http://connect.educause.edu/browse/content/lib_item/4928,4973,263 http://connect.educause.edu/browse/content/lib_item/4928,4973,263 http://connect.educause.edu/educause/images/e_rss.png events, concepts, and conversation from EDUCAUSE The EDUCAUSE Podcast Crew EDUCAUSE is a nonprofit association whose mission is to advance higher education by promoting the intelligent use of information technology. Our podcasts provide information about a range of topics including Leadership, Policy and Law, Teaching and Learning, Emerging Technologies, Open Source, Research Computing, Cyberinfrastructure, and Digitial Libraries. http://connect.educause.edu/browse/content/node/691/list/feed Recent library resources tagged with Contributed by Organizations or Campuses; Articles, Papers, and Reports; and Network Vulnerability Assessment. en http://connect.educause.edu/display/37129 This paper describes a vulnerability that may affect web-based applications that insecurely implement LDAP simple binds for the authentication of users. Web-based applications that fail to properly sanitize a user-submitted username and password may be vulnerable. Successful exploitation may allow for a remote anonymous user to authenticate to the web-based application as any existing user. The exploits described in this paper are most closely related to the Poison NULL byte attacks described in 1999 by Rain Forest Puppy, although utilized for a new purpose [1]. http://connect.educause.edu/display/37129#comments Authentication LDAP Network Security and Applications Network Vulnerability Assessment Vulnerability Scanning Contributed by Organizations or Campuses Articles, Papers, and Reports PDF Tue, 20 Mar 2007 10:55:27 -0500 drupal 37129 at http://connect.educause.edu http://connect.educause.edu/display/36829 Data on as many as 41,000 people may have been compromised. http://connect.educause.edu/display/36829#comments Data Security Identity Management Identity Theft Network Security and Applications Network Vulnerability Assessment Privacy Security Management Security Risk Assessment and Analysis Contributed by Organizations or Campuses Articles, Papers, and Reports HTML Tue, 07 Mar 2006 14:06:17 -0600 drupal 36829 at http://connect.educause.edu http://connect.educause.edu/display/35626 The Open Source Vulnerability Database (OSVDB), the work of a group of security industry volunteers, is an independent database aimed at logging all security vulnerabilities on the Internet. It has been in development since 2002, and just recently been opened for public use. http://connect.educause.edu/display/35626#comments Network Security and Applications Network Vulnerability Assessment Vulnerability Scanning Contributed by Organizations or Campuses Articles, Papers, and Reports HTML Wed, 21 Apr 2004 12:01:44 -0500 drupal 35626 at http://connect.educause.edu