Network Security Archives

September 30, 2005

Re: Must we authenticate login forms (using SSL?)?, Antoine Martin, 22:32
Re: Must we authenticate login forms (using SSL?)?, Eoin Keary, 21:22
SAS 70 and software policies, James Strassburg, 20:41
Administrivia: At Ruxcon this weekend, Andrew van der Stock, 12:56
Re: Must we authenticate login forms (using SSL?)?, Antoine Martin, 12:16
Re: Must we authenticate login forms (using SSL?)?, Rogan Dawes, 11:46
RE: Must we authenticate login forms (using SSL?)?, Nathaniel S. H. Brown, 06:54
REPOST: "Exploiting the XmlHttpRequest object in IE" - paper by Amit Klein, Amit Klein (AKsecurity), 06:24
Re: Must we authenticate login forms (using SSL?)?, Peter Conrad, 05:23
RE: Must we authenticate login forms (using SSL?)?, Nathaniel S. H. Brown, 05:03
Re: Must we authenticate login forms (using SSL?)?, mike03051, 01:11
Re: Must we authenticate login forms (using SSL?)?, Antoine Martin, 01:01

September 29, 2005

Re: Must we authenticate login forms (using SSL?)?, info, 06:29
Must we authenticate login forms (using SSL?)?, Amir Herzberg, 04:58

September 28, 2005

Re: NTLM and man-in-the-middle proxies not working, AG, 15:21
Use JCap library to read network traffic, yuthikasgp, 07:16

September 27, 2005

Re: webappsec Digest 21 Sep 2005 21:26:31 -0000 Issue 636, Amir Herzberg, 11:23
RE: NTLM and man-in-the-middle proxies not working, Ofer Maor, 11:13

September 26, 2005

Re: NTLM and man-in-the-middle proxies not working, raymond_b_jimenez, 21:57
Almost Here!!: 2nd US OWASP AppSec Conference - Oct 11-12 - Near DC, Dave Wichers, 21:37
PacSec05, Dragos Ruiu, 21:37

September 25, 2005

Re: Ajax Security discussion for the OWASP Guide, focus, 00:06

September 24, 2005

Re: Ajax Security discussion for the OWASP Guide, John Manko, 01:06

September 23, 2005

Re: Ajax Security discussion for the OWASP Guide, Andre Ludwig, 14:51
Re: Ajax Security discussion for the OWASP Guide, noname, 13:21
RE: Ajax Security discussion for the OWASP Guide, Luke Fraser, 12:40
Re: Ajax Security discussion for the OWASP Guide, Serg Belokamen, 04:06
Ajax Security discussion for the OWASP Guide, Andrew van der Stock, 00:14

September 22, 2005

HTTP Request Smuggling - ERRATA (the IIS 48K buffer phenomenon), Amit Klein (AKsecurity), 23:44
Re: NTLM and man-in-the-middle proxies not working, lists, 23:44
Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 23:44
Re: Is netcraft publishing URL of your intranet sites?, Darren Bounds, 23:44
Re: Is netcraft publishing URL of your intranet sites?, Saqib Ali, 00:11

September 21, 2005

Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 17:37
RE: Chroot jails, Wall, Kevin, 11:44
Re: Chroot jails, Paul Wong, 07:52
Re: Chroot jails, Antoine Martin, 06:31
RE: Chroot jails, Craig Wright, 00:28
Re: Chroot jails, xyberpix, 00:27
RE: NTLM and man-in-the-middle proxies not working, raymond_b_jimenez, 00:27
Re: Chroot jails, Ingo Struck, 00:17
Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 00:17
Re: NTLM and man-in-the-middle proxies not working, Michael Eddington, 00:17
Re: HTML/Java Protection, Yousef Syed, 00:17
Re: Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, mike03051, 00:17

September 20, 2005

Re: Chroot jails, Mamading Ceesay, 16:23
Re: Chroot jails, Antoine Martin, 16:12
Re: Chroot jails, JamesHorwath, 15:52
Chroot jails, Steve.Cummings, 15:22
Re: HTML/Java Protection, Roshen Chandran, 12:20
Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, Amir Herzberg, 12:00
Re: HTML/Java Protection, Antoine Martin, 12:00
Re: Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, Peter Conrad, 12:00
Re: HTML/Java Protection, Mark Quinn, 12:00
Re: HTML/Java Protection, Peter Conrad, 11:50

September 19, 2005

Re: Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, mike03051, 23:55
Re: Re: Online quiz for CISSP (new material), conner911, 23:44
HTML/Java Protection, confusionvalley, 23:44
Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 23:44
Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, J. Lambrecht, 12:26
Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, Nathan Jackson-Eeles, 11:16
Re: Defending users of unprotected login pages with TrustBar 0.4.9.93, mike03051, 10:35
Defending users of unprotected login pages with TrustBar 0.4.9.93, Amir Herzberg, 09:45
Re: NTLM and man-in-the-middle proxies not working, Eoin Keary, 09:45
Re: Web Application Security Analyzer for PHP-Nuke/phpBB CMS, Paul Laudanski, 05:43
Re: Is netcraft publishing URL of your intranet sites?, Saqib Ali, 05:43
Re: Web Application Security Analyzer for PHP-Nuke/phpBB CMS, jimz, 05:33
Re: Is netcraft publishing URL of your intranet sites?, Darren Bounds, 05:33

September 18, 2005

Re: Web Application Security Analyzer for PHP-Nuke/phpBB CMS, jimz, 12:25
Re: Is netcraft publishing URL of your intranet sites?, Darren Bounds, 12:05

September 17, 2005

Re: Online quiz for CISSP (new material), Saqib Ali, 18:37
Re: Federated Authentication (without SAML), Mamading Ceesay, 15:36
Re: Federated Authentication (without SAML), Scovetta Labs, 14:05
Re: Core Application's for Banks, Andrew van der Stock, 02:41
Core Application's for Banks, Lila Buchalski, 02:31
Federated Authentication (without SAML), Gary Gwin, 02:31

September 16, 2005

[Full-disclosure] Web Application Security Analyzer for PHP-Nuke/phpBB CMS, Paul Laudanski, 23:27
Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 13:11
Research paper on WSE Policy Advisor, Andy Gordon, 08:49
Fwd: OWASP NYC Chapter Meeting - Sept 28th, Andrew van der Stock, 01:55
RE: OWASP NYC Chapter Meeting - Sept 28th, Stan Guzik, 01:45
Re: Is netcraft publishing URL of your intranet sites?, Saqib Ali, 01:45
Re: NTLM and man-in-the-middle proxies not working, raymond_b_jimenez, 01:35

September 15, 2005

Re: OWASP NYC Chapter Meeting - Sept 28th, bugtraq, 15:39
OWASP NYC Chapter Meeting - Sept 28th, peter . stern, 13:28
Re: security of _notes dirs, Mailing List, 13:28
Re: security of _notes dirs, Peter Conrad, 08:15
Re: security of _notes dirs, Greg, 07:35
Re: security of _notes dirs, Mailing List, 07:14
Re: security of _notes dirs, Michael Acadia, 05:03
Re: NTLM and man-in-the-middle proxies not working, Amit Klein (AKsecurity), 04:13
RE: security of _notes dirs, Mailing List, 00:11

September 14, 2005

Re: simplicity improves security?, Robert Hajime Lanning, 23:50
RE: simplicity improves security?, Simon Zuckerbraun, 23:50
Online quiz for CISSP (new material), Saqib Ali, 23:50
NTLM and man-in-the-middle proxies not working, raymond_b_jimenez, 23:50

September 13, 2005

simplicity improves security?, Saqib Ali, 15:38
Is netcraft publishing URL of your intranet sites?, Saqib Ali, 15:38
Re: web application testing framework, Stephen de Vries, 10:57
RE: web application testing framework, Dan Cornell, 10:17
Re: web application testing framework, Patrick Debois, 10:17
RE: Ajax security reference, Balaji, 09:46
web application testing framework, Serg Belokamen, 09:46
Re: Ajax security reference, Eoin Keary, 09:46

September 12, 2005

Re: Ajax security reference, Jean-Jacques Halans, 22:00
RE: security of _notes dirs, michael acadia, 21:50
Re: Security Issues with Workflow apps, Anthony Chan, 14:56
RE: security of _notes dirs, Griffiths, Ian, 13:05
security of _notes dirs, Mailing List, 11:34

September 11, 2005

Re: Security Issues with Workflow apps, Saqib Ali, 23:39
Re: Security Issues with Workflow apps, Anthony Chan, 16:15

September 08, 2005

Re: Obfuscating IIS 6.0, Ademar Gonzalez, 23:13
Obfuscating IIS 6.0, Bénoni MARTIN, 22:22
Security Issues with Workflow apps, Saqib Ali, 22:12
Re: BBCode [IMG] [/IMG] Tag Vulnerability, Paul Laudanski, 22:12

September 07, 2005

Re: Combatting automated download of dynamic websites?, Eoin Keary, 17:07
Security Issues with Foxpro 6, nitin patel, 06:31

September 06, 2005

RE: Defeating CAPTCHA, Derick Anderson, 15:03
ANN: WebGoat 3.7 - Application Security hands-on learning environment, Jeff Williams, 15:03
ASP.NET Forms Based Auth Whitepaper, Mark Curphey, 14:42
Re: Ajax security reference, bugtraq, 14:32
RE: Ajax security reference, Damhuis Anton, 04:58
Re: Ajax security reference, John Manko, 04:48
Re: Ajax security reference, Serg Belokamen, 04:38
Re: Ajax security reference, John Manko, 04:37

September 05, 2005

Early Registration Ending Soon: 2nd US OWASP AppSec Conference - Oct 11-12 - Near DC, Dave Wichers, 15:02
Re: Code Signing ???, Saqib Ali, 13:41
Re: Code Signing ???, Olaf Reitmaier Veracierta, 13:41
Re: Combatting automated download of dynamic websites?, Javier Fernandez-Sanguino, 08:49
Re: Combatting automated download of dynamic websites?, Paul M., 08:49
Re: Defeating CAPTCHA, Devdas Bhagat, 06:38

September 04, 2005

Re: Code Signing ???, Saqib Ali, 23:55

September 03, 2005

Re: Ajax security reference, Serg Belokamen, 06:49
Re: Oracle TNS listener, Esteban Martinez Fayo, 01:17
Re: Oracle TNS listener, Achim Hoffmann, 01:06
Ajax security reference, Luke Fraser, 00:56

September 02, 2005

Oracle TNS listener, Chitresh Sen, 00:46

September 01, 2005

Re: Combatting automated download of dynamic websites?, Eoin Keary, 00:54
Fwd: Combatting automated download of dynamic websites?, Mark Quinn, 00:54
Re: Combatting automated download of dynamic websites?, Achim Hoffmann, 00:43
Re: Defeating CAPTCHA, Christopher Kunz, 00:43