TrueCrypt is a free open-source disk encryption software for Windows 7/Vista/XP, Mac OS X, and Linux. With TrueCrypt you can create virtual encrypted drives,  encrypt entire partitions and removable devices or entire hard drives. Watch this tutorial by Thirdfoundation for Windows or the MAC Version by Obrien1979

This is based on an older version of TrueCrypt, but after installation you will see that it looks all the same. For the most up-to-date version go to http://www.truecrypt.org/downloads

Windows Version

MAC Version

Technorati Tags: data encryption, data protection, Security, truecrypt, virtual drives

Related Posts

• October 25, 2010 -- Laptop, mobile and Firefox security
• March 26, 2010 -- Books for sale – Linux Shell, Qmail Handbook and SSL/TLS
• February 12, 2009 -- Important SQL and Exchange Server patches
• January 31, 2009 -- Is Mac Safer?
• December 16, 2008 -- Internet Explorer new vulnerability

I have been reading some interesting blog posts with suggested security measures for mobile devices, laptops and online.

1. Lessons I Learned When My Laptop Was Stolen – On http://lifehacker.com
2. How to Track and (Potentially) Recover Your Stolen Laptop or Android with Prey – On http://lifehacker.com
3. How To Protect Your Login Information From Firesheep – on http://techcrunch.com

The posts are really worth reading, and also the comments on them. In case you want to use this post as a bookmark for future reference, like I do, here is a list of the solutions mentioned in the posts above.

1. TrueCrypt – data encryption
2. Prey Project – track and (potentially) recover stolen laptop, Android or iPhone
3. Force-TLS Firefox addon – force selected websites to use HTTPS

Technorati Tags: Android, data encryption, Firefox, firesheep, force-tls, https, iPhone, laptop. mobile, prey, Security, stolen laptop, stolen phone, tracking

Related Posts

• August 22, 2011 -- TrueCrypt tutorial
• May 24, 2010 -- Mobile Apps overload?
• July 8, 2009 -- Android to iPhone Apps with XML
• December 16, 2008 -- Internet Explorer new vulnerability
• August 1, 2011 -- Chrome Overtakes Firefox for UK Number Two Browser Spot in July

I have selling on Amazon.co.uk a copy of each of the following books:

Linux Shell Scripting with Bash (Paperback) (SOLD)
by Ken O. Burtch (Author)
Linux Shell Scripting with Bash will help you learn to not only get your system up and running quickly by employing the Bash shell, but it will also show you professional scripting solutions through the use of structured programming and standard Linux development tools. The book focuses on the Linux environment, which the shell relies on to function, and the robust Linux tool set, making this book ideal for learning shell scripting. Real-world scripts are included that are readable, extendable and easy to debug. This book is an asset to any Linux user.

The Qmail Handbook (Paperback)
by David Sill (Author)
qmail is used by hundreds of ISPs and thousands of other sites, including Hotmail since 1997, which has over 30 million users. qmail is popular because of its security, reliability, speed, low memory use, user-controlled mailing lists, straightforward administration, and much more! An Introduction to qmail is designed to guide system and mail administrators of all levels of experience through the installation, configuration, and maintenance of a qmail server.

SSl and TLS: Building and Designing Secure Systems (Paperback)
by Eric Rescorla (Author)
SSL and TLS: Designing and Building Secure Systems offers clear and comprehensive descriptions of these security protocols and their implementation, and also provides “designs”–tried and true templates that suit various scenarios. Armed with this book, you can become well versed in the importance of SSL and TLS, be able to work with them to provide solutions, and furthermore identify an appropriate tested “design” that will solve the security problems of a proposed new network installation.

Technorati Tags: Amazon, Books, Email, IT Books, Linux, Linux Shell Scripting, Qmail, Security, Server System administration, SSL. TLS

Related Posts

• December 21, 2011 -- Auto start a program on Gnome 3
• December 14, 2011 -- Show Desktop icons in Gnome 3 on Open SUSE 12.1
• November 7, 2011 -- Arduino the Open Source hardware
• October 7, 2011 -- Spotify crashes in Linux under Wine
• August 22, 2011 -- TrueCrypt tutorial

A security issue has been identified in the Microsoft SQL Server 2000 Desktop Engine (WMSDE) that could allow an attacker to compromise your Microsoft Windows-based system and gain control over it (Bulletin MS09-004), and Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (Bulletin MS09-003).

The vulnerability in the MS Exchange Server is the most severe, Microsoft explains:

”This vulnerability means that any cybercriminal sending a well
crafted email attachment to an enterprise could gain complete control
over the server and gaining one of the keys to the kingdom…

All kinds of highly confidential and proprietary information pass
through an Exchange server every day.  Gaining control over it and its
content would be a gold mine to any cyber criminal,”  – Extracted from ZDNet

Other applications are also being patched up, Microsoft Visio and IE being included. Microsoft released its monthly security bulletin on the 10th of February.

Technorati Tags: Exchange, Microsoft Security, MS SQL, Security

Related Posts

• August 22, 2011 -- TrueCrypt tutorial
• October 25, 2010 -- Laptop, mobile and Firefox security
• March 26, 2010 -- Books for sale – Linux Shell, Qmail Handbook and SSL/TLS
• January 31, 2009 -- Is Mac Safer?
• December 16, 2008 -- Internet Explorer new vulnerability

I was reading this article on ZDNET.com “Is Mac still the safer bet?” by Adrian Kingsley-Hughes. This is a question that I have been asked many times also, “Is Mac safer than windows?” Although many times it sounded more like an affirmation than a question.

I wouldn’t say it’s safer, it’s just not as targeted. Once Mac becomes a target, the cyber criminals will have a lot of fun because of the lack of attention to security Mac users have. To switch platform with the sole reason of not having to think about security is very lame.

The Microsoft operating system is targeted  for its many vulnerabilities including the end users, who have now started to take security really seriously. Mac users have to step up on their care for security. Most problems I find with Mac users are:

•  Very simple (Unsecure) passwords
•  Blind trust in any program that is available for Macs (because its safe right!)
•  Addiction to desktop gadgets (because its safe right!)
•  Keychain unconditional love – store all and any passwords (this combined with my first point can be a disaster)
•  Will join any wireless network availabe (I am safe it’s a Mac)
•  Last but not least… they are  annoying. ;)

I do not intend to have a go at Apple/Mac and its users, but the lack of security awareness I have seen , specially the new ones recently switched from Windows, is scary. If a well developed targeted malware or virus were to be released now it would be a global disaster.

So my answer to the question is: “The operating system hasn’t been target untill then no one will know how much safer it is. Mac users brace yourselves!”

Technorati Tags: Apple, Apple Malware, Apple Virus, Mac, Security, Windows

Related Posts

• November 7, 2011 -- Arduino the Open Source hardware
• April 22, 2011 -- Has the iPad really overtaken Linux?
• March 11, 2010 -- The future of gaming is OpenGL
• May 12, 2009 -- Offline Blogging Tools
• January 28, 2009 -- Synergy – share mouse and keyboard cross platform

A new vulnerability in Microsoft Internet Explorer could allow remote code execution. There have been reports that several sites are infected with the malicious code to exploit IE users computers. Microsoft is investigating the problem and preparing an emergency software patch to resolve it. Microsoft said that the attack has been detected against IE 7 but versions 6 and 8 also could be vulnerable. Sophos has released further information about this threat.

Options for now are to switch to another browser until IE has been patched, some of your options are: Firefox, Chrome, Opera

Technorati Tags: Firefox, Internet Explorer, Opera, Security, Virus

Related Posts

• January 20, 2011 -- Push up the Web
• August 1, 2011 -- Chrome Overtakes Firefox for UK Number Two Browser Spot in July
• October 25, 2010 -- Laptop, mobile and Firefox security
• August 22, 2011 -- TrueCrypt tutorial
• April 6, 2011 -- Removing the Windows XP Security 2011 malware

the PHP version 5.2.7 was removed from distribution due to a bug that caused a security hole in some configurations. The bug was related to the magic_quotes_gpc which will be deprecated in version 2.6.

The PHP development team has officially announced the immediate availability of PHP 5.2.8. This release addresses a regression introduced by 5.2.7 in regard to the magic_quotes functionality, that was broken by an incorrect fix to the filter extension. All users who have upgraded to 5.2.7 are encouraged to upgrade to this release, alternatively you can apply a work-around for the bug by changing “filter.default_flags=0″ in php.ini.

Technorati Tags: PHP 5.2.7, PHP 5.2.8, Programming, Security, Web Programming

Related Posts

• November 7, 2011 -- Arduino the Open Source hardware
• August 22, 2011 -- TrueCrypt tutorial
• October 25, 2010 -- Laptop, mobile and Firefox security
• March 26, 2010 -- Books for sale – Linux Shell, Qmail Handbook and SSL/TLS
• July 8, 2009 -- Android to iPhone Apps with XML