IT Security Notes http://www.singapore-security.com/ IT Security research, notes, news, tips and random rants en Copyright 2007 Thu, 24 May 2007 22:23:21 +0800 http://blogs.law.harvard.edu/tech/rss Death threat, a new form of Nigerian Scam ? I received a funny death threat email this morning, as much as death threats can be funny in the first place. It appeared straight away to be some sort of scam, but just to be sure and to have a good laugh, I looked a bit at the email headers...

]]> http://www.singapore-security.com/2007/05/death_threat_a_new_form_of_nigerian_scam.html http://www.singapore-security.com/2007/05/death_threat_a_new_form_of_nigerian_scam.html Miscellaneous Thu, 24 May 2007 22:23:21 +0800 Convert Windows' dir /s to find format Sometimes you would like to convert the output of DOS/Windows' DIR /S command into the output of UNIX' find command. You will find here a basic script that does just that.

]]> http://www.singapore-security.com/2006/12/convert_windows_dir_s_to_find.html http://www.singapore-security.com/2006/12/convert_windows_dir_s_to_find.html Windows Security Thu, 21 Dec 2006 19:04:19 +0800 ATM pin reversal scam A scam letter is circuclating in Singapore telling potential victims of ATM money snatching how to call the police automatically. How naive people can be...

]]> http://www.singapore-security.com/2006/12/atm_pin_reversal_scam.html http://www.singapore-security.com/2006/12/atm_pin_reversal_scam.html Miscellaneous Mon, 18 Dec 2006 00:34:26 +0800 <![CDATA[ATM Security & NETs Security]]> Recently, Singapore has had a wave of ATM Frauds. Measures have been taken by banks to monitor and attempt to avoid ATM frauds as much as possible. If someone performs a fraud using a copy of your ATM card, chances are that the bank will issue you a new ATM card, and will reimburse you immediately the missing money.

What happens on NETs enabled machines?

]]> http://www.singapore-security.com/2006/11/atm_security_nets_security.html http://www.singapore-security.com/2006/11/atm_security_nets_security.html Banking Security Tue, 14 Nov 2006 01:12:38 +0800 Automating SpamCop Reporting SpamCop is great. You should subscribe, it's worth it and it's for a worthy cause. However, it's a real pain to report 100 spam messages at a time. We propose here a quick Perl script that processes your SpamCop queue.

]]> http://www.singapore-security.com/2006/11/automating_spamcop_reporting.html http://www.singapore-security.com/2006/11/automating_spamcop_reporting.html Miscellaneous Sun, 12 Nov 2006 17:15:05 +0800 SSL cipher suite choice What's the risk of allowing low-grade encryption algorithms on your SSL-enabled server?

]]> http://www.singapore-security.com/2006/10/ssl_cipher_suite_choice.html http://www.singapore-security.com/2006/10/ssl_cipher_suite_choice.html System Security Mon, 16 Oct 2006 19:38:00 +0800 Authentication with X509 certificates X509 certificates (a.k.a. SSL certificates) is often synonymous to strong security. What are their advantages and drawbacks?

]]> http://www.singapore-security.com/2006/06/authentication_with_x509_certificates.html http://www.singapore-security.com/2006/06/authentication_with_x509_certificates.html Application Security Sat, 10 Jun 2006 16:50:34 +0800 System partitions and security It is a common belief that allocating several partitions on your system is a Good Practice especially when it comes to security.

Is that really the case?

]]> http://www.singapore-security.com/2006/06/system_partitions_and_security.html http://www.singapore-security.com/2006/06/system_partitions_and_security.html Unix Security Thu, 01 Jun 2006 01:00:38 +0800