
by Andrew Hay
330 comments2006-09-28+04%3A05%3A26Andrew+Hay

Skype Users Most Active During Office Hours, Says Study

According to an article posted in the September issue of Network Computing by Andrew Conroy-Murray, the peak time for Skype usage in the United States is around noon CST. Unfortunately, there’s no way to tell the difference between business usage … Continue reading →

September 26, 2006
by Andrew Hay
320 commentsThe+Hidden+Benefits+of+Network+Attack2006-09-26+13%3A51%3A07Andrew+Hay

The Hidden Benefits of Network Attack

In his latest blog post, Bruce Schneier points out a particularly interesting note in the Harvard Law Review, which argues that there is a significant benefit from Internet attacks: This Note argues that computer networks, particularly the Internet, can be … Continue reading →

September 22, 2006
by Andrew Hay
310 comments2006-09-22+17%3A45%3A27Andrew+Hay

Zeroday Emergency Response Team (ZERT)

The ZERT team came to light recently due to their public, unofficial patch for the IE Buffer Overflow in VML (vgx.dll) vulnerability (CVE-2006-4868). They also received coverage today by eWEEK. That article can be found here: http://www.eweek.com/article2/0,1895,2019162,00.asp From the ZERT … Continue reading →

September 21, 2006
by Andrew Hay
290 comments2006-09-21+14%3A36%3A32Andrew+Hay

Blackberry “pickpocket notification”

There is an article in today’s Toronto Star detailing Research In Motion’s (RIM) plan to release “a wireless device that aims to thwart thieves and ease the minds of those who are prone to misplacing their handheld units.” From the … Continue reading →

September 20, 2006
by Andrew Hay
270 comments2006-09-20+19%3A44%3A41Andrew+Hay

Product Review: Dell PowerConnect 2708

When I was looking to purchase a new switch I needed it to meet the following requirements: Needs to replace my old, low-end netgear switches Needs to allow port mirroring on the switch without having to use an external hub … Continue reading →

September 20, 2006
by Andrew Hay
260 comments2006-09-20+16%3A48%3A25Andrew+Hay

Exporting NetFlow on Cisco Routers and Switches

A lot more Network Security Monitoring (NSM) products these days (Freeware and Open-source Applications & Commercial Applications) are capable of receiving NetFlow from routing and switching devices. Configuring the export of these flow records are not the most straightforward task … Continue reading →

September 20, 2006
by Andrew Hay
250 commentsErgonomic+Keyboard+for+Pirates2006-09-20+16%3A11%3A43Andrew+Hay

Ergonomic Keyboard for Pirates

In honour of Talk Like A Pirate Day (yesterday) I found the following article which is hilarious.