Index ¦ Archives ¦ Atom > Tag: CVE

The need for new CVEs

LWN has an interesting article CVE woes and alternatives about how hard it is to get a CVE number for a vulnerability. The general thrust is that some researchers have found it too hard and so simply don't bother.

There were some suggestions about a new system that makes it …


Why I can't patch the Juniper Backdoor

It's Thursday the 14th of January 2016, and it's now 25 days after I first heard about the Juniper backdoor (I heard about it on Monday the 21st of December 2015) and I still haven't patched it yet. We don't use the VPN and have never had SSH open to …


Security and the Media

It's time for me to don my grumpy old man pants and have a whinge about how the attention of the main stream media is like a kitten with glittery bauble. Running all over the place focusing on the flashy and the new instead of focusing on the real issues …


Estimating the security of software

Estimating the security of software is something that most systems administrators do instinctively, whether consciously or subconsciously. I have heard people say things like "Don't use WordPress it's always getting hacked", "Linux is more secure than Windows"1 or "Macs don't get viruses"2. All of these are estimates about …

Creative Commons License
Content on this site is licensed under a Creative Commons Attribution 4.0 International License.
Built using Pelican. Based on a theme by Giulio Fidente on github.