Prevent passwords ´vulnerability with KeyGen

With the daily use of online services by businesses and regular users, security has become an important issue for everyone. Complex systems are being invented to avoid being infected by viruses as well as protecting the privacy of data sent through the internet.

However, the main security flaw is often found in the users themselves rather than on the systems. This is due to the use of extremely vulnerable passwords. To solve this we can use a program like KeyGen, as we mentioned before. Alternating capital letter and lowercase as well as using special characters we will achieve a strong password that would test even the most experienced hacker.

Another reason why our systems can be vulnerable regarding passwords is by our behavior as users. Our lack of knowledge about the problem often leads us to “share” our passwords with others, using a limited number of them in all services and leave them stored on shared computers.

If we manage to overcome these issues, and use a program like KeyGen to create secure passwords, we will have taken a big step regarding security, privacy and the integrity of our data.

Critical security hole found in Firefox 3.5

Days after the launch of Firefox 3.5, several issues have been found due to security issue. To make things worse, these slipups are turning into common issues among web browsers, and hackers will obviously make the most of it.

The first issue found in Firefox 3.5 was a highly critical Javascript vulnerability, the problem was cause due to the new Javascript rendering engine Tracemonkey, any one who has this enabled would be affected. It is a critical vulnerability that can be used to execute malicious code. The vulnerability can be exploited by an attacker who tricks a victim into viewing a malicious Web page containing the exploit code.

Even though this issue was fixed with Firefox 3.5.1, a vulnerability was found days later. Various analysts and sites have recently confirmed a vulnerability.1 that has had exploit PoC released. When exploited, the vulnerability can lead to system compromise or induce a DOS.

As a workaround, Mozilla advises users to disable the Just-in-time JavaScript compiler. To do so, users must first enter “about:config” into the browsers location bar and then set the “javascript.options.jit.content” setting value to “false”. When making changes to the “about:config” settings, users will first see a warning message stating that “This might void your warranty” and that changes to the advanced settings can be harmful to the stability, security and performance of Firefox.

Mozilla notes that disabling the JIT compiler is only a temporary security measure and that it will result in decreased JavaScript performance. Once the update is released, users should change the value back to “true”. Alternatively, users running Firefox 3.5 on Windows can run Firefox in Safe Mode, which automatically disables JIT.

Mozilla claims that the patch was already in the works when Firefox 3.5 was released which makes users uncomfortable and are starting grow disgrateful towards the Mozilla foundation.

Even though the security patches were released on the double, we hope that Mozilla checks on their products better before releasing them to the public since there are lots of Firefox users around who use the popular app as their default browser, otherwise a lot of Firefox will quickly turn to other browsers without giving it a second thought