Quantcast
Channel: CodeSection,代码区,网络安全 - CodeSec
Browsing all 12749 articles
Browse latest View live

Image may be NSFW.
Clik here to view.

【图说普法】“网络安检”来了,网络安全这些事你不可不知

【图说普法】“网络安检”来了,网络安全这些事你不可不知 一点号梧州司法2天前 php?url=0FimMEOiTN" alt="【图说普法】“网络安检”来了,网络安全这些事你不可不知" />版面编辑:彭丽萍 责任编辑:石宁 审核:梁蓉

View Article


Image may be NSFW.
Clik here to view.

电脑的隐私信息安全隐患问题,赶紧学习这几招

电脑的隐私信息安全隐患问题,赶紧学习这几招 一点号头条IT2017.1.31 一开始认为是网络供应商的问题,但后来发现是被蹭网了。其实被蹭网有可能不止是偷用你的网这么简单,你的隐私信息有可能被泄露,乃至银行信息泄露,给你造成数额较大的损失。这不是危言耸听,我们要怎么样做到保证不被蹭网呢?今天教你几招! php?url=0FYWbe9GhC" alt="电脑的隐私信息安全隐患问题,赶紧学习这几招"...

View Article


Watershed SHA1 collision just broke the WebKit repository, others may follow

Thursday's watershed attack on the widely used SHA1 hashing function has claimed its first casualty: the version control system used by the WebKit browser engine, which became completely corrupted...

View Article

Image may be NSFW.
Clik here to view.

Signalling protection from AdaptiveMobile with new SPG

AdaptiveMobile announced it's Signalling Protection Gateway (SPG) - expanding its core security offerings with new network integration, deployment and routing capabilities to allow their Signalling...

View Article

Image may be NSFW.
Clik here to view.

黑莓全新「KEYone」QWERTY键盘手机登场配置强劲!最安全的安卓手机

黑莓全新「KEYone」QWERTY键盘手机登场配置强劲!最安全的安卓手机 一点号geear时尚2小时前 php?url=0FjJTsGjUQ" alt="黑莓全新「KEYone」QWERTY键盘手机登场配置强劲!最安全的安卓手机" />在上月 CES,BlackBerry 再次带来全新「Mercury」经典 QWERTY 键盘手机原型,如今正式亮相,并且定名为「KEYone」,设计上采用...

View Article


Image may be NSFW.
Clik here to view.

这将是最安全的安卓智能手机,TCL能否重续黑莓尊贵

这将是最安全的安卓智能手机,TCL能否重续黑莓尊贵 原创一点号科技之窗4小时前...

View Article

Two Security Bulletins: SHA-1 Collision Attack and Cloudflare Incident

The only constant in security is change. As technology evolves, we work hard to stay one step ahead and ensure your information stays safe. Two stories broke recently that many in our community may be...

View Article

The Secure Medical Data Challenge

Securing our databases and preventing the release of information our organizations have collected is an ongoing job for many of us. We patch our systems, ensure that our logins and users are granted...

View Article


Image may be NSFW.
Clik here to view.

【技术分享】基于Arachni构建黑盒扫描平台

【技术分享】基于Arachni构建黑盒扫描平台 2017-02-27 10:35:46 来源:安全客 作者:b1ngzz 阅读:105次 点赞(0) 收藏 作者:b1ngzz 预估稿费:300RMB 投稿方式:发送邮件至linwei#360.cn,或登陆网页版在线投稿 0x01 简介...

View Article


Image may be NSFW.
Clik here to view.

线程安全与可重入 线程安全 可重入 可重入函数 网络安全

线程安全与可重入。1、什么是线程安全当一个函数被多个线程反复调用的时候,他会一直产生正确的结果,那么这个函数就是线程安全的。线程安全函数解决了多个线程调用函数时访问临界资源的冲突问题。2、可重入在多线程或有异常控制流的情况下,当某个函数运行到中途时,控制流有可能被打断去执行另一个函数,而这”另一个函数”有可能是他本身,如果在这种情况下不会出现问题,比如与说数据或状态不被破坏,而且行为可预期,那么这个...

View Article

互联网安全学习之信息安全总结 互联网安全 安全知识 网络安全 信息安全

互联网安全学习之信息安全总结。 1、授权和访问控制 2、审计追踪(例如:sys-log、两次输密码等) 3、审计素材的记录方式、审计模型、追踪算法等 4、保密手机(例如:黑莓手机) 5、安全协议 6、我们大学提供vpn服务,可以在校外访问校内的资源,老师给了vpn的网址,什么时候可以试一下 7、vpn:对ip头重新封装,封装成校内的ip地址,就ok了。翻墙的原理有些类似...

View Article

信息安全论学习笔记(一):绪论 信息安全 安全风险分析 安全对策 安全属性

信息安全论学习笔记(一):绪论1、安全风险分析与安全对策:安全分析:要素:要保护的对象、对象的价值、对象的弱点、对对象的威胁。针对以上要素采取一定的对策来规避风险。安全对策:PDRRP(Protect Detect React Restore...

View Article

Image may be NSFW.
Clik here to view.

Unpatched Python and Java Flaws Let Hackers Bypass Firewall Using FTP Injection

This newly discovered bugs in Java and python is a big deal today. The two popular programming languages, Java and Python, contain similar security flaws that can be exploited to send unauthorized...

View Article


Farewell to SHA-1 and hello to TenFourFox FPR1

The long-in-the-tooth hashing algorithm SHA-1 has finally been broken by its first collision attack (and the broken SHA-1 apparently briefly broke the WebKit repository , too). SHA-1 SSL TLS...

View Article

Image may be NSFW.
Clik here to view.

Security error leaves NY airport servers unprotected for a year

The 760 GB of exposed data included TSA letters of investigation, social security numbers, internal airport schematics and emails, according to Chris Vickery, lead researcher from MacKeeper Security...

View Article


Image may be NSFW.
Clik here to view.

往水里投毒?解析针对工业控制系统的勒索攻击

近年来,勒索软件攻击已经成为一个非常让人担忧的安全问题,为了获得高额的利益回报,网络犯罪者逐渐把目标转向了医疗、金融等高价值行业。尽管目前所有的勒索攻击都只是针对个人电脑,但随着攻击面的不断扩大,最近的一些分析表明,工控系统网络极有可能成为勒索软件的下一个攻击目标,工控系统相关的关键基础设施也将面临勒索攻击的可能。 昨天CodeSec的文章《 勒索软件新威胁:你敢不付赎金,我就敢往你喝的水里投毒...

View Article

Image may be NSFW.
Clik here to view.

【技术分享】从一个CTF题目学习Python沙箱逃逸

【技术分享】从一个CTF题目学习python沙箱逃逸 2017-02-27 14:56:34 来源:isis.poly.edu 作者:安全客 阅读:1166次 点赞(0) 收藏 翻译:beswing 预估稿费:190RMB 投稿方式:发送邮件至linwei#360.cn,或登陆网页版在线投稿 前言...

View Article


OpenResty (nginx) with auto generated SSL certificate from Let’s Encrypt

I started with a startssl.com free SSL certificate to use encrypted connections for my website. This works fine, but I have to update the SSL certificate every year manually. Let’s Encrypt offers auto...

View Article

Fix TLS. Let’s get rid of certificates.

TLS secures the connection between your browser and the websites you visit (and a lot of other Internet connections that do not involve either a browser or a web server). TLS should provide...

View Article

Image may be NSFW.
Clik here to view.

陈满们的困境不只是网络诈骗

原标题:陈满们的困境不只是网络诈骗 php?url=0Fjjo7NUXs" alt="陈满们的困境不只是网络诈骗" />坐了23年冤狱,去年拿到巨额国家赔偿的四川绵竹人陈满再度引发关注。因为他投资项目疑似卷入传销被骗……26日,网上曝光一段视频,显示公司销售人员正在为陈满等人讲解投资项目。...

View Article
Browsing all 12749 articles
Browse latest View live