Linux Today SECURITY LETTER FOR JUNE 12, 2000 Latest Security News for the Linux and Open Source Community. ------------------------------------------------------------------ ------------------------------------------------------------------ TODAY'S LINUX SECURITY NEWS: ------------------------------------------------------------------ SECURITY PORTAL: WEEKLY LINUX SECURITY DIGEST - 2000/06/05 TO 2000/06/11 "This was a really bad week for Linux. A serious bug was found in the kernel that allows attackers to gain root through a variety of programs (such as Sendmail). Several application holes were found and, as always, we have a lot of exploit code." COMPLETE STORY: http://securityportal.com/topnews/weekly/linux20000612.html ------------------------------------------------------------------ LINUXSECURITY.COM: INTERVIEW WITH MARCUS RANUM CEO OF NFR ON INTRUSION DETECTION, LINUX, & SECURITY Can we start with having you explain what an intrusion detection system actually is, and a mention of the various types? What is the difference between misuse detection and anomaly detection? Host-based and network-based?" COMPLETE STORY: http://www.linuxsecurity.com/feature_stories/feature_story-48.html ------------------------------------------------------------------ LINUX.COM: AN OVERVIEW OF TCP AND IP SPOOFING "A spoofing attack involves forging one's source IP address. It is the act of using one machine to impersonate another. Most of the applications and tools in Unix systems, including Linux, rely on source IP address authentication, and many developers have used host-based access controls to secure their networks. The source IP address is a unique identifier, but it is not a reliable one." COMPLETE STORY: http://www.linux.com/security/newsitem.phtml?sid=11&aid=8999 /-------------------------------------------------------------------\ LOOKING FOR LINUX PRODUCT REVIEWS? Linux Central has teamed with JustLinux to provide a comprehensive list of product reviews. Simply click on the product your interested in and follow the review to justlinux.com Visit http://www.justlinux.com/bin/review/productreview.pl \--------------------------------------------------------------adv.-/ ------------------------------------------------------------------ LINUXSECURITY.COM: LINUX SECURITY WEEK, JUNE 12TH 2000 This week was quite an active week, not the least of which was a very serious Linux kernel security bug was recently discovered that allows local users to gain root access. The problem exists in the Linux kernel capability model that affects all 2.2.x kernels." COMPLETE STORY: http://linuxsecurity.com/articles/forums_article-855.html ------------------------------------------------------------------ ROOTPROMPT.ORG: CRACKED! PART 5: REBUILDING "By this point we have realized that we must get the cracker off of our machines before it is to late. It is only a matter of time before he trashes our system to clean up his tracks, gets a sniffer running under a different architecture or uses us to launch some denial of service attack." COMPLETE STORY: http://rootprompt.org/article.php3?article=536 ------------------------------------------------------------------ Visit the other sites in the Linux Channel: Linux Planet <http://www.linuxplanet.com>, LinuxStart <http://www.linuxstart.com>, Linux Central <http://www.linuxcentral.com>, and JustLinux <http://www.justlinux.com>. Also, check out the ISP-Linux Moderated Digest <http://isp-lists.isp-planet.com/moderated/isp-linux/>. ------------------------------------------------------------------ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information about advertising in this newsletter, contact Frank Fazio, Director of Inside Sales, internet.com Corporation Call (203)662-2997 or write mailto:[EMAIL PROTECTED] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This newsletter is published by internet.com Corporation http://internet.com - The Internet Industry Portal ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To learn about other free newsletters offered by internet.com or to change your subscription - http://e-newsletters.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ internet.com's network of more than 100 Websites are organized into 14 channels... Internet Technology http://internet.com/sections/it.html E-Commerce/Marketing http://internet.com/sections/marketing.html Web Developer http://internet.com/sections/webdev.html Windows Internet Technology http://internet.com/sections/win.html Linux/Open Source http://internet.com/sections/linux.html Internet Resources http://internet.com/sections/resources.html Internet Lists http://internet.com/sections/lists.html ISP Resources http://internet.com/sections/isp.html Downloads http://internet.com/sections/downloads.html International http://internet.com/sections/international.html Internet News http://internet.com/sections/news.html Internet Stocks/VC http://internet.com/sections/stocks.html ASP Resources http://internet.com/sections/asp.html Wireless Internet http://internet.com/sections/wireless.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To find an answer - http://search.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information on reprinting or linking to internet.com content: http://internet.com/corporate/permissions.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Copyright (c) 2000 internet.com Corporation ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -------------------------------------------------------------------------- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3 Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
