Nothing is un-hackable, but the degrees of difficulty matter.<div><br></div><div>Apache is a far more popular web server than IIS yet we know which one is the easier target for hackers. Popularity isn&#39;t *the* determining factor, it&#39;s how well-coded the system is.</div>

<div><br></div><div>While on this issue, check-out Jarlsberg <a href="http://jarlsberg.appspot.com/">http://jarlsberg.appspot.com/</a>, an excellent hands-on resource on security on the web for anyone building/hosting/implementing anything on the web:</div>

<div><br></div><div><span class="Apple-style-span" style="font-family: Verdana, Arial, Helvetica, sans-serif; font-size: 11.6667px; "><h2 style="color: rgb(102, 0, 102); font-weight: 600; text-align: left; font-size: 16px; border-top-width: 1px; border-top-style: solid; border-top-color: rgb(229, 236, 249); padding-top: 6px; margin-top: 1px; ">

Want to beat the hackers at their own game?</h2><ul><li>Learn how hackers find security vulnerabilities!</li><li>Learn how hackers exploit web applications!</li><li>Learn how to stop them!</li></ul><p></p><p>This codelab shows how web application vulnerabilities can be exploited and how to defend against these attacks. The best way to learn things is by doing, so you&#39;ll get a chance to do some real penetration testing, actually exploiting a real application. Specifically, you&#39;ll learn the following:</p>

<p></p><ul><li>How an application can be attacked using common web security vulnerabilities, like cross-site scripting vulnerabilities (XSS) and cross-site request forgery (XSRF).</li><li>How to find, fix, and avoid these common vulnerabilities and other bugs that have a security impact, such as denial-of-service, information disclosure, or remote code execution.</li>

</ul></span></div><div><br></div><div><br></div><div>You will be surprised at how something as &quot;simple&quot; as different unicode encodings (utf-8, utf-7 etc) can be used to hack into web applications.</div><div><br>

</div><div>-saidi-</div><div><br></div><div><br><div class="gmail_quote">On Fri, Jun 18, 2010 at 12:09 PM, Joe Maina <span dir="ltr">&lt;<a href="mailto:maina307@gmail.com">maina307@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">

I fail to understand why guys claim linux is unhackable. The thing is<br>
if it was as popular as windows am certain its vunerabilities would be<br>
exploited same as windows.<br>
<br>
On 17/06/2010, Roy Michoma &lt;<a href="mailto:roymichoma@gmail.com">roymichoma@gmail.com</a>&gt; wrote:<br>
&gt; Has the linux malware assault &lt;<a href="http://tinyurl.com/24htdnc" target="_blank">http://tinyurl.com/24htdnc</a>&gt; just began or is<br>
<div class="im">&gt; this a one time thing?<br>
&gt;<br>
</div><div><div></div><div class="h5">_______________________________________________<br>
Skunkworks mailing list<br>
<a href="mailto:Skunkworks@lists.my.co.ke">Skunkworks@lists.my.co.ke</a><br>
<a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks</a><br>
------------<br>
Skunkworks Server donations spreadsheet<br>
<a href="http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en" target="_blank">http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en</a><br>


------------<br>
Skunkworks Rules<br>
<a href="http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94" target="_blank">http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94</a><br>
------------<br>
Other services @ <a href="http://my.co.ke" target="_blank">http://my.co.ke</a><br>
</div></div></blockquote></div><br></div>