[kwlug-disc] KWLUG site security (was: Firesheep: Open WiFi cookie stealing for the masses ...)

Fernando Duran liberosec at yahoo.ca
Thu Oct 28 16:11:10 EDT 2010


Hello,

It it helps, my company (WaterlooSecurity) will gladly donate a VPS (with new 
distro) to host kwlug.org and we can also (independently) do an external 
security assessment at no cost.

Cheers,
 ---------------------
Fernando Duran
http://www.fduran.com



----- Original Message ----
> From: Paul Nijjar <paul_nijjar at yahoo.ca>
> To: KWLUG discussion <kwlug-disc at kwlug.org>
> Sent: Wed, October 27, 2010 9:51:29 PM
> Subject: [kwlug-disc] KWLUG site security (was: Firesheep: Open WiFi cookie 
>stealing for the masses ...)
> 
> On Tue, Oct 26, 2010 at 08:11:32PM -0400, Lori Paniak wrote:
> > 
> >  Enough editorializing - time for a practical question: how secure is the
> >  kwlug site?  How can it be improved?  At what cost?  (Sounds like  a new
> > thread)
> 
> kwlug.org is not secure. It is on a shared host  that (from what I
> recall) runs a pretty old version of Apache. The Drupal  installation
> is hideously out of date as well. 
> 
> I don't know whether  CCJ/Clearline (who donates the space to us) is
> willing to investigate SNI or  not. 
> 
> 
> 
> - Paul
> 
> 
> -- 
> http://pnijjar.freeshell.org 
> 
> 
> _______________________________________________
> kwlug-disc_kwlug.org  mailing list
> kwlug-disc_kwlug.org at kwlug.org
> http://astoria.ccjclearline.com/mailman/listinfo/kwlug-disc_kwlug.org
> 





More information about the kwlug-disc_kwlug.org mailing list