As part of my campaign to address some of the neglect for this site, I've updated the feeds aggregated into securedaemon.net. There are ~70 feeds coming in now. At some point later, time permitting, I'll audit the feeds again to remove ones that just aren't working over the long term, don't update with any frequency, or should be removed for other reasons.

Feel free to suggest any feeds that should be added!

Here is a collection of some of the advisories, blogs, and so forth on this topic:

http://www.isc.org/index.pl?/sw/bind/bind-security.php

CERT VU#800113 DNS Cache Poisoning Issue
ISC characterization: Query Port Randomization for BIND 9

Dan Kaminsky: An Astonishing Collaboration - An Astonishing Collaboration

Wow. It's out. It's finally, finally out.

“ There's something very important about what we accomplished here. We. Because there's absolutely no way I could have pulled this off by myself. ”

Sweet!

Internet Effects of Last Week’s DNS Patching - We got curious to see if there was an effect from the Internet scale DNS patching going on. Our Internet statistics system suggests … no.

Brief: ICANN releases report on root-server attack - ICANN releases report on root-server attack [SecurityFocus News]

Bottom line: DNS Anycast Style kung fu is stronger than Botherder Style kung fu.

Black Hat Bullied into Silence -
[eWEEK Security]

An unsurprising consequence of increased media and public awareness of information security issues is an increased willingness of corporations to use legal force to silence vulnerability disclosure and open discourse.

Securedaemon.net has moved to a new host.

Performance and availability should improve, while unfortunately https is not an option at present.

All users, please change your passwords as per the instructions sent to your email.

Tip of the Day - Like a Kid in a WMIC Candy Store, (Mon, Aug 21st) - Hello sports fans… Ed Skoudis here, and I'm going to run this thing blog-style tod ...(more)... [SANS Internet Storm Center]

This is very much worth reading, as is the previous handler diary entry on the subject. WMIC /almost/ makes Windows an OS that is deployable as a server that isn't hamstrung by the rediculousness of a GUI ;)

Oh, and yes I changed my username to 'Chris'.

I did some tweaking today on the way the aggregator module works for the site after wrestling with a similar frustration for a proof of concept I've put together for work. Essentially, the way Drupal handles the feeds in the "sources" view, the default for Securedaemon.net, is to sort the feeds by 'fid'. The feed ID is based on the order in which feeds were added to the aggregator. That default sort field is not very useful for the sources view. What I've done is changed the default sort to 'title', so the feeds will be in alphabetical order. That, at least, makes some sence compared to the default 'fid' sorted order.

What's In a Name? - There's a category of software that's rather difficult to define, or at least to name. Many term it as potentially unwanted applications or software (PUA/PUS). Companies pushing this type of software use every possible means to get you to download as many copies of their product as possible. Spamming, pop-ups, hijacking start pages, etc. Sound familiar?

What are we speaking of? Rogue anti-spyware and other so-called system optimization utilities. And they aren't just pushing one version, they're pushing many.