How To Prevent Rolling Spam Factories

More documents

Recommendations

Info

Red Hat Linux 9• Kernel 2.4.20– POSIX Thread Library (NPTL)– Beta ACPI Support– Access Control Lists & Extended Attributes– User Mode Linux• XFree86 4.3.0– Pre Xorg• GNOME 2.2– 18 Major releases old• KDE 3.1– 3.x codeline defunct• Mozilla 1.2.1– Pre Firefox• OpenSSL 0.9.7a– 12 versions old– No 0.9.7x updates since 200612 SSG System Software Division
What Are These CVE, CVSS and CWE Things?• Common Vulnerability & Exposures (CVE)– Started in 1999 by MITRE Corporation– Keeps a database of all publicly known computer security defects– Since 1999: 49,856 registered security defects• Average of 7 vulnerabilities per day• Common Vulnerability Scoring System (CVSS)– Industry standard method of assessing severity of computer securityvulnerabilities based on measurement and expert assessment.– Widely Adopted• 0.0 – 3.9: Low severity• 4.0 – 6.9: Medium severity• 7.0 – 10.0: High severity• Common Weakness Enumeration (CWE)– Sponsored by MITREHigh2265346%Medium2408448%– Formal list of software weakness types• Buffer Overflows, Structure & Validity Problems, Channel & Path Errors, etc.Low31196%13 SSG System Software Division
Page 1: How To PreventRolling Spam Factorie
Page 4 and 5: Connectivity EvolutionThreat Space
Page 6 and 7: Who Are WeProtecting From?6 SSG Sys
Page 8 and 9: Security Hackers EcosystemNational
Page 10 and 11: Then Why Mac OS X Flashback?7.16.96
Page 14 and 15: Wheel of Linux Kernel Fortune!!!Num
Page 16 and 17: Critical Linux Kernel Defects (CVEE
Page 18 and 19: This Was Just The Linux Kernel!Only
Page 20 and 21: Reduce Attackable Surface Area• D
Page 22 and 23: Use Compiler Defenses• -Wformat -
Page 24 and 25: Systemd & Cgroups• Systemd is rep
Page 26 and 27: Integrity• Integrity Measurement

How To Prevent Rolling Spam Factories

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?