tag:blogger.com,1999:blog-4144281760148079969Thu, 16 Feb 2012 20:00:24 +0000consumerinfrastructurednsroboticsexploitvulnerabilityprivacy violationThoughts and insights into security issues and their impact.http://blog.simplicity.net/noreply@blogger.com (Brian Dowling)Blogger5125tag:blogger.com,1999:blog-4144281760148079969.post-5418926246357777567Wed, 14 Jan 2009 10:30:00 +00002009-01-14T05:36:44.917-05:00roboticsvulnerabilityexploitconsumerprivacy violationWhy is it that I am unable to touch a new piece of technology without finding problems with it? Ok, so I've been around long enough to know that's just the unfortunate state of technology. Companies should at least consider a consult with outside security resources before releasing the next best thing. Getting a fresh set of eyes looking at something and you are guaranteed that you'll find http://blog.simplicity.net/2009/01/rovio-mobile-wifi-enabled-survellience.htmlnoreply@blogger.com (Brian Dowling)0tag:blogger.com,1999:blog-4144281760148079969.post-2518696652339718871Thu, 07 Aug 2008 22:32:00 +00002008-08-07T20:07:40.904-04:00dnsvulnerabilityexploitAs an aside to my previous discussion about my own investigation into DNS, I had also been curious if there was any "lack of response" issues impacting today's DNS servers. Afterall DNS spoofing attacks generally involve a race, if you can initiate a race and leave the competor at the starting blocks, you'll always win. In my invesitgation, I started submitting malicious requests with http://blog.simplicity.net/2008/08/dns-vulnerability-disclosure-powerdns.htmlnoreply@blogger.com (Brian Dowling)0tag:blogger.com,1999:blog-4144281760148079969.post-6910690332937469113Thu, 07 Aug 2008 20:00:00 +00002008-08-07T19:34:29.408-04:00dnsvulnerabilityexploitUnless you've been sheltered for the last month, you are by now well aware of the important news about the critical DNS vulnerability. You have patched or otherwise protected your networks, right?One thing that was immediately apparent about this vulnerability was the unique way that it was disclosed simultaneously by a number of vendors and their claim that the patch itself did not disclose thehttp://blog.simplicity.net/2008/07/critical-dns-vulnerability.htmlnoreply@blogger.com (Brian)0tag:blogger.com,1999:blog-4144281760148079969.post-1380107052078205793Fri, 01 Aug 2008 01:00:00 +00002008-08-01T12:53:24.300-04:00dnsinfrastructurevulnerabilityexploitAs you have no doubt heard by now, there is a security problem with DNS or the Domain Name System that has gotten a lot of attention lately. You may be wondering exactly why all the hype, there are security problems everyday right? Well, unfortunately, this problem is at the core of the Internet -- DNS is a foundation infrastructure that allows us to use cool names like www.google.com and http://blog.simplicity.net/2008/07/so-what-is-all-this-hype-about-dns.htmlnoreply@blogger.com (Brian Dowling)0tag:blogger.com,1999:blog-4144281760148079969.post-3104521112021566348Wed, 30 Jul 2008 00:30:00 +00002008-07-30T16:21:22.699-04:00Welcome to my new blog -- yes, yet another blog about security. You may be asking yourself, who the heck is this guy, and is he really that audacious that he thinks we need another mono-blog about information security and that he actually does have something of interest to add to topic? Well, my answer to that is obviously a yes, as I've taken the effort to stake a claim on this tiny part of http://blog.simplicity.net/2008/07/security-in-perspective.htmlnoreply@blogger.com (Brian Dowling)