Please login and upgrade account to follower level 4 to gain access to this link and others with PR 4 and bellow that.

...Not to Mask: Usability Versus Security in Password Masking 1:11 am (UTC-7)   |......usability than helpful to the security of an application to which......a password is of little security value and may even be......has more detrimental implications to security than lowering the difficulty of......a password. There are some small security advantages that password masking does......we draw the line between security and usability? In my opinion,......Not to Mask: Usability Versus Security in Password Masking", url: "http://blog.trendmicro.com/to-or-not-to-mask-usability-versus-security-in-password-masking/"......Not to Mask: Usability Versus Security in Password Masking” ...

 
Botnet Exploits Hacked Sites Malicious Sites Malware Microsoft News Pharming Phishing Security Spam Vulnerabilities
 
 
 
img {max-width:650px;width: expression(this.width > 650 ? 650: true);border-style:none; behavior: url(../iepngfix.htc); } Jun30 To *** or Not to Mask: Usability Versus security in Password Masking 1:11 am (UTC-7)   |   by Ben April (Advanced Threat Researcher) On June 23, Jakob Nielsen posted an article declaring that password masking on the user interface is more harmful in terms of usability than helpful to the security of an application to which Bruce Schneier, in a June 26 blog post agreed. Both argued that masking the characters when a user enters a password is of little security value and may even be harmful to the usability of an application. I personally believe that displaying password entries in clear text has more detrimental implications to security than lowering the difficulty of shoulder surfing. I readily agree that a seasoned criminal will focus his/her shoulder-surfing efforts on a user’s keyboard than on his/her screen. For an attacker with keyboard-side access, password masking has zero value anyway. However, I think Bruce underplayed the prevalence of possible daily shoulder-surfing activities such as providing IT support to a user, stopping by a colleague’s workstation to review a document, polishing a presentation while on an airplane, or turning on a computer for children who aren’t entitled to unsupervised access. It is also worth considering that there may be situations where it would be inappropriate to ask your current shoulder-buddy (the CEO or your grandmother, you choose) to look away while you enter a password. There are some small security advantages that password masking does offer. For example, unskilled attackers will be looking at the screen when you start entering your password. By the time they realize their mistake, they will only see *** and have already missed a good portion of your password. (Hopefully, knowing the end of your password won’t help them decode the beginning.) Password masking also encourages frequent users of a service to memorize their passwords. I have many passwords that I could not tell you no matter how hard I tried. My fingers know them or I may know a mnemonic but the keystrokes are the only thing I retain. This is not as helpful for more casual users though. My main objection to the demise of password masking is the message that it sends to casual users. We enter a case of do-as-I-say-not-as-I-do. How can we ask our users to secure their password reminders if the entire password appears clear as day on the screen every time they enter it? Masking a password sends the message to the user that it is important that they not share their passwords, that they should not even show these to you, reinforcing the never-give-out-your-password tenet. In many cases, masking discourages copying and pasting passwords though only through naïveté (see here for a laugh). The usability concern is indeed valid. The question becomes this, Where do we draw the line between security and usability? In my opinion, masking is a valid layer of security, though easily breached, it does raise barriers to entry even if only by a small margin. These barriers are also larger for the casual user. The more slowly a password is entered, the more time it would be on the screen, if unmasked. More importantly, it sends a firm message to users that their passwords should be protected. Also, let’s not forget the principle of minimum astonishment—how many times would you have to use an application before you notice that your password is now being displayed on-screen in clear text? One possible compromise would be to provide a configuration option. However, this would not be friendly to a casual user who needs it most. I encourage application developers to seek out other usability accommodations (e.g., two-factor options, biometrics) before globally unmasking passwords. SHARETHIS.addEntry({ title: "To *** or Not to Mask: Usability Versus security in Password Masking", url: "http://blog.trendmicro.com/to-or-not-to-mask-usability-versus-security-in-password-masking/" });If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting! This entry was posted on Tuesday, June 30th, 2009 at 1:11 am and is filed under News, Security . You can leave a response, or trackback from your own site. 2 Responses to “To *** or Not to Mask: Usability Versus security in Password Masking”

... July 2009 Microsoft Security Updates 3:29 am (UTC-7)   |   by JM Hipolito...... Six security bulletins were released by Microsoft......into the affected system. The security advisory MS09-032 already addresses the......is the full list of security advisories issued for this month: (MS09-028)......Elevation of Privilege (970953) (MS09-032) Cumulative Security Update of ActiveX Kill Bits......possible. SHARETHIS.addEntry({ title: "July 2009 Microsoft Security Updates", url: "http://blog.trendmicro.com/july-2009-microsoft-security-updates/" });If you're......Responses to “July 2009 Microsoft Security Updates” ...

 
Botnet Exploits Hacked Sites Malicious Sites Malware Microsoft News Pharming Phishing Security Spam Vulnerabilities
 
 
 
img {max-width:650px;width: expression(this.width > 650 ? 650: true);border-style:none; behavior: url(../iepngfix.htc); } Jul16 July 2009 Microsoft security Updates 3:29 am (UTC-7)   |   by JM Hipolito (Technical Communications) Six security bulletins were released by Microsoft for July, which covers one of the two vulnerabilities exploited by cybercriminals in the last 2 weeks. The Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution was used in a zero-day attack last week that involved around 967 compromised Chinese websites. A script that triggered the exploit was inserted in the said websites, which when successfully executed drops WORM_KILLAV.AI into the affected system. The security advisory MS09-032 already addresses the vulnerability used in this attack. Here is the full list of security advisories issued for this month: (MS09-028) Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633) (MS09-029) Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371) (MS09-030) Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516) (MS09-031) Vulnerabilities in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953) (MS09-032) Cumulative security Update of ActiveX Kill Bits (973346) (MS09-033) Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856) The Office Web Components ActiveX vulnerability is the other vulnerability used in a malware attack this month. Similar to the zero-day attack, a script that triggers the exploit was inserted in compromised websites. This placed any visitor of the compromised websites who hasn’t updated their system at risk of being affected by TROJ_DLOADR.DOF, which drops a rootkit component detected as TROJ_ROOTKIT.DOF, and downloads TROJ_DLOADR.UIG and TROJ_INJECT.AKI. A patch for the said vulnerability hasn’t been issued, but Microsoft provided a workaround, to protect users while an update is being developed. Meanwhile, users are advised to update their systems as soon as possible. SHARETHIS.addEntry({ title: "July 2009 Microsoft security Updates", url: "http://blog.trendmicro.com/july-2009-microsoft-security-updates/" });If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting! This entry was posted on Thursday, July 16th, 2009 at 3:29 am and is filed under Exploits, Microsoft, Security, Vulnerabilities . You can leave a response, or trackback from your own site. 6 Responses to “July 2009 Microsoft security Updates”

...A SEO Sinhalese Sri Lanka Tamil Tutorials ubuntu Uncategorized Video Post WordPress WP Theme Kaspersky Internet Security 2009 April 17, 2009 · Filed......working with virus and internet security and above all it’ll rarely......any other Anti Virus, Internet security programme. Please do share your experiences......do 11 Responses to “Kaspersky Internet Security 2009” ...

RSS FeedComments
Home
About D. Policy Resources Make Money Resources Tutorials
Vision Transforming Sri Lankans into ICT community RSS Count Follow Me on Twitter Categories AdSense Audio Post Blogs Entertainment Google India Internet Link List Localisation Make Money Mobile Movies News Q & A SEO Sinhalese Sri Lanka Tamil Tutorials ubuntu Uncategorized Video Post WordPress WP Theme
Kaspersky Internet security 2009 April 17, 2009 · Filed Under News  Warning: array_key_exists() [function.array-key-exists]: The second argument should be either an array or an object in /home/hotwordp/public_html/mayuonline/wp-content/plugins/tweetbackwp/tweetback.php on line 462
tweetmeme_url = 'http://mayuonline.com/kaspersky-internet-security-2009/';
Sri Lankan is a hot spot for pirated software. From the day I know I can buy a Windows CD for just 100 LKR (Aprox $1). Later government started take action on the shops selling pirated copies of Windows. Government started with Windows and stopped with Windows. They never went ahead and worked against piracy afterwards. Still you can find loads of pirated softwares in the market. But when it comes to Anti-Virus protection people are going for genuine products. They never went for pirated copies as most of the time pirated copies failed to protect their computers from Viruses and trogons. Most of the people are attracted towards Kaspersky, though conventional antivirus softwares such as symantac and Mcafee available in the market. Main reasons are, user friendly interface of Kaspersky, its efficient and effective in working with virus and internet security and above all it’ll rarely mess up with the system. One of my friends was using Bitdefender, and it’s such a pain. It’ll eat your system resources and most of the time it’ll start to conflict with your programes. My friend’s SLT ADSL connection was failing all the time and when he uninstalled BitDefender and installed Kaspersky nothing happened.
I bought a 3PC licence for 3000 LKR (only for Sri Lanka and Maldives) in Unity plaza and we shared it among 3 of us. Literally each licence costs about 1000 LKR. If you’re to go for a Single Licence, then you’ll have to spend 1700 LKR. That’s why it’s good you collect three people and buy a licence. It’ll be cost effective I’m not saying that Kaspersky is the best. But throughout my experience, Kaspersky has done a good job compare to any other Anti Virus, Internet security programme. Please do share your experiences with Anti-virus software. PS: According to one of my old campus lecturer, all viruses are created by Anti-virus manufacturers to sell their product.
If you enjoyed this post, make sure you subscribe to my RSS feed! Tags: Anti Virus, Bitdefender, Kaspersky Comments Subscribe to MAYUonline.com and receive FREE updates to your InboxEnter your email address:
We hate spam as you do
11 Responses to “Kaspersky Internet security 2009”

...» WordPress: Improving WordPress Security 13 May 09 WordPress security is something which we as......secure as possible. One of the security aspects which we have to......of providing this kind of security and that is via a...

Subscribe in a reader - Subscribe via Email Search for: Skip Navigation WordPress tips, hacks and tutorials Monthly Email Newsletter Enter your email address: Home About Page Contact Sitemap Archives Page Friends Tutorials Guest Posts You are here: Home » WordPress » Improving WordPress Security « Related Posts without a Plugin Widgets Reset » WordPress: Improving WordPress Security 13 May 09 WordPress security is something which we as bloggers cannot just take for granted. There are basic steps that we have to take to ensure that our blogs and our databases remain as secure as possible. One of the security aspects which we have to have a look at is to try and keep the unwanted visitors out of our important WordPress directories. The directories wp-content, wpcontent/themes/ and wp-content/plugins/ are directories that we most certainly do not want to be available to just anyone. There are quite a few ways of protecting these directories, some more complicated than others. I would like to take a look at just one of the simple methods of providing this security. I have found many articles all over the Net that suggest that one simply adds a blank HTML file (called index.html) to each of these directories. This will work and if anyone attempts to navigate to these directories they will simply view a blank screen. I have also found articles suggesting that this could be taken a step further. Some say that you could add a nasty message to these index.html files asking a visitor just what the heck he/she is looking for. I gave this whole thing a bit of thought and thought that these files would be more useful if they automatically re-directed a user to the mentioned directories back to the main page of your blog. This can be done very easily. All you need is a blank file to which you add the following line of code: <?php header("Location: http://nice2all.com") ?> You will of course have to change this code to the URL of your own blog. This file you now save as index.php and then you save it to all three of the mentioned directories. If you now navigate to any of these directories you will be re-directed to the main page. If you already have an index.html file in any of these directories this file will be called before the index.php file (depending on your settings on your server). If you experience this the index.html file will have to be deleted. Personally I feel there is a better way of providing this kind of security and that is via a .htaccess file. I am still playing around with what will be the best content for such a file as there are many conflicting suggestions on the Net. This is however the topic for another post. security is one of those things where every little bit can only help. I hope you can find a use for this snippet. Till next time. If you have found this article useful, please consider subscribing to the RSS feed. You could do this via your favourite feed reader or via Email.Many of the WordPress hacks, tips and bits of advice provided on this blog, include code snippets. If you are making use of any code provided here kindly take note that I cannot be held responsible for anything that might go wrong on your blog because of the new code. Before making any changes to your files please ensure that these files have been adequately backed-up.If you are new to WordPress and you want some assistance to start off with, you might be interested in my special offer.If you are passionate about WordPress and you are interested in writing a guest post on Nice2All, please contact me.CMF Ads - Low cost, no-nonsense advertising Related Posts Internet Explorer 6 - Getting your web pages to show correctly in the older versions of Internet Explorer can be hair raising. Content for Logged-In Users Only - It could happen that we want logged-in users to see content in our articles that cannot be seen by the other users. Adding info to selected comments - A quick way of adding something to selected comments. Stumble upon something good? Share it on StumbleUponShare this on FriendFeedTweet This!Share this on FacebookShare this on TechnoratiSubscribe to the comments for this post? « Related Posts without a Plugin Widgets Reset » 16 Opinions have been expressed on “Improving WordPress Security”. What is your opinion?

...all » WordPress: WordPress Security 13 Jun 08 WordPress security is not really off-topic for......given half of your first-line security away. This default user name...

Subscribe in a reader - Subscribe via Email Search for: Skip Navigation WordPress tips, hacks and tutorials Monthly Email Newsletter Enter your email address: Home About Page Contact Sitemap Archives Page Friends Tutorials Guest Posts You are here: Home » WordPress » WordPress Security « Total Validator Navigation for all » WordPress: WordPress Security 13 Jun 08 WordPress security is not really off-topic for this blog. If your WordPress blog gets hacked, I promise you that the blog will be totally inaccessible to everyone, including yourself. Without getting too technical, there are certain ‘common-sense’ things you can do to ensure that your WordPress blog is as safe as possible. You have to ensure that you have backups at all times. These backups should include backups of your core files as well as of your database. For details see my previous post entitled ‘Backing up your WordPress blog‘. Ensure that you regularly change your WordPress passwords. Make sure that you use strong passwords. By this I mean you should use a mixture of alpha-numeric characters with a minimum length of 10 characters. Including one or two special characters (e.g. %, $ etc. can also help to make a password stronger). Ensure that you have the latest stable version of WordPress installed. When new versions are released many say they first wait to see if the version is really stable. This is your decision, but you will be playing with fire. My advice, download the latest version as soon as it becomes available. if you allow anyone to register on your blog, you must ensure that the new user default role is set to no more than ‘contributor’ level. If you are making use of multiple authors on your blog you might want to reconsider this, but you never give higher access than this to the general public. When you first install WordPress it automatically creates a user called Admin. User names along with passwords form an integral part of the protection on your blog. By leaving the default user name you have already given half of your first-line security away. This default user name has to be changed to something else. You should not show the version number of the WordPress you have installed. Many templates love having this info in the footer. Why provide a potential hacker with any information. The version number currently installed is normally also included as a meta tag in the markup. This information you will normally find near the top of your template’s header.php file. You need to ensure that the following directories in your WordPress installation has a CHMOD (file attributes) of no more than 0755: root directory wp-admin/ wp-admin/js/ wp-content/ wp-content/plugins/ wp-content/themes/ wp-includes/ Over and above these directories you need to ensure that the following do not have a CHMOD higher than 0644: wp-admin/index.php .htaccess (in the root directory in which WordPress is installed) I would seriously reconsider using any template and/or plugin that insists that you give more rights than these mentioned to any of the mentioned directories and/or files. You need to create a blank html file, call it index.html and place it in your wp-content/plugins/ directory. This will make it a bit more difficult to gather information about the plugins you are using. You need an additional .htaccess file. This one should be placed in your wp-admin/ directory. In this file you need to restrict access to this directory to only your own IP address. This file will have to look something like this: AuthUserFile /dev/null AuthGroupFile /dev/null AuthName "Your Name" AuthType Basic <LIMIT GET> order deny,allow deny from all allow from xx.xx.xx.xx allow from xx.xx.xx.xx </LIMIT> There is one drawback of using this mentioned file. You will have to update your .htaccess file if your internet provider assigns you a dynamic IP address, you move to another location or you have authors at other locations. Lastly, you have to ensure that the prefix of your tables in the WordPress database are changed from the default wp_. If you are not used to making changes to databases, this is a task that I would not recommend you doing yourself. This list is by no means a sure-fire way of ensuring that your WordPress blog is safe. The hackers keep on finding new ways of making our lives uncomfortable. I suggest that you subscribe to a good technical blog that covers WordPress just to ensure that you are aware of any changes as they become known. Now who was it that said blogging is easy? Related Posts Getting Ready for WordPress 2.8 - Some pre-installation advice for a new versions of WordPress. Nice2Create sees the light of day - A short explanation of what the changes to Nice2All entails. Question and Answer Time - At which level should support be offered on a blog like this? Stumble upon something good? Share it on StumbleUponShare this on FriendFeedTweet This!Share this on FacebookShare this on TechnoratiSubscribe to the comments for this post? « Total Validator Navigation for all » 14 Opinions have been expressed on “WordPress Security”. What is your opinion?

...Like Emaar In Uae Requires Security Clearance? ......or any other company require security clearance for their new employees,......Like Emaar In Uae Requires Security Clearance?", url: "http://www.1hitproperty.com/2009/08/does-the-companies-like-emaar-in-uae-requires-security-clearance" }); Related posts:Dubai......Like Emaar In Uae Requires Security Clearance?” ...

1HitProperty Real Estate and Property Blog Home About Disclaimer Sitemap Contact Us Privacy Policy
showdate();
1Hit RSSIf I Live In Abu Dhabi Is The Law The Same????What Are The Procedures If You Travel With Home Theater System And Lcd Tv 32″ From Dubai To Philippines?How Much Do I Need At The Minimum To Invest In Property In The Following Places…?What Am I Missing Here? For Those Who Know About The City Of Dubai Or Saw Recent Interviews With Its Ruler?Loan Against Property Interest????Categories Dubai Investment Dubai Property Dubai Tower Dubai Travel Jumeirah Working In Dubai Archives August 2009 July 2009 June 2009 May 2009 April 2009 March 2009 February 2009 January 2009 December 2008 November 2008 October 2008 September 2008 September 2007 August 2007 July 2007
here
UAE & Dubai Directory. We are listed under Property Services category Pages About Contact Us Disclaimer Privacy Policy Sitemap Download Show Map of Dubai Links MidEastProperty 1HitProperty News 1HitProperty Estate 1HitProperty Dubai Dubai hotels Rent My Property Apartments Barcelona Dubai Property & Real Estate Blog Flights to Iceland Tags 971 dubai abu dubai ajman dubai apartments dubai bur dubai burj dubai deira dubai doha dubai Dubai dubai's dubai-hotel dubai-marina dubai beach dubai business dubai companies dubai currency dubai desert dubai holidays Dubai Investment dubai job dubai jobs dubai mall dubai map dubai municipality dubai palm dubai properties Dubai Property dubai real estate dubai resort dubai sheikh dubai shopping dubai tourism Dubai Travel dubai visa From fujairah dubai hotels dubai Jumeirah jumeirah-dubai middle-east real-estate Travel UAE uae dubai What
Does The Companies Like Emaar In Uae Requires security Clearance?
Easy AdSense by Unrealhi i would like to know that do companies like emmar properties in dubai or any other company require security clearance for their new employees, if yes how long does it take ? answers will be appreciated
SHARETHIS.addEntry({ title: "Does The Companies Like Emaar In Uae Requires security Clearance?", url: "http://www.1hitproperty.com/2009/08/does-the-companies-like-emaar-in-uae-requires-security-clearance" }); Related posts:Dubai constructions update by Imre Solt: Emaar Properties records … Dubai , UAE ; February 12, 2009: Global property...Does Anybody Know Any Good Real Estate Companies In Dubai? Im going to Dubai in a few weeks and I...Emaar Properties in Dubai Knowing tһe bөst developer tο buү a property from...New homes boost - funded by pensions and insurance companies Britain’s property market and construction industry could be in for...Is It Possible To Set Up A Business Selling Leads To Property Companies? i.e. I set up a web site offering property in... Related posts brought to you by Yet Another Related Posts Plugin.
This entry was written by admin and posted on August 13, 2009 at 7:01 am and filed under Dubai Property. Bookmark the permalink. Follow any comments here with the RSS feed for this post.
3 Responses to “Does The Companies Like Emaar In Uae Requires security Clearance?”

Second Income Business Is this your time? HomeAboutContact UsPhilosophy
Stability or Security? Why not Both?
By John
Mar.24, 2009 in
business building
Recently I had lunch with four friends who are self-employed. On average we earn about  $75,000 a year. Not bad but we all agreed that it wasn’t enough to build a secure financial future. Every dollar we earn is already committed to paying the mortgage, the kids’ college fund or taxes! Simply put, we are under earning for what we want to achieve long-term. We also have something else in common. We are all building second income businesses. That second income will not only enhance our current situation but will greatly improve our odds of having financial reserves for the future. I posed a question to the group, “What are some key lessons you’ve learned about building a second income business?”  Today I’ll share what the advertising sales exec told us. In future posts, you will hear from the real estate agent, the manufacturer’s rep, the golf pro and me. Gregg answered the question with this. “I’ve been selling advertising for the past 27 years. My income has increased every year. Of course ’09 might be an exception. One of the lessons that I learned in the ad business that I looked for in a second income business is what we call residuals – establishing a new account, keeping his business over time and getting paid again and again from his renewals.” He continued, “My second income business works the same way. I have repeat customers. Plus, some of them have become business partners. Now I earn  commissions indirectly from their customer base as well.” Lesson: Repeat customers create stability. Repeat customers of business partners create security. If you are looking for a second income business with the potential for both stability and security,  contact us. We just might have what you are looking for.
Tags: second income
4 Comments on “Stability or Security? Why not Both?”

...Media Twitter Social Security Number Code Cracked A new......person to crack your social security number. Researchers are glad to......birth. Researchers of the Social Security Number experiment noticed that they......was to crack the Social Security Number. Also, experimenters were able......were sent to the Social Security Administration and other Gov’t agencies......assigning system. According to tech.yahoo.com, “Social Security spokesman Mark Lassiter said the......for predicting a person’s Social Security number.”" Are you worried by this? If...

Site Map About Sweepstakes Contact Us Privacy Policy Posts Comments Internet Marketing News Social Media Twitter Social security Number Code Cracked A new study has shown that it is surprisingly easy for a person to crack your social security number. Researchers are glad to have found this out before the bad guys did.
For anyone born after 1988, the government issued numbers at birth. Researchers of the Social security Number experiment noticed that they were able to indentify the first 5 digits of 44 percent of individuals on their first attempt. The smaller the state, the easier it was to crack the Social security Number. Also, experimenters were able to get all 9 digits of SSN’s of about 9 percent of people with under 1000 attempts. Letters were sent to the Social security Administration and other Gov’t agencies to try and get them to adopt a more random SSN assigning system. According to tech.yahoo.com, “Social security spokesman Mark Lassiter said the public should not be alarmed by the report “because there is no foolproof method for predicting a person’s Social security number.”" Are you worried by this? If you like this post, please subscribe to this Do-Follow blogs RSS Feed. Related posts:World’s Biggest DogGreat Pacific Garbage Patch This entry was posted on Monday, July 6th, 2009 at 7:34 pm and is filed under News. You can feed this entry. You can skip to the end and leave a response. Pinging is currently not allowed. One Comment »

...should change that. Out of security reasons! This post will tell...

Claus D Jensen
Online Business, Music Production, Blogging, Success Strategies
...Online Business, Music Production, Blogging, Success Strategies
Blog
Claus D Jensen Products Claus Recommends
search
« Are You a Newbie or a Wizard or both?
 
Written by Claus D Jensen on August 6th, 2009
Summary:
If you log in to your WordPress Blog as “admin”, you should change that. Out of security reasons! This post will tell you why, and how you change it.
// WordPress Security. Do you log in as “admin” on your WordPress blog? If you do log in to your WordPress Blog as ”admin”, you should change that! I will tell you exactly how to do it in this blogpost, but first I will tell you why you should do it! When you upload and start a WordPress blog, WordPress will, as default, name the administrator user account as “admin”. A lot of WordPress users don’t change this, and keep the “admin” log in. The problem with this is: there might be people out there wanting to gain access to your blog, and they would just need to keep using the “admin” user name with a bunch of passwords combinations. This is called brute force attack, and with automated tools it works quite often. They know, that many WordPress users log in as “admin”. So I would highly recommend that you change this if you haven’t already done that! And – it’s very easy! When you are logged in, go to the Dashboard>Users>Add New. Now you can add yourself as a new user. Give yourself a new username, and remember to make you Administrator! IMPORTANT!! As you choose your new user name, make sure that it is not similar to the name you display publicly on your blog, and you use to sign your posts!  If you sign your posts as My Name, for instance, naming the administrator user as “My” or “myname” wouldn’t help. Choose something that others won’t be able to guess easily! Then log out, and log in with that new user and delete the old “admin” user. Don’t worry if you have many posts written as ”admin”, WordPress will ask whether you want to delete them or re-assign them to a new user (choose the latter obviously). I hope you found this post helpful!
Posted in WordPress | Tags: WordPress Security
16 Comments so far ↓

...List Best Free Internet Programs Best Free Security Programs Best Free System Tools Best Free......open source, security Increase USB Security With USB Cop by Rono 27 June......Autorun feature is a big security risk on the Windows operating......the form of the USB security software USB Cop which has......running. Related posts:iKill – Freeware Security Program for Removable Drives This...

Home
Best Freeware List Best Free Internet Programs Best Free security Programs Best Free System Tools Best Free Audio Video and Graphics Programs Best Free Office Tools Best Free Games About Me Contact Subscribe
Home » Guest Post, open source, security
Increase USB security With USB Cop
by Rono
27 June 2009
2 Comments
This is a guest post written by Rono, one of our most faithful and prolific readers and commentators. What Rono forgot to mention about USBCop is that it’s open source! I’ve had a few problems with autorun files lately on my USB stick, so this program might be a very useful one. The Autorun feature is a big security risk on the Windows operating system. It is a risk even if you are the only person accessing the computer. Remember the Sony rootkit incident a while ago? Guess how Sony managed to install the rootkit on the computer system? Autorun can be disabled in Windows and this is probably the way to go for most users. There is however another solution in the form of the USB security software USB Cop which has been uploaded to SourceForge a few weeks ago. USB Cop blocks all attempts to run an autorun.inf file on the computer system. It will instead display the contents of the file to the user giving a recommendation what the user should do with it.
Available options are to browse the contents of the disk or to close the dialog without performing an action. The interface itself will display all entries that are located in the autorun.inf file.
The option to execute the autorun.inf file normally is missing from the available options. What this application currently does is block all attempts of running an autorun.inf file on the computer system. The only difference between disabling that option in Windows and using the software is the ability to browse and see the contents of the autorun.inf file a bit faster and automatic with the software. In reality it would simply mean a few additional clicks for the same result without running a software in the background all the time. The software itself uses about 4.5 Megabytes of computer memory while running.
Related posts:iKill – Freeware security Program for Removable Drives This is a guest post written by Rono, a freeware...ClamWin – Free Open Source Antivirus Software This is a gues post written by Rono, a freeware...PeaZip – Free Open Source File and Archive Manager This is a guest post written by Rono, one of...Best Free Antivirus Poll – First Week Report I started a poll to find out which is your...TrueCrypt – Open Source Disk Encryption Program Overview TrueCrypt is a free, open source and multi platform... Related posts brought to you by Yet Another Related Posts Plugin.
2 Comments »

...YouTheDesigner on Twitter Home About Jobs Resources Contests Forums 3M Security Glass Advertisement Some of you may......have seen this old 3M security glass advertisement on the web......to break it, but a security guard was on hand in......to break the rules. =) 3M Security Glass Advertisement - 3M Security......Security Glass Advertisement - 3M Security Glass November 29, 2007 2 Comments Free...

Graphic Design Blog, Graphic Design Tips and Graphic Design Jobs Graphic Design and Marketing Blog, Featuring Tips, Tutorials, Design Jobs and More! Hi UPrinting.com - Online Printing UCreative.com - Design Gallery YourDesignForums.com - Design Forum Follow YouTheDesigner on Twitter Home About Jobs Resources Contests Forums 3M security Glass Advertisement Some of you may have seen this old 3M security glass advertisement on the web already, but I think it was cool enough to post for those who have not seen it. I really love it when designers come up with creative ways to promote a product, I mean why use a normal printed advertisement when you can have your product physically at a location for people to test out! The people over at Gizmodo reported that there was only $500 of real money on top and that the rest was fake. They also said people were allowed to try and kick the glass to break it, but a security guard was on hand in case anyone tried to break the rules. =) 3M security Glass Advertisement - 3M security Glass November 29, 2007 2 Comments Free Vector Graphics - Orange Computer IconsGraphic Design Portfolio - Nik AinleyYou The Designer Update3D Wall Flash Component Giveaway Winners!Magazine Spotlights - Beautiful/Decay If you enjoyed this post you may wish to subscribe to our RSS feed. Subscribe to RSS feed Subscribe to Email Updates Comments on this post:

...public school to send school security to visit your home? Cambridge public......sent a plan clothes school security guard to a disabled family......security guard to a disabled family home to see if her......just sign the paper the security asked her to sign and......public school to send school security to visit your home?” ...

Law Union Lawyer, Lawyers, Attorney, Attorneys, Law, Legal Information « Lou Dobbs: Major Public Concerns Of Martial Law In The U.S. & Army Denies Claims Same Sex Marriage: The Law » What state law allows Cambridge public school to send school security to visit your home? Cambridge public school official “Aida Ramos” sent a plan clothes school security guard to a disabled family home to see if her child lived in her home. This guard never showed any identification of who she was and she walked in there home with out being invited, like she had the right to walk in. the mother also special needs was afraid and just sign the paper the security asked her to sign and she said she wanted to see her child. Is their a law that support this kind of action?Photos Union Tags: Law School, School Security, Special Needs This entry was posted on Friday, May 29th, 2009 at 10:24 pm and is filed under Law & Ethics. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site. 2 Responses to “What state law allows Cambridge public school to send school security to visit your home?”

Adminbox.de
Notizen eines Systemadministrators
Search Blog
Impressum Links
Home
Allgemeines Antispam Hardware Kurioses linux Lotus Domino/Notes Messen MS-DOS/Windows Shell Murphy Office Sicherheit Software Trigami Webentwicklung Windows
Endpoint-Security, Teil 1
Posted by Torsten on 25 June, 2009
This post was filed in Sicherheit and has 2 comments
Gestern war ich auf einem Workshop zum Thema Endpoint-Security. Es ging also um die Sicherheit der Client, ob nun PC, PDA, sonstige mobile Endgeräte etc. und deren Einfluß auf das LAN. Nun kann man dieses Thema auf verschiedenste Art und Weise angehen: 1.) ignorieren (Prinzip Hoffnung – § 3 kölsches Grundgesetz) 2.) halbherzig an die Sache herangehen, offensichtliche Lücken schließen, aber viele offen lassen 3.) gründlich arbeiten, sich aber damit vielleicht auch die eine oder andere blutige Nase holen. Die dritte Variante ist mir aus Security-Sicht am sympatischsten. Aus Anwendersicht ist natürlich Modell 1 besonders interessant. Ich möchte mit diesem Beitrag auf eine Möglichkeit eingehen, Endpoint-security im Unternehmen mit wenigen (kostenpflichtigen) Mitteln zu realisieren. Ich beziehe mich zunächst darauf, stationäre Clients (Workstations) abzusichern. Clientabsicherung Schließen Sie zunächst alle Lücken, die Ihnen Clients bieten. Das heißt: (physikalisches) Entfernen aller Laufwerke Sperren des USB-Ports (unter Windows möglich durch Änderung im Regkey HKLM\SYSTEM\CurrentControlSet\Services\USBSTOR (von 3 auf 4 setzen) und dann die Schreibberechtigung nur für den Administrator auf diesem Schlüssel einrichten User arbeiten nur noch unter “Benutzer-Berechtigungen” Wenn Sie die USB-Berechtigung wie oben beschrieben einstellen, können sich keine Mass-Storage-Devices mehr ins Windows-System einklinken, ihre Drucker, Scanner und sonstigen USB-Geräte funktionieren aber weiterhin. FTP-Server Richten Sie einen FTP-Server ein. Der Hersteller spielt dabei keine Rolle. Der FTP-Server steht in ihrem LAN und ist für die Benutzer über Network-Shares erreichbar. Transport-Clients Bauen Sie “dumme” Clients auf, auf denen nichts weiter installiert ist, als Windows. Schreiben Sie ein Skript, mittels dessen Sie über den Kommandozeilenbefehl FTP Zugriff auf den o. g. FTP-Server erhalten. Ihr dummer Client muss in einem VLAN stehen, das zumindest logisch vom übrigen LAN abgegrenzt ist. Der Benutzer darf das Netz nicht wechseln können, sie müssen also auch hier den Zugriff auf “Benutzer”-Rechte einschränken. Der Router Als Vermittler zwischen den beiden Netzen bauen Sie einen Router auf, der den Datenstrom nach Ihren Policy-Vorgaben scannt. Ein brauchbares Produkt ist hier etwa Aladdin ESafe, das übrigens nicht nur FTP, sondern auch HTTP und SMTP scannt. Hiermit können Sie außerdem eine tiefe Content-Inspection realisieren, z. B. Blockieren von Office-Dokumenten mit Makros, erkennen von Filetypes aufgrund des Inhalts – auch in Archiven etc. ESafe findet außerdem Dokumente, die versuchen, bekannte Exploits in Anwendungssoftware auszunutzen. Kostenfaktoren bei diesem Modell sind neben den Windows-Lizenzen die Lizenzen für den Scanner auf dem Router.
Tagged with: Endpoint Security, Router, Scanner, USB
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
2 Comments on “Endpoint-Security, Teil 1”