softwareguideswar roomaboutgo-home
Latest Configuration Guides
Platform Title
Red Hat Enterprise Linux 6.5 Snort Intrusion Detection System w/ Barnyard2 and PostgreSQL Support
February 9, 2014
Red Hat Enterprise Linux 6.4 Apache 2 Web Server w/ PHP5, OpenSSL, Suhosin and PostgreSQL, MySQL, IBM DB2 and/or Oracle Databases
May 24, 2013
IBM AIX 7.1 Setting Up TCP/IP, SSH and a GNU C / C++ Development Environment on AIX
January 9, 2012

The Cavalry is a global grassroots organization that is focused on issues where computer security intersects public safety and human life. We strive to ensure that these technologies are worthy of the trust we place in them.

Media and Research Requests
For journalists of all media, please use my PGP key for e-mail communications. Most requests I receive are for validating claims of major security events or vulnerabilities.

About one out of every five events I examine turn out to be fully or partially true. Our little community is increasingly becoming filled with rotten apples.

There is also an assumption of anonymity on my part, with exceptions only in very specific and authorized situations.

For research discoveries and disclosure, I already have a trusted list of journalists. For individuals and groups looking to include me in their efforts, please communicate using my PGP key listed above. Do your due dilligence first. I get a lot of requests and vetting what is legitimate is time consuming..
threatpost|  News

Oracle Fixes 301 Flaws in October Critical Patch Update

17 October 2018 - The update includes one critical flaw in Oracle GoldenGate with a CVSS 3.0 score of 10.0.

libssh Authentication Bypass Makes it Trivial to Pwn Rafts of Servers

17 October 2018 - The flaw affects thousands of servers; but GitHub, a major libssh user, is unaffected.

Podcast: A Utility Ransomware Attack, Post-Hurricane

17 October 2018 - A “critical water utility” was hit by a recent ransomware attack, significantly impeding the service in the week after Hurricane Florence hit the East Coast of the U.S. The Onslow Water and Sewer Authority (ONWASA) said in a Monday release that a “sophisticated ransomware attack 

Multiple D-Link Routers Open to Complete Takeover with Simple Attack

17 October 2018 - The vendor only plans to patch two of the eight impacted devices, according to a researcher.

On Heels of Criticism, Newly-Released Google Chrome 70 Prioritizes Privacy

17 October 2018 - The update also features 23 security fixes.

Snort  |  Blog

Snort rule update for Oct. 16, 2018

16 October 2018 - Just released:Snort Subscriber Rule Set Update for Oct. 16, 2018Cisco Talos just released the newest rule set for SNORTⓇ. In this release, we introduced 31 new rules, none of which are shared object rules. There are also 30 modified rules.This release provides coverage for a vulnerability in the M…

Snort end of life warning

11 October 2018 - SNORTⓇ subscribers, as many of you may have noticed, we've been keeping Snort version releases around a lot longer over the past couple of years.We are currently working on revising our end of life (EOL) policy to take into account a mix of time and market share. Essentially, we will begin to shut…

Snort has been released

11 October 2018 - Please join us as we welcome SNORTⓇ to the family!Some release notes on this latest version:New AdditionsParsing HTTP CONNECT to extract the tunnel IP and port information.Alerting and dechunking for chunked encoding in HTTP1.0 request and response.ImprovementsFixed an issue where, if we…

Snort rule update for Oct. 11, 2018

11 October 2018 - Just released:Snort Subscriber Rule Set Update for Oct. 11, 2018Today, Cisco Talso released the newest rule update for SNORTⓇ. In this release, we introduced 67 new rules, none of which are shared object rules. There are also four modified rules.This release contains coverage for several Adobe vul…

© 2001-2018 Procyon Labs / Randal T. Rioux