SCP, Not
Another tremendous security post via Catalin Cimpanu writing for ZDNet's Zero Day; in which, the good Mr. Cimpanu tells the tale of the thirty-six year-old flaw in SCP - the Secure Copy Protocol. This time, rearing it's apparently flawed noggin through coded flaws in SCP (the 'secure' version of RCP - the Remote Copy Protocol). The flaws, in their essential form, permit malign SCP servers free-reign on the host system. Just astonishing this has existed since the last quarter of the twentieth century...
"The vulnerabilities have been discovered by Harry Sintonen, a security researcher with Finnish cyber-security firm F-Secure, who's been working since August last year to have them fixed and patched in the major apps that support the SCP protocol." via Catalin Cimpanu at ZDNet's Zero Day
Username? That'll Be RM - RF / →
If Sean Gallagher's screed detailing an ICS/SCADA hardware flaw, at our go-to site of popular intelligence - Ars Technica) wasn't brimmed-up full of schadenfreude, I'd be crying in outrage (specifically, at the vendor stupidity illuminated by the bright and shiny light of Mr. Gallagher's magical prose) instead of howling happily on a similarly bright, yet cloudy Sunday morn... Anyhow, to the point; into SCADA / ICS security foible's? This one's' for youse!
Daniel Stori's 'Tail, No Grep' →
Daniel Stori's 'When You tail -f But Forget to grep' →
Ghost →
MAC OS X El Capitan Achieves UNIX® Certification
The Open Group, has announced that Apple, Inc [NasdaqGS: AAPL] has achieved UNIX® certification for the Cupertino, California based software and hardware leviathan's recently released OSX 10.11 (also known as “El Capitan).”