Log Management

Log file management tramite syslog-ng Piergiorgio Venuti

Gestione dei Log File con il servizio di Secure Online Desktop

Tempo di lettura: 5 min I sistemi IT producono grandi quantita’ di log file, strumenti utilissimi per garantire la sicurezza dei dati e la stabilita’ delle applicazioni. Pero’, in un ecosistema complesso, la quantita’ di file e la loro posizione, possono diventare due scogli insormontabili da superare, nel caso in cui sia necessario consultare i dati in modo efficiente. Ecco…

syslog server Piergiorgio Venuti

Nuovo servizio | Log Management – Il servizio ad alte prestazione per la conservazioni dei Log

syslog server – Il servizio ad alte prestazione per la conservazioni dei Log Utilizza tutti i punti di forza del syslog-ng Premium Edition Ricerca i log, rendi sicuri i dati sensibili con policy di accesso granulari e genera report Inoltra i log verso strumenti di terze parti   SYSLOG SERVER – SERVIZIO DI LOG MANAGEMENT IN CLOUD PER GESTIRE I…

Condividi


RSS

Piu’ articoli…

Categorie …

Tags

RSS Feed sconosciuto

RSS Feed sconosciuto

RSS Full Disclosure

  • Whistleblowersoftware.com: confidentiality and anonymity leakage to third parties 2 Luglio 2026
    Posted by Red Nanaki via Fulldisclosure on Jul 02Whistleblowersoftware.com: confidentiality and anonymity leakage to third parties ## Summary The anonymous reporting flow on `whistleblowersoftware.com` encrypts report text end-to-end in the browser but does not extend the same guarantee to attachments and exposes the reporter's network identity and timing to a US-based third party. Together these […]
  • OpenBlow Multiple Deanonymization Vulnerabilities 2 Luglio 2026
    Posted by Red Nanaki via Fulldisclosure on Jul 02OpenBlow Multiple Deanonymization Vulnerabilities Summary A production deployment was observed (HTTP archive of a full, real whistleblower submission) to route its anonymous reporting flow through Google. The intake CAPTCHA is Google reCAPTCHA, enforced as a mandatory, server-validated gate on report submission, and the UI additionally pulls a […]
  • Whistlelink: Site-access password exposed in web server access logs via GET query string 2 Luglio 2026
    Posted by Red Nanaki via Fulldisclosure on Jul 02Whistlelink: Site-access password exposed in web server access logs via GET query string Severity: CRITICAL SUMMARY The Whistlelink reporting portal protects optionally-enabled, password-gated whistleblowing sites with a site-access password. When a visitor unlocks such a site, the client validates the password by issuing an HTTP GET request […]
  • APPLE-SA-06-29-2026-3 Safari 26.5.2 2 Luglio 2026
    Posted by Apple Product Security via Fulldisclosure on Jul 02APPLE-SA-06-29-2026-3 Safari 26.5.2 Safari 26.5.2 addresses the following issues. Information about the security content is also available at https://support.apple.com/en-us/127685. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. Web Extensions Available for: macOS Sonoma and macOS Sequoia Impact: A […]
  • APPLE-SA-06-29-2026-2 macOS Tahoe 26.5.2 2 Luglio 2026
    Posted by Apple Product Security via Fulldisclosure on Jul 02APPLE-SA-06-29-2026-2 macOS Tahoe 26.5.2 macOS Tahoe 26.5.2 addresses the following issues. Information about the security content is also available at https://support.apple.com/en-us/127595. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. IOGPUFamily Available for: macOS Tahoe Impact: An app may […]
  • APPLE-SA-06-29-2026-1 iOS 26.5.2 and iPadOS 26.5.2 2 Luglio 2026
    Posted by Apple Product Security via Fulldisclosure on Jul 02APPLE-SA-06-29-2026-1 iOS 26.5.2 and iPadOS 26.5.2 iOS 26.5.2 and iPadOS 26.5.2 addresses the following issues. Information about the security content is also available at https://support.apple.com/en-us/127594. Apple maintains a Security Releases page at https://support.apple.com/100100 which lists recent software updates with security advisories. IOGPUFamily Available for: iPhone 11 […]
  • pwnlift: symlink following and TOCTOU in privileged upload handler allow arbitrary file write as root 2 Luglio 2026
    Posted by Greg via Fulldisclosure on Jul 021. Advisory information ----------------------- Title: Symlink following and TOCTOU in pwnlift upload handler allow arbitrary file write as root Advisory: https://github.com/GregDurys/security-advisories GHSA: GHSA-2v7v-rhpw-m9w4 CVE: CVE-2026-56815 Class: CWE-59 (Improper Link Resolution Before File Access), CWE-367 (Time-of-check Time-of-use Race Condition) CVSS: 7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Date: 2026-06-27...
  • [KIS-2026-12] Control Web Panel <= 0.9.8.1224 (userRes) SQL Injection Vulnerability 2 Luglio 2026
    Posted by Egidio Romano on Jul 02--------------------------------------------------------------------- Control Web Panel
  • [fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vuln 2 Luglio 2026
    Posted by ㅤevan via Fulldisclosure on Jul 02this is my first time sending to a mailing list so ive chosen something easy. here goes: Summary: Horde Groupware’s IMP Webmail solution contains a path traversal/local file inclusion vulnerability which could be exploited to escalate privileges or bypass authentication (through CSRF if unauthenticated). the vulnerability is in […]
  • Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended) 2 Luglio 2026
    Posted by 490h3fqwomf via Fulldisclosure on Jul 02Hello Full Disclosure, The following publicly available research describes a Bluetooth attack against Samsung Galaxy Buds that leverages connection arbitration behavior between HFP and A2DP profiles to preempt an active audio session. Title: Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption Exploiting Seamless Earbud Connection Arbitration to Bypass Pairing […]

Customers