We attended a seminar today organised by the CRP Henri Tudor at the Technoport Schlassgoart in Esch/Alzette. It was an IT security awareness meeting targeting small and medium businesses. Paulo made a pragmatic presentation to explain the 30 attendees what are the basic steps to secure small IT infrastructures.

The presentation will be put online shortly.

A bug affects some combinations of SSL configuration options in Apache, allowing a denial of service by sending a normal HTTP request on an https port:

http://issues.apache.org/bugzilla/show_bug.cgi?id=37791

Symantec today announced it has signed a definitive agreement to acquire IMlogic, the market leader in enterprise software for instant messaging (IM). IMlogic’s technology provides a complete solution to control and secure public and enterprise IM networks while ensuring compliance with regulatory and corporate governance policies. The acquisition is expected to close shortly after receiving customary regulatory approvals.

The US-CERT has published an advisory about a vulnerability in Blackberry that could cause a denial of service or an arbitrary code execution. There is no patch available yet, but RIM recommends to exclude TIFF images from being processed by the Attachment Service, or to disable the Attachment Service completely.
As smartphones, and specially the Blackberry platform, become popular, we’ll probably see more and more like this one.