How to remove Superfish and its certificate from your Lenovo® PC

<div class="wrapper section"> <div class=" background-none none full-top-wrapper"> <div class=" full-width-content-wrapper"> <div class="full-width-inner"> <div class="avgparsys wrapperParsys"> <h2 style="text-align: center;"> What is Superfish?</h2> Superfish is a piece of software that <a href="http://news.lenovo.com/article_display.cfm?article_id=1929">Lenovo has admitted to pre-installing</a> on many of its laptops to "enhance the shopping experience" of its users. However, the <a href="https://www.us-cert.gov/ncas/alerts/TA15-051A">U.S. Computer Emergency Readiness Team</a> calls Superfish a "man-in-the-middle attack" because of how it "intercepts users' web traffic to provide targeted advertisements."</div> <div class="clear"> </div> </div> <div class="clear"> </div> </div> </div> </div> <div class="separator2 section"> <div class="separator-wrapper basic-width bg-top-none separator-grey-line bg-bottom-none"> <div class="separator-bottom"> </div> </div> </div> <br /> <div class="wrapper section"> <div class=" background-none none full-top-wrapper"> <div class=" full-width-content-wrapper"> <div class="clear"> </div> <div class="full-width-inner"> <div class="clear"> </div> <div class="avgparsys wrapperParsys"> <div class="textComponent section"> <div style="margin-bottom: 50px; margin-top: 40px;"> <h2 style="text-align: center;"> Why is Superfish so dangerous?</h2> <div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEihzWCLWEpkS41r8UW_a6xUlQPPJuQOctu59_FzCIvInKGPg_gjRYxcatsy-rw3TCs9zPFI6WM3T-VgDtazqaxtBW060oNY95aF77jSSV8AwiOMKBf6cDFg7OckwbtTSPlFfFRL_0mdcV0/s1600/superfish-220x169.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEihzWCLWEpkS41r8UW_a6xUlQPPJuQOctu59_FzCIvInKGPg_gjRYxcatsy-rw3TCs9zPFI6WM3T-VgDtazqaxtBW060oNY95aF77jSSV8AwiOMKBf6cDFg7OckwbtTSPlFfFRL_0mdcV0/s1600/superfish-220x169.png" /></a></div> <br /></div> </div> </div> Superfish snoops in on your web browsing and secretly slips ads into webpages. But the really dangerous part is that it's pre-installed with root certificate authority, which allows it to impersonate any server's security certificate.<br /><br />If this certificate is compromised by hackers, you could be tricked into logging in to a fake website and giving hackers your password. Because of Superfish, any of your accounts including encrypted bank accounts could be easily compromised.<br /> <div class="textComponent section"> <div style="margin-top: 20px;"> <h2 style="text-align: center;"> Which computers are affected?</h2> <div style="text-align: center;"> <span class="h2-subheading">According to Lenovo, Superfish may have been pre-installed<br /> on the following models:</span><br /> <span class="h2-subheading"><br /></span> <span class="h2-subheading"><br /></span> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9jDQzAb4OZQnTEsT5QscRnDVSTxHOqr3-Aggxsy6H5-kxajHdo1hP5jCvSr9u6Q2oO-fPmoybXAP8p_hNMTiOaf2DjlTPHcWHk5bpmzaVI2E8R8txH4Eq_mQm4sQMIR501vMIh77jR-M/s1600/lenovo-laptop-317x211.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="220" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9jDQzAb4OZQnTEsT5QscRnDVSTxHOqr3-Aggxsy6H5-kxajHdo1hP5jCvSr9u6Q2oO-fPmoybXAP8p_hNMTiOaf2DjlTPHcWHk5bpmzaVI2E8R8txH4Eq_mQm4sQMIR501vMIh77jR-M/s1600/lenovo-laptop-317x211.png" width="320" /></a></div> <div style="text-align: left;"> <br /> <table border="0" style="width: 100%px;"> <tbody> <tr> <td><strong>E Series: </strong></td> <td>E10-30</td> </tr> <tr> <td><strong>G Series:</strong></td> <td>G410, G510, G710, G40-70, G50-70, G40-30, G50-30, G40-45, G50-45, G40-80</td> </tr> <tr> <td><strong>S Series:</strong></td> <td>S310, S410, S40-70, S415, S415Touch, S435, S20-30, S20-30Touch</td> </tr> <tr> <td><strong>U Series:</strong></td> <td>U330P, U430P, U330Touch, U430Touch, U530Touch</td> </tr> <tr> <td><strong>Y Series:</strong></td> <td>Y430P, Y40-70, Y50-70, Y40-80, Y70-70</td> </tr> <tr> <td><strong>Z Series:</strong></td> <td>Z40-75, Z50-75, Z40-70, Z50-70, Z70-80</td> </tr> <tr> <td><strong>Edge Series:</strong></td> <td>Edge 15</td> </tr> <tr> <td><strong>Flex Series:</strong></td> <td>Flex2 14D, Flex2 15D, Flex2 14, Flex2 15, Flex2 Pro, Flex 10</td> </tr> <tr> <td><strong>MIIX Series:</strong></td> <td>MIIX2-8, MIIX2-10, MIIX2-11, MIIX 3 1030</td> </tr> <tr> <td><strong>YOGA Series:</strong></td> <td>YOGA2Pro-13, YOGA2-13, YOGA2-11, YOGA3 Pro</td> </tr> <tr> <td align="right" colspan="2"><a href="http://news.lenovo.com/article_display.cfm?article_id=1929" target="_blank">Source: Lenovo</a></td> </tr> </tbody></table> </div> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> <br /></div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgDZOSEWt_dq_Aw8Xs1iKA5J4cCoO_6r3Pw990_xB33ypZMu5BB8lnles8GTG5O0JwihqZ4y5xB-TgyjeJYAcm8MCJIZC1MR54RgmUPOrVHQmCnCO-1aTsZCnftiTPapA4AcjR2WPLA6jE/s1600/feature-icon-with-arrows-in-circle-representing-restore-101x101.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgDZOSEWt_dq_Aw8Xs1iKA5J4cCoO_6r3Pw990_xB33ypZMu5BB8lnles8GTG5O0JwihqZ4y5xB-TgyjeJYAcm8MCJIZC1MR54RgmUPOrVHQmCnCO-1aTsZCnftiTPapA4AcjR2WPLA6jE/s1600/feature-icon-with-arrows-in-circle-representing-restore-101x101.png" /></a></div> <h2 style="text-align: center;"> Will restoring from a backup help?</h2> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> Superfish has been pre-installed by Lenovo. Therefore, restoring your computer to factory condition from either a backup partition or a backup DVD will not solve the problem if Superfish is also part of your backup. Superfish would only be reinstalled, too.</div> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> So if you ever use a backup to restore your system, you may need to again remove Superfish and its root security certificate from your system.</div> <div style="text-align: left;"> <br /></div> <div style="text-align: left;"> <br /></div> <div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdjbK33_0Vm4z2o9n4kLuh9wtIeFXban2bXDBPzYl2DGERAzJXGIlqRsjaOYx0etjfDIBjdnpkpljJ_CoT2328B2lLDKEF5rVrOy4PV9Nk7t2GCWxiNf6ZKsEuas69dJ8f2Xgw6sESCLQ/s1600/feature-icon-with-trash-bin-representing-delete-76x108.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdjbK33_0Vm4z2o9n4kLuh9wtIeFXban2bXDBPzYl2DGERAzJXGIlqRsjaOYx0etjfDIBjdnpkpljJ_CoT2328B2lLDKEF5rVrOy4PV9Nk7t2GCWxiNf6ZKsEuas69dJ8f2Xgw6sESCLQ/s1600/feature-icon-with-trash-bin-representing-delete-76x108.png" /></a></div> <div style="text-align: center;"> <br /></div> <h2 style="text-align: center;"> Remove Superfish now </h2> <div> <br /></div> <div> To remove the Superfish program and its certificate from your computer,</div> <div> please use this free tool from Lenovo:</div> <div> <br /></div> <a href="http://download.lenovo.com/pccbbs/thinkvantage_en/metroapps/SuperFishRemovalTool/1.0.2.0/Lenovo.SuperFishRemovalTool.exe" target="_blank"><span style="background-color: #666666; color: #eeeeee;">DOWNLOAD Superfish Removal Tool </span></a> <br /> <br /> This tool will also remove any Superfish certificates<br /> from Mozilla Firefox® and Thunderbird®.</div> </div> </div> </div> </div> </div> </div> </div> </div>

• 
• 
• 
• 

1. 1
2. 2
3. 3
4. 4

• Previous
• Next

How to remove Superfish and its certificate from your Lenovo® PC

What is Superfish? Superfish is a piece of software that Lenovo has admitted to pre-installing on many of its laptops to "enhance the shopping experience" of its users. However, the U.S. Computer Eme…

Read more »

Heartbleed bug: What you need to know

<div class="separator" style="clear: both; text-align: center;"> <a href="http://upload.wikimedia.org/wikipedia/commons/thumb/d/dc/Heartbleed.svg/411px-Heartbleed.svg.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><span style="font-family: Arial, Helvetica, sans-serif;"><img border="0" height="320" src="http://upload.wikimedia.org/wikipedia/commons/thumb/d/dc/Heartbleed.svg/411px-Heartbleed.svg.png" width="255" /></span></a></div> <span style="font-family: Arial, Helvetica, sans-serif;">The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure it.</span><br /> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span> <span style="font-family: Arial, Helvetica, sans-serif;">You are likely affected if you configured and run an SSL-enabled website, meaning that you can access it using the https:// prefix instead of http://. You will need to patch the libraries in your system and replace the certificates and keys that may have been compromised. Please notice that remote access using ssh is NOT affected.</span><br /> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span> <span style="font-family: Arial, Helvetica, sans-serif;">OpenSSL versions from 1.0.1 through 1.0.1f (inclusive) are vulnerable and make it possible to steal information, including everything from the encrypted content and to the secret key used for the encryption. The attack is also indetectable.</span><br /> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span> <span style="font-family: Arial, Helvetica, sans-serif;">This security issue has been described in detail on the following page:</span><br /> <a href="http://heartbleed.com/" target="_blank"><span style="font-family: Arial, Helvetica, sans-serif;">http://heartbleed.com/</span></a><br /> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span> <br /> <h2> <span style="font-family: Arial, Helvetica, sans-serif; font-size: large;">How about operating systems?</span></h2> <div> <div class="separator" style="clear: both; text-align: center;"> </div> <div style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Some operating system distributions that have shipped with potentially vulnerable OpenSSL version:</span></div> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">Debian Wheezy (stable), OpenSSL 1.0.1e-2+deb7u4</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">Ubuntu 12.04.4 LTS, OpenSSL 1.0.1-4ubuntu5.11</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">CentOS 6.5, OpenSSL 1.0.1e-15</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">Fedora 18, OpenSSL 1.0.1e-4</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">OpenBSD 5.3 (OpenSSL 1.0.1c 10 May 2012) and 5.4 (OpenSSL 1.0.1c 10 May 2012)</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">FreeBSD 10.0 - OpenSSL 1.0.1e 11 Feb 2013</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">NetBSD 5.0.2 (OpenSSL 1.0.1e)</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">OpenSUSE 12.2 (OpenSSL 1.0.1c)</span></li> </ul> <span style="font-family: Arial, Helvetica, sans-serif;">Operating system distribution with versions that are not vulnerable:</span><br /> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">Debian Squeeze (oldstable), OpenSSL 0.9.8o-4squeeze14</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">SUSE Linux Enterprise Server</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">FreeBSD 8.4 - OpenSSL 0.9.8y 5 Feb 2013</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">FreeBSD 9.2 - OpenSSL 0.9.8y 5 Feb 2013</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">FreeBSD 10.0p1 - OpenSSL 1.0.1g (At 8 Apr 18:27:46 2014 UTC)</span></li> </ul> <ul style="background-color: white; box-sizing: border-box; color: #222222; line-height: 28.571430206298828px; margin-bottom: 10px; margin-top: 0px;"> <li style="box-sizing: border-box;"><span style="font-family: Arial, Helvetica, sans-serif;">FreeBSD Ports - OpenSSL 1.0.1g (At 7 Apr 21:46:40 2014 UTC)</span></li> </ul> </div> <h2> <span style="font-family: Arial, Helvetica, sans-serif; font-size: large;"> Detect if your machine is vulnerable.</span></h2> <div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <div class="separator" style="clear: both; text-align: center;"> <a href="http://upload.wikimedia.org/wikipedia/commons/thumb/c/cb/Heartbleed_bug_explained.svg/554px-Heartbleed_bug_explained.svg.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="180" src="http://upload.wikimedia.org/wikipedia/commons/thumb/c/cb/Heartbleed_bug_explained.svg/554px-Heartbleed_bug_explained.svg.png" width="320" /></a></div> <span style="font-family: Arial, Helvetica, sans-serif;">If you are running a web server with SSL enabled, you can test whether it is vulnerable with this tool:</span></div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <a href="https://filippo.io/Heartbleed/#ezadblog.my" rel="nofollow" target="_blank"><span style="font-family: Arial, Helvetica, sans-serif;">http://filippo.io/Heartbleed/</span></a></div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Alternatively, to detect if your machine is vulnerable to this bug, please log into your servers and check the OpenSSL version by executing the  below command:</span></div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">openssl version -a</span></pre> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">If the version in the output is greater or <span style="color: red;"><strong>equal to "1.0.1" and lower or equal to "1.0.1f "</strong></span>, you may be affected. An example of an affected version would be:</span></div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">$> openssl version -a OpenSSL <span style="color: red;"><strong>1.0.1</strong></span> 14 Mar 2012 built on: Wed Jan  8 20:45:51 UTC 2014 platform: debian-amd64 </span></pre> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Please note the version mentioned: "1.0.1", which is in the range of affected versions. Another detail to check is the "built on" information:</span></div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">$> openssl version -a ... built on: <span style="color: red;"><strong>Wed Jan  8 20:45:51 UTC 2014</strong></span> ...</span></pre> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span></div> <div style="background-color: white; line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Some Linux distributions have provided security patches that fix the vulnerability without upgrading OpenSSL. The "built on:" date should be <span style="color: green;"><strong>newer or equal to April 2014</strong> </span>to consider it updated. An example of patched OpenSSL version would be:</span></div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">/usr/bin/openssl version -a OpenSSL <strong>1.0.1</strong> 14 Mar 2012 built on: <span style="color: green;"><strong>Mon Apr 7 20:33:29 UTC 2014</strong></span> platform: debian-amd64 </span></pre> </div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Where the OpenSSL is in the vulnerable range but it was patched on April 2014:</span></div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Another non-vulnerable version (this one, easier to identify) will look like:</span></div> <div style="background-color: white; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">openssl version -a OpenSSL <strong><span style="color: green;">1.0.1g</span></strong> 7 Apr 2014 built on: Tue Apr  8 09:07:07 CEST 2014 platform: linux-x86_64 </span></pre> </div> <div style="background-color: white; margin: 0px; padding: 0px;"> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="margin: 0px; padding: 0px;"> <div style="line-height: 19.200000762939453px;"> <span style="font-family: Arial, Helvetica, sans-serif;">Where the version is greater than "1.0.1f", so it is safe. It also shows it was updated in April 2014. This is the output you will get if you use our patch installer to update your SSL version</span></div> <div style="line-height: 19.200000762939453px;"> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span></div> <h2> <span style="font-family: Arial, Helvetica, sans-serif; font-size: large;"><span style="line-height: 19.200000762939453px;">Update the system OpenSSL version</span></span></h2> <div> <div style="margin: 0px; padding: 0px;"> <div id="section_7" style="margin: 0px; padding: 0px;"> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">The procedure to update the system OpenSSL package will depend on you Linux distribution:</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <strong><span style="font-family: Arial, Helvetica, sans-serif;"> apt-based systems: Ubuntu, Debian...</span></strong></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo apt-get update sudo apt-get install -y libssl1.0.0 openssl</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">And then check that the version was updated (or patched, with a recent "built on" date):</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">/usr/bin/openssl version -a OpenSSL 1.0.1 14 Mar 2012 built on: <span style="color: green;"><strong>Mon Apr 7 20:33:29 UTC 2014</strong></span> ...</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">You will also need to restart any service using libssl. To check the list of those services, you could use the below command:</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo lsof -n | grep ssl | grep DEL vsftpd 479 root DEL REG 202,1 394910 /lib/x86_64-linux-gnu/libssl.so.1.0.0 monit 1254 root DEL REG 202,1 394910 /lib/x86_64-linux-gnu/libssl.so.1.0.0</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">And then restart the services (depending on your specific system):</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo /etc/init.d/monit restart sudo /etc/init.d/vsftpd restart</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <div style="margin-top: 0.75em; padding: 0px;"> </div> <div style="margin: 0px; padding: 0px;"> </div> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <strong><span style="font-family: Arial, Helvetica, sans-serif;">yum-base systems: RedHat, CentOS, Fedora...</span></strong></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo yum -y update openssl</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">And then check that the version was updated (or patched, with a recent "built on" date):</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">/usr/bin/openssl version -a OpenSSL 1.0.1 14 Mar 2012 built on: <span style="color: green;"><strong>Mon Apr 7 20:33:29 UTC 2014</strong></span> ...</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">You will also need to restart any service using libssl. To check the list of those services, you could use the below command:</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo lsof -n | grep ssl | grep DEL vsftpd 479 root DEL REG 202,1 394910 /lib/x86_64-linux-gnu/libssl.so.1.0.0 monit 1254 root DEL REG 202,1 394910 /lib/x86_64-linux-gnu/libssl.so.1.0.0</span></pre> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> <span style="font-family: Arial, Helvetica, sans-serif;">And then restart the services (depending on your specific system):</span></div> <div style="line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> <pre style="background-color: #fefefe; border-left-color: rgb(170, 170, 170); border-left-style: solid; border-left-width: 4px; color: #777777; line-height: 19.200000762939453px; margin-left: 1em; margin-top: 0.75em; overflow: auto; padding: 0px 0px 0px 1em;"><span style="font-family: Arial, Helvetica, sans-serif;">sudo /etc/init.d/monit restart sudo /etc/init.d/vsftpd restart </span></pre> <div style="line-height: 19.200000762939453px;"> <span style="font-family: Arial, Helvetica, sans-serif;"><br /></span></div> <h2> <span style="font-family: Arial, Helvetica, sans-serif; font-size: large;"><span style="line-height: 19.200000762939453px;">Next Steps</span></span></h2> <div> <div style="line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <strong><span style="font-family: Arial, Helvetica, sans-serif;">First, after apllying the patches above, double-check whether your web site is ok now using this tool:</span></strong></div> <div style="line-height: 19.200000762939453px; margin-top: 0.75em; padding: 0px;"> <a href="https://filippo.io/Heartbleed/#ezadblog.my" rel="nofollow" target="_blank"><span style="font-family: Arial, Helvetica, sans-serif;">http://filippo.io/Heartbleed</span></a></div> <div style="margin-top: 0.75em; padding: 0px;"> <span style="line-height: 19.200000762939453px;"><span style="font-family: Arial, Helvetica, sans-serif;">The vulnerability allows an attacker to steal you private keys, which would allow it to decrypt any information, as well as impersonating your server so it is advised to revoke the compromised keys and reissuing and redistributing new ones.</span></span></div> <div style="margin-top: 0.75em; padding: 0px;"> <br /></div> <div style="margin-top: 0.75em; padding: 0px;"> <span style="line-height: 19.200000762939453px;"><span style="font-family: Arial, Helvetica, sans-serif;">This is only necessary if you already configured HTTPS with your own certificate. In this case regenerate new certificates and configure them again in your server.</span></span></div> </div> </div> </div> <div style="font-family: 'Lucida Grande', Verdana, Arial, sans-serif; font-size: 12px; line-height: 19.200000762939453px; margin: 0px; padding: 0px;"> </div> </div> </div> </div> </div>

• 
• 

1. 1
2. 2

• Previous
• Next

Heartbleed bug: What you need to know

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS e…

Read more »

3 way to crack facebook password

<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUTR5xjY2svMYt725mGzTS7eNXmoW6smuyxnCYK8P6OzZbWe5ceBR2cjgAFvnTNdwoRU1v1wcaGX-dCtsKQJ8-5YJ0A80S_bQWN6JcotagDwKJUVR0wqT39e_LxDlWFfKRs0Ge8Z7RGNc/s1600/facebook1.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="208" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhUTR5xjY2svMYt725mGzTS7eNXmoW6smuyxnCYK8P6OzZbWe5ceBR2cjgAFvnTNdwoRU1v1wcaGX-dCtsKQJ8-5YJ0A80S_bQWN6JcotagDwKJUVR0wqT39e_LxDlWFfKRs0Ge8Z7RGNc/s1600/facebook1.jpg" width="320"></a></div> <br> <br> <h2> Method 1: Reset the Password</h2> The easiest way to “hack” into someone’s Facebook is through resetting the password. This could be easier done by people who are friends with the person they’re trying to hack.<br> <ul> <li>The first step would be to get your friend’s Facebook email login. If you don’t already know it, try looking on their Facebook page in the Contact Info section.</li> <li>Next, click on <strong>Forgotten your password?</strong> and type in the victim’s email. Their account should come up. Click <strong>This is my account</strong>.</li> <li>It will ask if you would like to reset the password via the victim’s emails. This doesn’t help, so press <strong>No longer have access to these?</strong></li> <li>It will now ask <strong>How can we reach you?</strong> Type in an email that you have that also isn’t linked to any other Facebook account.</li> <li>It will now ask you a question. If you’re close friends with the victim, that’s great. If you don’t know too much about them, make an educated guess. If you figure it out, you can change the password. Now you have to wait 24 hours to login to their account.</li> <li>If you don’t figure out the question, you can click on <strong>Recover your account with help from friends</strong>. This allows you to choose between three and five friends.</li></ul>

3 way to crack facebook password

Method 1: Reset the Password The easiest way to “hack” into someone’s Facebook is through resetting the password. This could be easier done by people who are friends with the person they’re trying …

Read more »

How to detect operating system using user agent

In computing, a user agent is software (a software agent) that is acting on behalf of a user. For example, an email reader is a mail user agent, and in the Session Initiation Protocol (SIP), the term user agent refers to both end points of a communications session.<br /> <br /> In many cases, a user agent acts as a client in a network protocol used in communications within a client–server distributed computing system. In particular, the Hypertext Transfer Protocol (HTTP) identifies the client software originating the request, using a "User-Agent" header, even when the client is not operated by a user.<br /> <br /> <h1> Standard User Agent browser</h1> Most Web browsers use a User-Agent value as follows: <i>Mozilla/[version] ([system and browser information]) [platform] ([platform details]) [extensions]</i>. For example, Safari on the iPad has used the following:<br /> <br /> <pre>Mozilla/5.0 (iPad; U; CPU OS 3_2_1 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko)Mobile/7B405</pre> The components of this string are as follows:<br /> <ul> <li><i>Mozilla/5.0</i>: Previously used to indicate compatibility with the Mozilla rendering engine</li> <li><i>(iPad; U; CPU OS 3_2_1 like Mac OS X; en-us)</i>: Details of the system in which the browser is running</li> <li><i>AppleWebKit/531.21.10</i>: The platform the browser uses</li> <li><i>(KHTML, like Gecko)</i>: Browser platform details</li> <li><i>Mobile/7B405</i>: This is used by the browser to indicate specific enhancements that are available directly in the browser or through third parties. An example of this is Microsoft Live Meeting which registers an extension so that the Live Meeting service knows if the software is already installed, which means it can provide a streamlined experience to joining meetings.</li> </ul> Notable exceptions include Opera, which is a web browser, but does not include Mozilla in its User-Agent string.<br /> <br /> <h1> Window User Agent</h1> <pre>Mozilla/5.0 (Windows NT 5.1; rv:5.0) Gecko/20100101 Firefox/5.0</pre> <ul> <li><i>Windows NT 5.1; </i>: Window XP operating system as platform</li> <li><i>Firefox/5.0</i>: Mozilla Firefox version 5.0 as a browser</li> </ul> <br /> <pre>Mozilla/5.0 (Windows NT 6.0) AppleWebKit/535.2 (KHTML, like Gecko) Chrome/15.0.874.120 Safari/535.2</pre> <ul> <li><i>Windows NT 6.0</i>: Window Vista operating system as platform</li> <li><i>Chrome/15.0.874.120</i>: Google chrome version 15.0.874.120 as a browser</li> </ul> <br /> <pre>Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0)</pre> <ul> <li><i>Windows NT 6.1</i>: Window 7 operating system as platform</li> <li><i>MSIE 10.0</i>: Internet explorer version 10 as a browser</li> <li><i>WOW64;</i>: A 32-bit window application is running on a 64-bit processor</li> </ul> <br /> <pre>Mozilla/5.0 (Windows; U; Windows NT 6.2; en-US) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27</pre> <ul> <li><i>Windows NT 6.2</i>: Window 8 operating system as platform</li> <li><i>Version/5.0.4 Safari/533.20.27</i>: Safari version 5.0.4 as a browser</li> <li><i>U;</i>: Security value (N for no security, U for strong security, I for weak security)</li> </ul>

How to detect operating system using user agent

In computing, a user agent is software (a software agent) that is acting on behalf of a user. For example, an email reader is a mail user agent, and in the Session Initiation Protocol (SIP), the term …

Read more »

How your Browser Speeds up Cross Domain Loading using DNS Prefetching

<strong>How it Works</strong><br> What DNS prefetching does is attempt to resolve domain names before we, the users, try to follow a link. This is accomplished using the computer's built-in DNS resolution mechanism. Once a domain name has been resolved, if we do navigate to that domain, there will be no effective delay due to DNS resolution time. While downloading speed remains the same, looking up the IP address before hand will save you an easily perceptible second or two when going from page to page. A good example where DNS prefetching can really help is when a user is looking at a page with many links to various domains, such as a search results page. When the browser encounters an a hyperlink that does not share the same domain name as the current location, it first checks its cache and then, lacking a cached copy, resolves the domain to the associated IP address through a request from a DNS server. These requests happen in the background so as to not block the rendering of the page. Moreover, since all this takes place in parallel with the user's reading of the page, it places only a negligible load on CPU and network resources. How much navigation time will a user save can range from an average savings of about 200 milliseconds for non-cached content, to one to two seconds for the worst DNS resolution delays.<br> By default, prefetching of embedded link hostnames is not performed on documents loaded over HTTPS. You can change this by setting the network.dns.disablePrefetchFromHTTPS browser preference to false.<br> <br>

How your Browser Speeds up Cross Domain Loading using DNS Prefetching

How it Works What DNS prefetching does is attempt to resolve domain names before we, the users, try to follow a link. This is accomplished using the computer's built-in DNS resolution mechanism. O…

Read more »

Wireless Threats: Is Your Broadband Secure Enough?

<div class="MsoNormal"> Internet use in Malaysia is at an all-time high and is still growing, and broadband adoption is rapidly spreading along with mobile connectivity. In this environment of increasing digital interconnection, security threats are likewise growing in number.<o:p></o:p></div> <div class="MsoNormal"> As an active broadband user, you at least need to know the threats and the preventive measures available to pre-empt them.<o:p></o:p></div> <h2> Increased Risk, Improved Security<o:p></o:p></h2> <div class="MsoNormal"> Findings from industry leaders and research institutions like Alcatel-Lucent are showing signs of an increased number of security threats to broadband networks, both fixed and mobile. Data points out that the wireless threat trend is growing with telling statistics, including:<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l3 level1 lfo4; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>10% of home networks have been infected by Malware in the second quarter of 2013<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l3 level1 lfo4; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>6% of home networks were shown to exhibit high-level security threats, including rootkits and Trojan banking viruses<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-left: .5in; mso-add-space: auto; mso-list: l3 level1 lfo4; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>0.5% of mobile were invaded by Malware in the second quarter of 2013<o:p></o:p></div> <div class="MsoNormal"> Compared to data from the previous quarter, the numbers indicate a rise in threats to broadband networks. The research was conducted in Europe, but the same analysis would apply especially for a boisterous and dynamic market full of technologically-agile users like Asia.<o:p></o:p></div> <div class="MsoNormal"> These security threats are being used by hackers to perform illicit activities ranging from the simply annoying, like spamming, to the devastatingly dangerous, like personal identification theft and espionage.<o:p></o:p></div> <h2> Broadband Gateways<o:p></o:p></h2> <div class="MsoNormal"> Broadband networks are 500% more prone to security threats compared to other forms of internet connectivity, including dial-up. Hackers typically perform three general activities when breaking into wireless networks:<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l1 level1 lfo3; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Use them as stepping stones to perform more attacks<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l1 level1 lfo3; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Use them to store illegal copies of software or digital goods<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-left: .5in; mso-add-space: auto; mso-list: l1 level1 lfo3; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Launch waves of unsolicited activities (spamming, illegal information collection, et al)<o:p></o:p></div> <div class="MsoNormal"> Malware, viruses, and hackers share the same “gateways” to attack your broadband connection or network. Some of the most common entryways include:<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l2 level1 lfo2; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span><b>Phishing</b> – Ever received a suspicious email claiming to be from your bank, asking for personal information? Phishing is nearly as old as email itself, but modern variations can be very complex, making it difficult for the layman to see it for what it is. Some phishing setups even buy official-sounding domain names and setup email addresses from them and then contact people.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l2 level1 lfo2; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span><b>Cookies</b> – Cookies are your browser’s way to track your internet surfing activities to make sure it keeps your preferences for websites you visit regularly. Unfortunately, because cookies can store information like passwords and other similarly telling data on your activities and behaviour online, they are also usually targeted by hackers.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l2 level1 lfo2; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span><b>Spyware, adware, malware</b> – All of these virus-ware are designed with devious endeavors: spyware spies on your computer activities, adware collects information on your behaviour online so it can spam you with ads, and malware is generally any piece of code intent on causing harm to your computer in any way. All of these can be gateways into your broadband network.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-left: .5in; mso-add-space: auto; mso-list: l2 level1 lfo2; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span><b>Ports</b> – Your computer interfaces with other devices connected to it via “ports,” and a single computer can have thousands of ports. A good number of them connect to your network, and each one is a vulnerability that can potentially be taken advantage of.<o:p></o:p></div> <div class="MsoNormal"> These are just a handful of examples, and hackers are usefully ready to exploit them all and more to get what they want.<o:p></o:p></div> <h2> Implementing Measures for Tighter Wireless Security<o:p></o:p></h2> <div class="MsoNormal"> It’s not all hopeless, gloom, and doom for your broadband network. Your firewall, your anti-virus, and the individual efforts implemented by your trusted websites and service providers all counter and pre-empt any malicious attempts to compromise your network or your computer.<o:p></o:p></div> <div class="MsoNormal"> For your part, the first step is to arm yourself with knowledge on how these wireless threats affect you, and how they work, so you can prepare properly. If you know how a phishing scam works you’re less likely to be victimized, right?<o:p></o:p></div> <div class="MsoNormal"> Beyond that, however, there are always best practices you can adhere to so you can ensure that you are part of the fight against these wireless broadband threats:<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Faithfully install and upgrade software, apps, games, and anything installed in your device. These patches and updates are typically offered free by providers, as they are also constantly fighting against broadband threats.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Always use a firewall. Your firewall is your sifter that screens potentially dangerous information and stops it from ever going into your computer or network. You have a network firewall and a computer firewall, at the very least. You can control its settings to allow trusted data to always pass through, which still provides sufficient flexibility for good security.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-bottom: .0001pt; margin-bottom: 0in; margin-left: .5in; margin-right: 0in; margin-top: 0in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Deploy an anti-virus. Anti-virus providers always try to keep abreast of developments in the industry, and are always updating their databases so your software always knows about the latest viruses or other threats to your security.<o:p></o:p></div> <div class="MsoNormalCxSpMiddle" style="margin-left: .5in; mso-add-space: auto; mso-list: l0 level1 lfo1; text-indent: -17.95pt;"> <!--[if !supportLists]--><span style="font-family: "Arial","sans-serif"; mso-fareast-font-family: Arial;">●<span style="font-family: 'Times New Roman'; font-size: 7pt;">     </span></span><!--[endif]--><span dir="LTR"></span>Use an Intrusion Detection System (IDS). An IDS does exactly what it sounds like: it provides warnings about potential attacks or illicit entries into your system. It can also monitor critical areas of your computer or network.<o:p></o:p></div> <div class="MsoNormal"> <br /></div> <br /> <div class="MsoNormal"> Ask your service providers for more information and more options to prepare yourself against wireless threats to broadband security.<o:p></o:p><br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="http://www.gravatar.com/avatar/b2a4f04659d5bb4b310e233323ed8190.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img alt="Ian G. Elbanbuena" border="0" src="http://www.gravatar.com/avatar/b2a4f04659d5bb4b310e233323ed8190.png" title="Ian G. Elbanbuena" /></a></div> <span style="font-family: Calibri, sans-serif; font-size: 11pt; line-height: 107%;"><a href="https://plus.google.com/u/0/110532977385282494579/" target="_blank"><span style="color: #1155cc;">Ian G. Elbanbuena</span></a> is a blogger and infopreneur who writes on various topics mainly finance, web security, network connections, broadband plans and other technical topics . At present he works as marketing staff at <a href="http://comparehero.my/" target="_blank"><span style="color: #1155cc;">comparehero.my</span></a>, Malaysia's leading comparison website. This portal helps individuals in making the best decision by comparing rates from different  finance providers.</span></div>

Wireless Threats: Is Your Broadband Secure Enough?

Internet use in Malaysia is at an all-time high and is still growing, and broadband adoption is rapidly spreading along with mobile connectivity. In this environment of increasing digital interconnec…

Read more »

Simple step to use php.ini using htaccess

If you use linux hosting such as cpanel, you really are not able to update your php.ini settings. This is the best way to use your own php.ini in your hosting. But make sure it not read by public and over the internet.<br> Edit the .htaccess file and use this code.<br> <br> <br><pre style="font-family:arial;font-size:12px;border:1px dashed #CCCCCC;width:99%;height:auto;overflow:auto;background:#f0f0f0;;background-image:URL(https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEioGLmb-hQK_k3NcEuv4M23qo1WEp4FA9B4ou74WhFZAEWlK1bStKo3-M7hK3PeqxKIwAWrmgJb4fkpIQPSok8c64L0jLBtgCu9h9xzw9-40YQhAlVZa0hqyoLNS-nVSPOhkg0lRN9TRLhC/s320/codebg.gif);padding:0px;color:#000000;text-align:left;line-height:20px;"><code style="color:#000000;word-wrap:normal;"> SetEnv PHPRC /home/username/dir/to/php.ini </code></pre>

Simple step to use php.ini using htaccess

If you use linux hosting such as cpanel, you really are not able to update your php.ini settings. This is the best way to use your own php.ini in your hosting. But make sure it not read by public and …

Read more »

SQL Injection-how about your site ?

<br> Many web developers are unaware of how SQL queries can be tampered with, and assume that an SQL query is a trusted command. It means that SQL queries are able to circumvent access controls, thereby bypassing standard authentication and authorization checks, and sometimes SQL queries even may allow access to host operating system level commands.<br> <br> Direct SQL Command Injection is a technique where an attacker creates or alters existing SQL commands to expose hidden data, or to override valuable ones, or even to execute dangerous system level commands on the database host. This is accomplished by the application taking user input and combining it with static parameters to build an SQL query. The following logs examples are based on true stories, unfortunately.<br>

SQL Injection-how about your site ?

Many web developers are unaware of how SQL queries can be tampered with, and assume that an SQL query is a trusted command. It means that SQL queries are able to circumvent access controls, thereby b…

Read more »

New Standard Pushes for a More Secure Web

There is no silver bullet when it comes to encryption. Even the most complex, invulnerable encryption today could be child’s play in the future. The NIST (National Institute of Standards and Technology) is <a href="http://www.pcworld.com/businesscenter/article/260922/new_nist_encryption_guidelines_may_force_federal_agencies_to_replace_old_websites.html">publishing new encryption standards</a> for public review to try and keep up with the times and stay a step ahead of the bad guys. <br> <a href="http://images.pcworld.com/images/article/2012/04/secure_browser-11351369.jpg"><img alt="" height="227" src="http://images.pcworld.com/images/article/2012/04/secure_browser-11351369.jpg" width="320"></a>The NIST is a government agency, and its guidelines only really impact other government agencies. However, many security experts and organizations look to the NIST standards as a baseline. <br> All of security is more or less a game of cat and mouse. Security measures are put in place, and they work for a while until attackers find the weak spots, or figure out how to compromise or circumvent them. Then, security experts have to devise new methods, and the game starts over. Website encryption, and the certificates we use to prove a site is legitimate, are subject to this same cause and effect.<br>

New Standard Pushes for a More Secure Web

There is no silver bullet when it comes to encryption. Even the most complex, invulnerable encryption today could be child’s play in the future. The NIST (National Institute of Standards and Technolog…

Read more »

Defcon Wi-Fi Hack Called No Threat to Enterprise WLANs

<p>Enterprise Wi-Fi networks can keep using WPA2 security safely, despite a <a href="http://www.networkworld.com/news/2012/072912-tools-released-at-defcon-can-261242.html">recent Defcon exploit</a> that has been widely, but wrongly, interpreted as rendering it useless. <p>The exploit successfully compromised a legacy authentication protocol, MS-CHAPv2, which was created by Microsoft years ago. But the vulnerabilities of this protocol (and other similar ones) are well known, and Wi-Fi Protected Access 2 makes use of additional mechanisms to protect them. That protection is still in force, according to both the Wi-Fi Alliance and a wireless architect, who blogged in depth on this issue after the Defcon exploit was reported. <p>IN PICTURES:&#160;<a href="http://www.networkworld.com/slideshow/58324">Quirkiest moments at 2012 Black Hat security conference</a> <p>In the wake of the Defcon demonstration, enterprises were being urged by some to abandon MS-CHAP, the Protected Extensible Authentication Protocol (PEAP), WPA2 or all of the above. None of that is necessary. <p>The Wi-Fi Alliance has reviewed the chapcrack tool and cloudcracker service announced last week at Defcon 20 and these tools do not present an exploitable vulnerability in Wi-Fi CERTIFIED products, according to statement issued by the Wi-Fi Alliance, via Kelly Davis-Felner, the WFA marketing director. These tools exploit previously-documented weaknesses in the use of Microsoft CHAP (MS-CHAP).&#160;All uses of MS-CHAP in WPA2 are protected by the Transport Layer Security (TLS) protocol. TLS is the same strong cryptographic technology that protects all online e-commerce transactions. TLS prevents interception of the MS-CHAP messages used in WPA2 Enterprise and effectively protects against attacks using chapcrack or cloudcracker.</p> </p></p></p></p>

Defcon Wi-Fi Hack Called No Threat to Enterprise WLANs

Enterprise Wi-Fi networks can keep using WPA2 security safely, despite a recent Defcon exploit that has been widely, but wrongly, interpreted as rendering it useless. The exploit successfully compromi…

Read more »

Is your website safe enough ?

When i wake up this morning and see statistic of <a href="http://www.ezadnet.my/" target="_blank">my site</a> and <a href="http://www.ezadblog.my/">my blog</a> i get many bad bot and spam that want try to access to my domain. it is nothing strange for me. as I tried to fight bad bots, suspicious user agent, spam and everything every day.<br> <br> Do you think your blog is safe enough ? think again, even for blogger. This is spam statistic for this blog when i wake up this day.<br>

Is your website safe enough ?

When i wake up this morning and see statistic of my site and my blog i get many bad bot and spam that want try to access to my domain. it is nothing strange for me. as I tried to fight bad bots, suspi…

Read more »

Hotlink Protection

<p>Hotlink protection prevents other websites from directly linking to files on your website. Other sites will still be able to link to any file type that you don't specify (i.e., HTML files). An example of hotlinking would be using an <img> tag to display an image from your site somewhere else on the Web. The end result is that the other site is stealing your bandwidth.</p> <div id="codeSnippetWrapper" class="csharpcode-wrapper"> <div id="codeSnippet" class="csharpcode"><pre class="alt"><span id="lnum1" class="lnum"></span></pre></div><br><div id="codeSnippet" class="csharpcode"><pre style="overflow: auto; border-top: #cecece 1px solid; border-right: #cecece 1px solid; border-bottom: #cecece 1px solid; padding-bottom: 5px; padding-top: 5px; padding-left: 5px; min-height: 40px; border-left: #cecece 1px solid; padding-right: 5px; width: 650px; background-color: #fbfbfb"><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #d6d6d6"> 1: RewriteCond %{HTTP_REFERER} !^$<br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #ffffff"> 2: RewriteCond %{HTTP_REFERER} !^http:<span style="color: #008000">//yoursite.com/.*$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #d6d6d6"> 3: RewriteCond %{HTTP_REFERER} !^http:<span style="color: #008000">//yoursite.com$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #ffffff"> 4: RewriteCond %{HTTP_REFERER} !^http:<span style="color: #008000">//www.yoursite.com/.*$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #d6d6d6"> 5: RewriteCond %{HTTP_REFERER} !^http:<span style="color: #008000">//www.yoursite.com$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #ffffff"> 6: RewriteCond %{HTTP_REFERER} !^https:<span style="color: #008000">//yoursite.com/.*$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #d6d6d6"> 7: RewriteCond %{HTTP_REFERER} !^https:<span style="color: #008000">//yoursite.com$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #ffffff"> 8: RewriteCond %{HTTP_REFERER} !^https:<span style="color: #008000">//www.yoursite.com/.*$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #d6d6d6"> 9: RewriteCond %{HTTP_REFERER} !^https:<span style="color: #008000">//www.yoursite.com$ [NC]</span><br></pre><pre style="font-size: 12px; font-family: consolas,'Courier New',courier,monospace; margin: 0em; width: 100%; background-color: #ffffff"> 10: RewriteRule .*\.(jpg|jpeg|gif|png|ico|bmp|swf|wav|mp3|pdf|xls|xlsx|xps|psd|dxf|eps|ps|ai|tiff|svg|ttf|doc|docx|css|js|jsp|cfm|htm|shtml|shtm|xhtml|xhtm|jsp|phtml|phtm|php3|php4|php5|pl|pm|plx|xsml|log|json|otf|woff)$ http:<span style="color: #008000">//www.yoursite.com/ [R,NC]</span></pre></pre></div></div><br><div> </div><br>

Hotlink Protection

Hotlink protection prevents other websites from directly linking to files on your website. Other sites will still be able to link to any file type that you don't specify (i.e., HTML files). An example…

Read more »

Remove bad word from your site

Sometime when we need to block bad word or filthy words we need to install plugin, module and etc. Or sometime we spent money to block all bad word.<br> from what I know most of the bad word comes from bad bot. Sometime from google, bing or yahoo search query (HTTP_REFERER). to prevent bad bot come to your site you <a href="/2013/01/spammers-bad-bots-and-some-proxies.html" target="_blank">can refer my article here</a> and check bad user agent on <a href="http://www.projecthoneypot.org/harvester_useragents.php" target="_blank">project honey pot</a> or like this.<br> <br> <br> <pre style="font-family:arial;font-size:12px;border:1px dashed #CCCCCC;width:99%;height:auto;overflow:auto;background:#f0f0f0;;background-image:URL(https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEioGLmb-hQK_k3NcEuv4M23qo1WEp4FA9B4ou74WhFZAEWlK1bStKo3-M7hK3PeqxKIwAWrmgJb4fkpIQPSok8c64L0jLBtgCu9h9xzw9-40YQhAlVZa0hqyoLNS-nVSPOhkg0lRN9TRLhC/s320/codebg.gif);padding:0px;color:#000000;text-align:left;line-height:20px;"><code style="color:#000000;word-wrap:normal;"> RewriteCond %{HTTP_USER_AGENT} ^$ [OR] RewriteCond %{HTTP_USER_AGENT} ^(java|curl|wget) [NC,OR] RewriteCond %{HTTP_USER_AGENT} (winhttp|HTTrack|clshttp|archiver|loader|email|harvest|extract|grab|miner|Ezooms|Load_Impact) [NC,OR] RewriteCond %{HTTP_USER_AGENT} (libwww-perl|curl|wget|python|nikto|scan|webOS|Exabot|InAGist|UnwindFetchor|NING) [NC,OR] RewriteCond %{HTTP_USER_AGENT} (<|>|’|%0A|%0D|%27|%3C|%3E|%00) [NC] RewriteRule ^(.*)$ - [F] </code></pre> <br>

Remove bad word from your site

Sometime when we need to block bad word or filthy words we need to install plugin, module and etc. Or sometime we spent money to block all bad word. from what I know most of the bad word comes from ba…

Read more »

Login facebook on share computer

First thing need to know, DONT TRUST ANYONE. Even your girlfriend. heheh..<br>When we submit or sign any forms such as login form in the browser we will leave autocomplete on each form. This means that email and other information will be stored on a shared computer.<br> And how can you does not see that email in the autocomplete form like facebook login? First you need to know your username. You can go to account setting to see your username or just click your profile.<br> <br> Is this your profile?

Login facebook on share computer

First thing need to know, DONT TRUST ANYONE. Even your girlfriend. heheh..When we submit or sign any forms such as login form in the browser we will leave autocomplete on each form. This means that em…

Read more »

XSS Protection

What is XSS protection ?<br> XSS mean <span class="st">Cross-site scripting is a type of computer security vulnerability typically found in Web applications. Due to breaches of browser security, XSS enables attackers to inject client-side script into Web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same origin policy. Cross-site scripting carried out on websites accounted for roughly 84% of all security vulnerabilities documented by Symantec as of 2007. Their effect may range from a petty nuisance to a significant security risk, depending on the sensitivity of the data handled by the vulnerable site and the nature of any security mitigation implemented by the site's owner. More information about XSS <a href="http://en.wikipedia.org/wiki/Cross-site_scripting" target="_blank">you can read here</a>.</span><br>

XSS Protection

What is XSS protection ? XSS mean Cross-site scripting is a type of computer security vulnerability typically found in Web applications. Due to breaches of browser security, XSS enables attackers to i…

Read more »