|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[ISN] Linux Security Week - April 9th 2001
newsletter-admins
linuxsecurity.com
Date: Mon Apr 09 2001 - 09:50:36 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
+---------------------------------------------------------------------+
| LinuxSecurity.com Weekly Newsletter |
| April 9th 2001 Volume 2, Number 14n |
| |
| Editorial Team: Dave Wreski davelinuxsecurity.com |
| Benjamin Thomas benlinuxsecurity.com |
+---------------------------------------------------------------------+
Thank you for reading the LinuxSecurity.com weekly security
newsletter. The purpose of this document is to provide our readers
with a quick summary of each week's most relevant Linux security
headlines.
This week, the Adore worm is something that Linux users should be
on the outlook for. SANS released a good paper on the specifics
of this particular worm. Also this week, you may want to spend time
reading "Detecting Loadable Kernel Modules," "The Process of Network
Security," and "ion Internet Worm Analysis."
This week, advisories were released for the Linux kernel, ntp, and
openssh. The vendors include Caldera, Debian, NetBSD, Red Hat, and
Trustix.
http://www.linuxsecurity.com/articles/forums_article-2814.html
The ISN daily news digest mailing list provides a general account of
the day's most relevant information security news. Send a message to
isnc4i.org for subscription information.
### FREE Apache SSL Guide from Thawte ###
Planning Web Server Security? Find out how to implement SSL! Get the
free Thawte Apache SSL Guide and find the answers to all your Apache
SSL security issues and more at:
http://www.thawte.com/ucgi/gothawte.cgi?a=n322405480022000
EnGarde Secure Linux is now available for download:
http://www.engardelinux.org
This EnGarde Quick Start guide is designed to help you quickly set up
EnGarde Secure Linux, change user passwords, and manage certificates.
http://ftp.engardelinux.org/pub/engarde/1.0.1/docs/ESLQuick-1.0.1.pdf
HTML Version available:
http://www.linuxsecurity.com/newsletter.html
+---------------------+
| Host Security News: | <<-----[ Articles This Week ]-----------------+
+---------------------+
* Detecting Loadable Kernel Modules (LKM)
April 8th, 2001
The purpose of this paper is cover LKM basics, detecting "trojaned"
LKM's and figuring out which LKM is installed on your machine. What
is a LKM? Loadable Kernel Modules (LKM) are files that contain
dynamically loadable kernel components. LKM's are normally used to
load device drivers and other hardware drivers.
http://www.linuxsecurity.com/articles/host_security_article-2821.html
* Improving Apache
April 5th, 2001
When it comes to Web-server security, many systems admins
automatically assume Microsoft's Internet Information Server (IIS)
is the devil, while the open-source Apache is God. Diehard Unix
admins swear up and down that they'll never go with IIS because it's
a breach waiting to happen and Apache is so secure. Well, guess
again.
http://www.linuxsecurity.com/articles/server_security_article-2811.html
* Securing a PHP Installation
April 5th, 2001
In this article we're going to discuss security issues relating to
PHP. PHP can be a very powerful and, overall, secure language. That
doesn't mean you can just throw caution to the wind, however. Since
PHP is most commonly used as an Apache module, it derives its
security model to a large degree from Apache, which, if configured
properly, is a very secure environment.
http://www.linuxsecurity.com/articles/server_security_article-2806.html
+------------------------+
| Network Security News: |
+------------------------+
* Lion Internet Worm Analysis
April 6th, 2001
This paper provides an introduction to the Lion (1i0n) Worm author
and a technical analysis of the Lion Internet Worm. Three unique
variations of the Lion Worm have been released on the Internet over
the past month. All three versions of the Lion Worm are
unsophisticated unix shellscript worms.
http://www.linuxsecurity.com/articles/network_security_article-2813.html
* The Process of Network Security : Designing and Managing a Safe
Network
April 5th, 2001
This book is written for network managers and administrators. Readers
should also be familiar with computing and network processes and
terminology. Divided into 16 chapters, this book has a good flow
about it. The focus is on helping the reader to understand just what
security is, what to do when a system is compromised, and how to
protect these systems in the future.
http://www.linuxsecurity.com/articles/documentation_article-2807.html
* SANS Releases Info on "Adore Worm"
April 4th, 2001
There is apparently a new worm to follow on the heels of the Rame and
Lion worms. "Adore is a worm that we originally called the Red Worm.
It is similar to the Ramen and Lion worms. Adore scans the Internet
checking Linux hosts to determine whether they are vulnerable to any
of the following well-known exploits: LPRng, rpc-statd, wu-ftpd and
BIND. LPRng is installed by default on Red Hat 7.0 systems. From the
reports so far, Adore appears to have started its spread on April 1.
http://www.linuxsecurity.com/articles/intrusion_detection_article-2800.html
+------------------------+
| Vendors/Products: |
+------------------------+
* BioPassword Security Checks User's Typing Pattern
April 6th, 2001
Soto, Government Computer News. Call me paranoid, but I'm in good
company. Most biometric security programs -- which identify a person
through their biological traits -- store details about a user's
unique physical characteristics on a hard drive, and Robert Flores,
the CIA's chief technology officer, says it's easy enough for a
hacker to get at the data.
http://www.linuxsecurity.com/articles/vendors_products_article-2818.html
* Three sites named to provide security help to federal system
administrators
April 3rd, 2001
Federal systems administrators in search of advice on computer and
network security can log onto three Web sites tailored to their
needs, a security specialist said last week at the National
High-Performance Computing and Communications Council's annual
conference in Newport, R.I.
http://www.linuxsecurity.com/articles/security_sources_article-2793.html
+------------------------+
| General News: |
+------------------------+
* The Lance Spitzner Interview
April 6th, 2001
"Lance is an absolutely essential leader in the whitehat community.
He infects everyone with his passion and enthusiasm for network
security. But more importantly, he organizes a fairly disparate group
of security experts into a productive, cooperative team. This is no
easy feat in an industry that increasingly favors non-disclosure.
http://www.linuxsecurity.com/articles/forums_article-2817.html
* Hackers keep ahead in the security game [Honeynet Project]
April 6th, 2001
Under the Honeynet Project, Spitzner and a team of reformed hackers
and security experts leave unprotected servers on the Internet and
monitor them until an intruder breaks in. These "honeypots" have
revealed a lot about the techniques of online attackers and the lack
of security in default installations of operating systems'.
http://www.linuxsecurity.com/articles/intrusion_detection_article-2816.html
* FBI struggles to retain cybercrime experts
April 6th, 2001
The FBI suffers from a high turnover of experts in cybercrime but
continues to get quality people, FBI Director Louis Freeh said
Wednesday. "There's a bull market" for skilled FBI cyber-crime
workers, Freeh told a World Economic Forum event held at the U.S.
Chamber of Commerce.
http://www.linuxsecurity.com/articles/government_article-2815.html
* Government backtracks on encryption enquiry
April 4th, 2001
Despite accepting its own taskforce recommendation two weeks ago, the
Home Office now says there will be no independent enquiry into the
effects of the controversial RIP Act The Home Office has
backtracked on a promise to commission an independent enquiry into
the effects of legislation that will give police and other
authorities the power to intercept data transmitted over private
networks and demand decryption keys from the place where data is
encrypted. <
http://www.linuxsecurity.com/articles/cryptography_article-2799.html
* Hacker Speak
April 3rd, 2001
Don't know a buffer overflow from a script kiddie? Here's your guide
to understanding all the talk about computer security. Hackers and
members of the Internet security industry, like workers in other
specialty trades, have their own form of shop talk. The following is
an abbreviated list of catch phrases and euphemisms used by hackers
and security.
http://www.linuxsecurity.com/articles/hackscracks_article-2795.html
* Testing Your Mettle: The Six-Hour, 250-Question CISSP Exam
April 3rd, 2001
Does an alphabet soup of acronyms, which stand for certifications
that you've obtained, follow your signature? Are you wondering
which, if any, are really valuable? Are you contemplating a
worthwhile certification challenge? Have you been working in the
information system security arena? If so, the Certified Information
Systems Security Professional (CISSP) designation may be right for
you.
http://www.linuxsecurity.com/articles/organizations_events_article-2791.html
------------------------------------------------------------------------
Distributed by: Guardian Digital, Inc. LinuxSecurity.com
To unsubscribe email newsletter-requestlinuxsecurity.com
with "unsubscribe" in the subject of the message.
------------------------------------------------------------------------
ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERVSecurityFocus.com with a message body of
"SIGNOFF ISN".
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]