Archive for the ‘Security’ Category

Putty 0.60 released

Tuesday, May 1st, 2007

Putty, a free implementation of Telnet and SSH for Win32 and Unix platforms, is out with a new version - 0.60 with some important bug fixes:

  • Pressing Ctrl+Break now sends a serial break signal.
  • Serial ports higher than COM9 now no longer need a leading \\.\.
  • You can now store a host name in the Default Settings.
  • Bug fix: serial connections and local proxies should no longer crash
    all the time.
  • Bug fix: configuring the default connection type to serial should no
    longer cause the configuration dialog to be skipped on startup.
  • Bug fix: “Unable to read from standard input” should now not happen,
    or if it still does it should produce more detailed diagnostics.
  • Bug fix: fixed some malformed SSH-2 packet generation.
  • Other minor bug fixes.

If you don’t know where to find it, this is the primary putty website

The top 20 PHP App Insecurity

Tuesday, April 24th, 2007

Ed Finkler, for the past couple of weeks, has been collecting data from the NIST NVD to get stats on PHP application vulnerabilities. In his blog,
he released the top 20 PHP security issues statistics.

The data covers only reported vulnerabilities, between April 1 2006 and April 1 2007.

Thanks for the nice work!