Hello and best wishes in New year! Here is one more text with PoC about vulnerability in Public Key Infrastructure (PKI). What do you think about this vulnerability?

After MDaemon vulnerability, I decide to test Merak Mail Server … And the result is vulnerability alike MDaemon, but more difficulty. Secunia reported this vulnerability and estimate as moderately critical. For me this vulnerability especially in WebMail Pro interface is highly critical. Here is CVE ID: 2008-5734. Also at National Vulnerability Database (NVD).

After my friend Dejan Levaja find the vulnerability in MDaemon, here is the new vulnerability that I found in MDaemon More about this you can find at Secunia.

Ruby on Rails Security Project released a free e-book, very useful! Download: here

My friend from Network Security Solutions, Dejan Levaja, has discovered vulnerabilities in MDaemon Server WorldClient, which can be exploited by malicious people to conduct script insertion attacks. Details at Secunia.

You forget your root password and get locked out of your own box. What do you do? Typically, you would reboot into single user mode and change the password there. When booting into single user mode you will not be prompted for the root password. This is something every attacker knows and prays on once [...]

People use wireless networks on a daily basis and are growing concerned about the possible threats. Taking the following precautions significantly mitigates security risks associated with mobile wireless access. 1. Install a firewall 2. Enter passwords only into websites that include an SSL key on the bottom right. If the hotspot is not working properly, [...]