We are joined by Leon van der Eijk (http://www.twitter.com/lvdeijk) to talk on the intriguing subject of honeypots like Kippo, Dionaea, etc. Security sweetness ensues ...
Leon van der Eijk is a CERT member from The Netherlands who is pretty well versed on the use of honeypots. We're glad he takes the time to share some of his knowledge with us and our audience (Chris' mom especially). Leon is also an active member of the dissectingthehack.com web community.
On December 17th, Mozilla was notified by a security researcher that a partial database of addons.mozilla.org user accounts was mistakenly left on a Mozilla public server.
Allegations that the FBI may have smuggled back doors or weaknesses into openBSD's cryptography have created uproar in the security community. Former government contractor Gregory Perry, who helped develop the OpenBSD crypto framework a decade ago, claims that contractors were paid to insert backdoors into OpenBSD's IPSec stack around 10 years ago.
response --> http://www.cl.cam.ac.uk/~rja14/Papers/ukca.pdf
Cambridge is the University of Erasmus, of Newton, and of Darwin; censoring writings that offend the powerful is offensive to our deepest values. Thus even though the decision to put the thesis online was Omar’s, we have no choice but to back him. That would hold even if we did not agree with the material! …. You complain that our work may undermine public conﬁdence in the payments system. What will support public conﬁdence in the payments system is evidence that the banks are frank and honest in admitting its weaknesses when they are exposed, and diligent in effecting the necessary remedies. Your letter shows that, instead, your member banks do their lamentable best to deprecate the work of those outside their cosy club, and indeed to censor it.