security

Something I definitely hadn't thought of...

http://citp.princeton.edu/memory/

do any of you actually use full-disk encryption?

The guy who wrote the core code for Norton Antivirus thinks that the traditional measures taken by IT security pros (like vulnerability patching and strong passwords) are generally a waste of time: http://www.darkreading.com/document.asp?doc_id=145224&WT.svl=news1_1.

I always get nervous when typing passwords into a public terminal, or while on a public wireless network like in an airport or elsewhere. I know how easy it is to sniff packets out of the air, or in the case of managed terminals for the admins to install simple keyloggers.

http://machinist.salon.com/blog/2007/07/23/iphone_flaw/index.html

Computer security experts at a company called Independent Security Evaluators have discovered a flaw in the iPhone that lets attackers gain full access to the device, potentially making users' private information privy to prying eyes.

You may or may not be aware of the ongoing talk about this supposed new Mac worm. Apparently has sparked quite the controversy and the author's website was already defaced, his true identity unmasked, and he's received death threats. But what is even more hilarious are the comments on Slashdot in regards to upsetting Mac Fanboys. My favorite: "Does this mean I should end my genetic experiment to cross-pollinate a Mac fanboy with a Scientologist to produce the world's most pompous asshole? (elrous0)" Slashdot: Mac Worm Author Gets Death Threats.

Some basic and some more advanced tips for securing your SSH server:

Linux.com | Advanced SSH security tips and tricks

Here's a very thorough run-down of the major server operating system and their potential exploits:

OmniNerd - Articles: 2006 Operating System Vulnerability Summary