Control your Java

Recent Java vulnerabilities have made Security experts advice people to fully disable Java scripts, or use two browsers such as;
– one for less critical tasks with Java, and
– one for critical tasks (e.g., online banking) where Java is enabled only when needed

However, Google Chrome lets you disable, enable only exceptions where you what to run Java and Javascripts, or if you would like Java- “click and play”. Problem solved?:)

Alternatively use “click to play” as explained here: http://superuser.com/questions/201613/disable-java-plugin-in-google-chrome

Evaluate your site’s mobile-readiness

The mobiReady testing tool lets you easily test your mobile website for e.g.;

  • Readiness
  • Size
  • Time
  • Cost
  • Visualization
  • and other compliance tests
Check it out, and feel free to test the mobile site of my blog.
[snap url=http://ready.mobi/launch.jsp?locale=en_EN alt=”This snapshot has taken by Snap A Site”]

Playing with Anti

Just scanned X devices on my network using Android Network Toolkit (#ANTI3) by @zImperium Get it now: http://zimperium.com/anti.html

As you can see from the pictures, Anti is intuitive and simple to play with, and can as easily be used by security professionals as newbies. The screenshots was taking while using the open wireless network on flight from Oslo to Trondheim (flying Norwegian).

The app was used only to illustrate an example, where the sniffing was aimed at a friends smartphone (with his consent).

The sniffing screenshot is a good example of how easily adversaries can capture unencrypted traffic in open wireless networks.

 

Google Apps ISO27001 certified

Will this certification help organizations understand that cloud services (in particular Google Apps) aren’t that risky to use anymore?

[snap url=http://www.theregister.co.uk/2012/05/29/google_apps_iso_27001/ alt=”This snapshot has taken by Snap A Site”]

Services Covered: GMail, Google Talk, Google Calendar, Google Docs (documents, spreadsheets, presentations), Google Sites, Control Panel (CPanel), Google Contacts, Google Video, Google Groups, Directory Sync, Provisioning API, SAML-Based SSO API, Reporting API, Audit API.

http://googleenterprise.blogspot.com/2012/05/google-apps-receives-iso-27001.html

Hello, again!

Finally I have a running “blog” again! After about a year or so, I decided to use one (of a total of ~ten) beautiful summer days in Norway to reconfigure my domain servers and to re-establish a fresh copy the great WordPress blog!

Don’t expect it to be updated daily, or weekly for that matter, as I have a life besides this. That’s exactly why I wanted to do this, again; to share pictures, thoughts and links with you guys mistakenly accessing this site..

So, I hope to get down to business and start publishing some posts…

Thanks for visiting!