Just downloaded the beta of BackTrack 4 and booted the live DVD on my Eee PC. Looks nice, but I couldn't get Kismet to get working. I will install it to the HD later and then tinker so more.
Recently I decided to upgrade my wireless network at home. My current setup is a pfsense firewall and a airport extreme accesspoint.
For my new Wireless LAN I decided to implement WPA2 Enterprise with EAP-TTLS and a radius backend.
From the wiki entry of EAP-TTLS:
"EAP-TTLS offers very good security. The client does not need be authenticated via a CA-signed PKI certificate to the server, but only the server to the client. This greatly simplifies the setup procedure as a certificate does not need to be installed on every client."
First I describe the installation of the freeRADIUS server and the configuration of the Airport Extreme. Next the client configuration on OS/X Leopard and finally the installation of a EAP client for windows that supports TTLS on Windows XP/Vista.
Paros is a proxy program you can use to evaluate the security of web applications. It's free of charge and runs completely in Java. Through Paros's proxy nature, all HTTP and HTTPS data between server and client, including cookies and form fields, can be intercepted and modified.
In this first article I describe how to install Paros in Ubuntu 8.04 LTS, in a future article I give a description of installing it in OS/X and a brief description of the workings.
I wanted to install Mod Security 2 on my Ubuntu Jeos 8.04 server, but there isn't a package anymore../configurein the apache2 directory and it works.
sudo apt-get install build-essential
Received my Yubikeys from Yubico last week. I was listening to the Security Now podcast and heard Steve Gibson telling about this product. I went direct to the website and ordered two.
I downloaded the C library and received the AES key from Simon Josefsson. Now I'm making my own verification server.
This way it's very easy to add strong authentication to our applications.
