So you may have heard that Firefox 3.5 just got released yesterday. If you just can't wait, you can get it here.  If you're like me, you're running Linux and hate waiting for the latest, greatest to make it to the repos. Also, you're paranoid and want to do minor upgrades with the built-in FF update mechanism ASAP instead of waiting for the repos to chatch up. Well my friend, you can. Its easy and will only cost you about 27 MB of disk space.

I apologize for the shameless self promotion, but I wanted to let you know that the interview I did with Ross Anderson at AppSec EU 2009 is now available here and on iTunes.  It covers some very interesting topics and expands on some of the issues raised in his keynote on

• Login or register to post comments
• Read more

So there was an interesting post by Andres (w3af project lead) yesterday on the w3af-users list noting an unusual behavior with Apache. Here's a very quick overview

As promised, I've found some time to add a list of talks that I thought were very interesting.  I spent much of the conference helping out with various and sundry things and actually got to see very few talks while I was there.  That said, here's the talks that I can't wait for the videos to get posted:

Interesting attack vectors and tools

AppSec EU 2009 was fantastic and Poland was quite nice.  I think everyone who got to attend had a good time and enjoyed the conference.  I'd highly recommend the next AppSec Wherever that OWASP puts on.  For the latest OWASP conferences look here.
Here's my quick brain dump from the conference: