Cloud Security

Password Reset in Yiyou mail system can be cracked by brute force Rt The Yiyou mail system was used by a large number of users and found that answers to questions in Yiyou password retrieval could be brute-force cracked. If there is a simple

Joomla deserialization Vulnerability Detection  In December 15, 2015, major security vendors in China paid attention to a message about the Joomla Remote Code Execution Vulnerability from overseas sites. Then we started a round of vulnerability

OwnCloud Server Arbitrary Code Execution Vulnerability (CVE-2015-7699)OwnCloud Server Arbitrary Code Execution Vulnerability (CVE-2015-7699) Release date:Updated on:Affected Systems: ownCloud ownCloud Server 〈 8.0.7ownCloud ownCloud Server 〈

Bind IP addresses and MAC addresses to prevent IP address theft.In a local area network, the most convenient way to disrupt the network is to steal others' IP addresses. Computers with stolen IP addresses are not only unable to use the campus

Linux Kernel Local Security Restriction Bypass Vulnerability (CVE-2015-3212)Linux Kernel Local Security Restriction Bypass Vulnerability (CVE-2015-3212) Release date:Updated on:Affected Systems: Linux kernel Description: Bugtraq id: 76082CVE (

Porting from Windows open-source iOS to Windows Windows open-source Windows to iOS bridge technology WinObjC, can be transplanted to Windows iOS applications, is still in the technology preview stage. Windows Bridge for iOS (WinObjC) provides an

Microsoft urgently releases patches to fix high-risk Vulnerabilities Microsoft urgently releases a patch to fix a high-risk vulnerability that attackers can remotely execute code. The new vulnerability affects all supported Windows versions, which

Cisco ASR 5000 GGSN Component Denial of Service Vulnerability (CVE-2015-4201)Cisco ASR 5000 GGSN Component Denial of Service Vulnerability (CVE-2015-4201) Release date:Updated on:Affected Systems: Cisco ASR 5000 18.0.L0.59219Cisco ASR 5000 17.2.0.5

Adobe Flash Heap Buffer Overflow Vulnerability (CVE-2015-3113)Adobe Flash Heap Buffer Overflow Vulnerability (CVE-2015-3113) Release date:Updated on:Affected Systems: Adobe Flash Player Adobe Flash Player Adobe Flash Player Description: CVE

What is social engineering? (Social Engineering) Social engineering was proposed by the hacker Mitnick in the art of deception after repentance, it is a harmful means to the psychological traps of the victims, such as deception and injury, through

Do not expect STARTTLS to automatically encrypt your email   The researchers questioned the Security Email. Although currently STARTTLS (plain text communication protocol extension) and three other security extensions have been applied, they still

On ubuntu 15.04 server, how does one configure SNMPv3? SNMP is an internet standard protocol that can be used to manage devices on an IP network ". Generally, devices that support SNMP include routers, switches, servers, workstations, printers,

263 The FortiGate device used for communication has the firewall backdoor vulnerability. A vulnerability that everyone knows 1. Vulnerability Type FortiGate firewall backdoor Vulnerability 2. vulnerability address 211.100.52.234 3.

Registration on the RSA Conference: Collect the registrant's Twitter plaintext creden Recently, security experts found a strange phenomenon on Twitter: the website registration page of the RSA Information Security Conference required to collect the

How to Set HTTPS policies for old browsers A few days ago, a friend asked me: we all said we recommend using the Qualys SSL Labs tool to test SSL security. Why are some of the most powerful Security manufacturers having low scores? I think this

XML security-XML attack methods you don't know The XML eXtensible Markup Language is designed to transmit and store data in various forms. Some features designed in XML, such as XML schemas (following XML Schemas specifications) and documents type

How to configure Nginx server to defend against CC attacks Basic Principles of 0x00 CC attacksCC attacks use a proxy server to send a large number of URL requests that require long computing time, such as database queries. As a result, the server

Do I have to worry about SQL injection when using java PreparedStatement? First, I felt that I had not written a blog for a long time. First, I was too busy at work, and second, I was not very good at my health. Fortunately, I finally found out the

Use the. Htaccess file to prevent malicious website attacks from some IP addressesIf I have read the article "my website has been attacked by hackers" a few days ago, I should know that some people have gone from 180.97.106 a few days ago. * This IP

Hackers also have a headache: the seven major artifacts protect industrial security Heavy industry is gradually becoming the target of cyber attacks. Financial institutions may also be under various pressures, but in terms of frequency or type,