CertiGuide to Security+ - IM Software Flaws

Get this Security+ CertiGuide for your own computer.

Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!

Get It Here!

Custom Search

CertiGuide to Security+
9 Chapter 2:  Communication Security (Domain 2.0; 20%)
      9 2.3  The Web
           9 2.3.3  Instant Messaging
                9 2.3.3.1  Vulnerabilities

Lack of Logging and Audit Trails

2.3.3.2 8.3 Naming Conventions

IM Software Flaws

And of course, need I even mention this? There are implementation flaws in just about everything. If a way hasn’t been found yet in your preferred IM client, to allow someone to send you a file to be stored under a pathname of their choosing, to run a command of the attacker’s choosing on your system, or to accomplish some other impolite activity that would generally be regarded as a security threat, just give it time. Monitor your IM vendor’s site for updates, and install them.

Lack of Logging and Audit Trails

2.3.3.2 8.3 Naming Conventions

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!

Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.