As we always disable SSLv2 in Apache. Now it is SSLv3 turn. The recent news about the SSL 3 vulnerability is so important that I have to disable it as well. So just modify the ssl.conf of Apache [ssh]SSLProtocol All -SSLv2 -SSLv3[/ssh] The web site still has TLS 1.0, TLS 1.1 and TLS 1.2. For
Got an email from Adobe, it recommend me to reset the password of Adobe ID. There is an security incident happened this month early. So to minimize the potential harm to user account, it is better to reset password. Important Password Reset Information To view this message in a language other than English, please click
There are certain PHP configuration tat affect security features. The following recommended security configuration options is for production servers. register_globals set to off safe_mode set to off error_reporting set to off disable these functions: system(), exec(), passthru(), shell_exec(), proc_open(), and popen() open_basedir set for both the /tmp directory and the web root so that scripts
Windows Update in August 2013 on my Windows 7 64bit. Threr are three critical updates. All must-see. Cumulative Security Update for Internet Explorer (2862772) Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2850869) Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2876063)
It is time to update Windows. Here is the list of Windows Update 2013 July on my Windows 7 64bit. There are six security updates Vulnerabilities in .NET Framework and Silverlight Could Allow Remote Code Execution (2861561) Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2850851) Vulnerability in GDI+ Could Allow Remote Code
It is time to upgrade WordPress to the latest 3.5.1. It is a maintenance and security update. From the announcement post, this maintenance release addresses 37 bugs with version 3.5, including: Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. Media: Fix a collection of minor workflow and compatibility issues
Microsoft monthly Security updates of Nov. 2012 released today. My Windows 7 box received update for Win7 x64 KB2763523, Update for Office 2010 64bit edition, and Security update for Windows 7, for .Net framework, etc.
Microsoft monthly Security updates released today. Only one critical update Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319) Six important updates Vulnerability in Microsoft Works Could Allow Remote Code Execution (2754670) Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517) Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow