Bauani's Historical Blog

Opinion on Issue(s) Which I, Ahamed Bauani Think About or Went Through It. Other Then That It Will Have Any Kind of News and Information Which I Think Useful for My Friends and Others in World. Oh, One more thing. I am currently not maintaining this blog anymore. To visit my new Blog, please Click Here -- Ahamed Bauani



Important information to Readars : This Blog is No Longer Maintaining by Bauani


Please Change your Bookmark to http://blog.bauani.org/ to get regular update from Ahamed Bauani Or

Subscribe to This RSS Feed to get Update of Bauani's New Blog

Tuesday, August 19, 2008

Current Bind DNS vulnerability Patches Coming



Current Bind DNS vulnerability Patches Coming | Patches coming today for DNS vulnerability

By Joe Barr on July 08, 2008 (8:05:22 PM)

Whether you're running Linux, Windows, Cisco, Sun, or other DNS servers, you are at risk from a newly discovered vulnerability. So says Dan Kaminsky, head of penetration testing research at IO Active, who accidently discovered the DNS "design flaw" earlier this year.

You can check whether the DNS servers you use are vulnerable by clicking the Check My DNS button in the upper right corner of Kaminsky's Web site.

Kaminsky says he made the discovery entirely by accident. When he realized the flaw was a fundamental design flaw that is universal in scope, he called for a summit of security researchers to decide on a course of action. That summit took place on the Microsoft campus on March 31, and out of it a multi-vendor patch solution was developed. Microsoft, Sun, Cisco, Bind, and other firms will be releasing patches for the flaw today. Linux distributions are expected to start providing patches today as well. Debian users already can find Bind patch instructions online.

The problem in general terms is described as insufficient randomness. Vendors have tried to deliver the fix in a way that can't be reverse-engineered to reveal the actual flaw. Full details on the flaw will not be revealed for 30 days, in order to allow system administrators time to evaluate and apply patches to their DNS servers. DNS clients are also at risk, but to a much smaller degree, and the focus at present continues to be on DNS servers.

According to Kaminsky, the rule for applying patches for this flaw should be, "If it recurses, patch it."

Source: http://www.linux.com/feature/141080

Labels: , , , , , ,

posted by Bauani @ 17:31 0 Comments Links to this post

Friday, August 8, 2008

Cyber Crime on Rise Financial Institutions at Risk



Financial institutions at risk due to rise of Cyber Crime

By: Mamunur Rashid, The Daily New Nation

Information Technology (IT) experts said each and every computer in the world is at the risk of being attacked by viruses, which is nothing but small programs written or used by the Cyber criminals and threatens the entire IT world.

Tanvir Ahmed Gaus, the Project Manager of US based Bangladesh IT Company the Jaxara IT Ltd, told the New Nation that 'Cyber Crime' is a name that turned into a "Big Deal" in many western countries in recent years. Cyber crime not only means credit card fraud, but also includes child pornography, mobile phone theft, network intrusion, spamming and all kinds of abuse of Internet.

Credit card fraud, hacking, child pornography are the most popular Cyber crimes, which has become a headache to the world community. Bangladesh is also in a vulnerable position and some of the crimes are gradually being introduced in our community. People have started abusing Internet, specially the young and teenagers are getting initiation into cyber crime slowly. A number of community website have been introduced, which the young girls and boys are using to exchange phone numbers, posting hidden videos or even pictures with nudity etc.

Apart from that Bangladesh's financial institutions are at risk from hackers. In the country financial institutions have introduced various online features like online banking, stock exchange transactions but are not able to provide the highest security. Source said the Cyber criminal networks through Internet have attacked our country's technology infrastructure. Recently, hackers interrupted the DSE transaction, which cost the small Entrepreneurs dearly.

It was a chance to get a glimpse at what the future holds for Internet security. The cell phones may contain information essential to solving a crime in the country.

To many young people, it may be at a stage of experimenting with the cyber space but the danger will be then when this small interest on hacking will become an organised crime.

Though the cyber crime hasn't become a headache for Bangladesh yet, but we should start preparing from now to prevent this. Be sure-it is coming; and coming with a great pace in the very near future.

"Most of the western countries and communities have cells to investigate and prevent cyber crimes for that cyber laws are being introduced," Gaus said.

Police sources said recently Dhaka Metropolitan Police formed a cyber crime unit to detect cyber criminals and to arrest them. However, this unit was not strong enough to protect society from the threat of cyber criminals.

Police source added that not a single case has been filled in this connection officially but unofficially many cyber crime cases have been lodged countrywide.

The Additional Deputy Commissioner of Detective Branch (DB) Md Masudur Rahman told the New Nation that the cyber crime unit was assisting law enforcement agencies in processing computer evidence that may hold rich clues to crimes.

"This work requires specialised investigators to uncover the information. The technology changes quickly and police staff have to be skilled continuously to be effective. Police here needed to build up relationships with the various law enforcement agencies overseas to stop the cyber crime," he added.

To prevent the cyber crime globally, representatives from over 68 government and corporate organisations like Sun Microsystems Inc, Dell Computers Inc and the US Department of Defence Cyber Crimes Unit came and showcased what they had to offer each other in the convention. The Cyber Panel was one of many sessions, but it covered a broad range of topics aimed at informing the civilian sector which way to prevent threats of the cyber crime.

Source: http://nation.ittefaq.com/issues/2008/08/06/news0957.htm
================================End of News Article ===============================

Congratulation for Tanvir Ahmed Gaus, One of My Fellow IT Professional, Currently Working as Project Manager of USA Based Bangladeshi IT Company "Jaxara IT Limited" for the interview on a top level daily news paper of Bangladesh.

But Tanvir, Where is the party on PizzaHUT, or the KFC Near your office? ;).

Have a Nice Upcoming Days...

Ahamed Bauani
http://www.bauani.org/

Labels: , ,

posted by Bauani @ 15:40 0 Comments Links to this post