Archive for January, 2015

SSL HeartBleed – how to fetch confidential information from web server

        SSL HeartBleed (CVE-2014-0160) – this is know security vulnerability bug in OpenSSL protocol of version 1.0.1 through 1.0.1f and 1.0.2-beta.

        A vulnerability in OpenSSL could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory handling in the TLS heartbeat extension.

        I am not going to explain what this bug can do or how it present in protocol side of SSL. More detail about it you can find on official US Government web site US-CERT [ United states computer emergency readiness team ] and HeartBleed web site.

Continue reading “SSL HeartBleed – how to fetch confidential information from web server” »

DNS server query graphic report

Dear my Friend, here I will show you how to organize online monitoring system for DNS queries.

Most time in Telecom Domain business is necessary to measuring the DNS traffic and to check the performance of the service: how many queries has been successfully, how many faulty, what kind of queries the customers sending over different time. Also its necessary to check the type of DNS queries for security purpose to restrict free traffic using over dns-tunneling schemes. I will show how to optimize and turn DNS system to be using only for DNS service and send all required query logs to remote SYSLOG server into Corporate network behind Firewall. By default the DNS query log output is not configured in most systems as it required extra storage space, cause the log file can be growing very fast and it depend from DNS service capacity value – the amount of customer which is using it for Internet address resolving.

Continue reading “DNS server query graphic report” »