Bugtraq mailing list archives of UNIX, NT, Win95, Novell, and Mac, bugs and exploits.

Independent source for security vulnerabilities, alerts, and threats.

Explanations of basic IDS evasion techniques as well as suggested fixes and countermeasures to such attacks. Topics covered include basic string-matching weaknesses, polymorphic shell code, session splicing, fragmentation attacks, and denial of servic...

Example security policy to demonstrate policy writing techniques introduced in three earlier articles.

Computer network administrator faces multiple felony charges and years in prison for allegedly installing Distributed.net clients without permission. [SecurityFocus]

SecurityFocus BugTraq mailing list reports that the court order against the partners of the project has been suspended and the back-dooring functions in JAP were disabled.

SecurityFocus reports the Java Anonymous Proxy (JAP), used to anonymise access to the Internet, has been back-doored by court order.

An attacker with command over his own DNS service could gain root access if reverse DNS lookups are configured. Recent versions have been fixed.

News and editorials on security related topics, along with a database of security knowledge.

Provides security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.