The idea of this tool is that you can run just about any program and/or copy files to/from the machine, say an ssh session, using DNS packets to/from the client. In other words, a workstation sitting on a network somewhere, behind the companies firewalls, IPS/IDS, AV, etc., etc. could communicate with a system on the [...]
defense in depth (which includes egress filters) and Network Security Monitoring (NSM). This diary post on isc.sans.org is a good example of why companies need to practice defense in depth. I have spent many years involved with messaging, back in 1995 I didn’t know what SMTP meant, but thanks to a gentleman at then Xerox [...]
In this article Google is reportedly asking for assistance from the NSA. From my limited knowledge of the NSA, this sounds like the right thing to do. I have done plenty of work under non-discolure agreements (NDAs). Given the people that work at the NSA, I don’t see a problem with Google working with them. [...]
In the back of my mind are the recent attacks against Google and others by the Chinese government. I keep asking myself how I would setup and defend against such attacks, and more importantly mitigate them. The end goal of this exercise for me, is to limit Internet access to devices that have authenticated to [...]
As I tweeted earlier I was poking around my jail broken iPhone and discovered IP forwarding does work. I’ve been searching for ways to tether my iPhone to various computers. I was able to use OpenSSH and establish a SOCKS proxy yesterday. That works nicely and given the “Location” feature of OS X and the [...]
Recent Comments