January 2021 - rwth-security - lists.rwth-aachen.de

Security Engineering — Third Edition
by Bernd Kohler 10 Mar '22

10 Mar '22

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Security Engineering — Third Edition" "... from phone phreaks to Android malware and from SIM swaps and SS7 hacking to 5G ..." VG Bernd [0] https://www.cl.cam.ac.uk/~rja14/book.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 1

How We Escaped Docker in Azure Functions
by Bernd Kohler 29 Jan '21

29 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "How We Escaped Docker in Azure Functions" VG Bernd [0] https://www.intezer.com/blog/research/how-we-escaped-docker-in-azure-functi… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Stop using Libgcrypt 1.9.0 !
by Bernd Kohler 29 Jan '21

29 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Stop using Libgcrypt 1.9.0 !" --> "... severe bug ... Fedora 34 and Gentoo are already using ..." VG Bernd [0] https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000455.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Von Decryption und Signing Oracles: Covert-Content-Angriffe auf E-Mail
by Bernd Kohler 29 Jan '21

29 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Von Decryption und Signing Oracles: Covert-Content-Angriffe auf E-Mail" VG Bernd [0] https://research.hisolutions.com/2021/01/von-decryption-und-signing-oracles… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

NAT Slipstreaming v2.0: New Attack Variant Can Expose All Internal Network Devices to The Internet
by Bernd Kohler 29 Jan '21

29 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "NAT Slipstreaming v2.0: New Attack Variant Can Expose All Internal Network Devices to The Internet" (siehe dazu auch [1]) --> sofern nicht bereits geschehen also aktuelle Browser-Version installieren ;) VG Bernd [0] https://www.armis.com/resources/iot-security-blog/nat-slipstreaming-v2-0-ne… [1] https://www.theregister.com/2021/01/27/nat_slipstream_bypass/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Analysis of Anti Virus Software quarantine files
by Bernd Kohler 28 Jan '21

28 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Analysis of Anti Virus Software quarantine files" VG Bernd [0] https://static.ernw.de/whitepaper/ERNW-Whitepaper-71_AV_Quarantine_signed.p… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Bad Neighbor on FreeBSD: IPv6 Router Advertisement Vulnerabilities in rtsold (CVE-2020-25577)
by Bernd Kohler 28 Jan '21

28 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Bad Neighbor on FreeBSD: IPv6 Router Advertisement Vulnerabilities in rtsold (CVE-2020-25577)" VG Bernd [0] https://blog.quarkslab.com/bad-neighbor-on-freebsd-ipv6-router-advertisemen… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Microsoft - Application Guard for Office now generally available
by Bernd Kohler 28 Jan '21

28 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Application Guard for Office now generally available" VG Bernd [0] https://techcommunity.microsoft.com/t5/microsoft-security-and/application-g… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

TLS Security Guidelines und Konfig Beispiele
by Bernd Kohler 28 Jan '21

28 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI [0] "IT Security Guidelines for Transport Layer Security (TLS) - National Cyber Security Centre (NL) --> TLS 1.2 von gut nach ausreichend (herab-) gestuft [1] NSA: "Eliminating Obsolete Transport Layer Security (TLS) Protocol Configurations" --> inkl. "Mitigating Obsolete TLS" (Snort Regeln, Server-Config Beispiele) VG Bernd [0] https://english.ncsc.nl/publications/publications/2021/january/19/it-securi… [1] https://media.defense.gov/2021/Jan/05/2002560140/-1/-1/0/ELIMINATING_OBSOLE… [2] https://github.com/nsacyber/Mitigating-Obsolete-TLS -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Is WiFi too polite?
by Bernd Kohler 26 Jan '21

26 Jan '21

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Is WiFi too polite?" --> "... we have found that all today’s WiFi devices acknowledge any packet they receive as long as the destination address matches their MAC address. ..." VG Bernd [0] https://blog.apnic.net/2021/01/18/is-wifi-too-polite/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0