Linux Today SECURITY LETTER FOR JUNE 26, 2000 Latest Security News for the Linux and Open Source Community. ------------------------------------------------------------------ ------------------------------------------------------------------ TODAY'S LINUX SECURITY NEWS: ------------------------------------------------------------------ LINUXSECURITY.COM: LINUX SECURITY WEEK, JUNE 26TH 2000 "Multiple vendors released fixes for the serious wu-ftpd vulnerability. The problem exists in wu-ftpd's handling of the SITE EXEC command. The default configuration of wu-ftpd is vulnerable to remote users gaining root access." COMPLETE STORY: http://www.linuxsecurity.com/articles/forums_article-963.html ------------------------------------------------------------------ SECURITY PORTAL: WEEKLY LINUX SECURITY ROUNDUP - 2000/06/19 TO 2000/06/25 "Mandrake also wins (hands down) the "easiest distribution to break into remotely" and "easiest distribution to break into locally", having finally released 8 fixes for very severe security bugs in 7.1 (their latest, not so greatest distribution). They still haven't got a central site for updates either, good luck finding them." COMPLETE STORY: http://securityportal.com/topnews/weekly/linux20000626.html ------------------------------------------------------------------ SECURITY PORTAL: SHREDDING ACCESS IN THE NAME OF SECURITY: SET UID AUDITS "Almost every time I read an article on securing a Unix/Linux box, I find a glaring omission. They all discuss turning off unneeded services, like ftp and telnet, but rarely do they cover the next step of performing a SUID audit." COMPLETE STORY: http://securityportal.com/cover/coverstory20000626.html ------------------------------------------------------------------ LINUX.COM: POST INSTALLATION "Not every Linux user has the time, devotion or patience needed in order to become an apt, security-minded Linux user. Fortunately there are a few simple steps that, if followed, can increase the integrity and security of a network-connected Linux system." COMPLETE STORY: http://www.linux.com/news/articles.phtml?sid=93&aid=9167 ------------------------------------------------------------------ LINUXSECURITY.COM: PULL THE PLUG? "I can sum up the goal of pulltheplug.com in one word: learning. That's the entire purpose of pulltheplug.com. I get a chance to learn, others get a chance to learn, etc. I think and hope that it is a win-win situation for everyone that comes and uses my network. The best part about pulltheplug.com in my opinion is no holds barred learning. That's the best there is. As I state on my site, just about anything goes except Denial of Service attacks and anything else that is more or less useless and stupid." COMPLETE STORY: http://www.linuxsecurity.com/feature_stories/feature_story-50.html ------------------------------------------------------------------ LIBRENIX: BENIFICIAL COMPUTER VIRUSES "An article on last week's front page of SecurityPortal... contains an alarming suggestion. It proposes that we..."Develop antiviral viruses (antibodies) that are polymorphic and mobile. Roaming the Internet they would seek out and destroy new viral strains. ..." There are several problems with this idea." COMPLETE STORY: http://librenix.com/?inode=80 ------------------------------------------------------------------ ROOTPROMPT.ORG: INTRUSION DETECTION: KNOWING WHEN SOMEONE IS KNOCKING ON YOUR DOOR "Your network is being scanned for vulnerabilities. This may happen only once a month or twice a day, regardless, there are people out there probing your network and systems for weaknesses." COMPLETE STORY: http://rootprompt.org/article.php3?article=581 /-------------------------------------------------------------------\ LOOKING FOR LINUX PRODUCT REVIEWS? Linux Central has teamed with JustLinux to provide a comprehensive list of product reviews. Simply click on the product your interested in and follow the review to justlinux.com Visit http://www.justlinux.com/bin/review/productreview.pl \--------------------------------------------------------------adv.-/ ------------------------------------------------------------------ Visit the other sites in the Linux Channel: Linux Planet <http://www.linuxplanet.com>, LinuxStart <http://www.linuxstart.com>, Linux Central <http://www.linuxcentral.com>, and JustLinux <http://www.justlinux.com>. Also, check out the ISP-Linux Moderated Digest <http://isp-lists.isp-planet.com/moderated/isp-linux/>. ------------------------------------------------------------------ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information about advertising in this newsletter, contact Frank Fazio, Director of Inside Sales, internet.com Corporation Call (203)662-2997 or write mailto:[EMAIL PROTECTED] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This newsletter is published by internet.com Corporation http://internet.com - The Internet Industry Portal ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To learn about other free newsletters offered by internet.com or to change your subscription - http://e-newsletters.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ internet.com's network of more than 100 Websites are organized into 14 channels... Internet Technology http://internet.com/sections/it.html E-Commerce/Marketing http://internet.com/sections/marketing.html Web Developer http://internet.com/sections/webdev.html Windows Internet Technology http://internet.com/sections/win.html Linux/Open Source http://internet.com/sections/linux.html Internet Resources http://internet.com/sections/resources.html Internet Lists http://internet.com/sections/lists.html ISP Resources http://internet.com/sections/isp.html Downloads http://internet.com/sections/downloads.html International http://internet.com/sections/international.html Internet News http://internet.com/sections/news.html Internet Stocks/VC http://internet.com/sections/stocks.html ASP Resources http://internet.com/sections/asp.html Wireless Internet http://internet.com/sections/wireless.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To find an answer - http://search.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information on reprinting or linking to internet.com content: http://internet.com/corporate/permissions.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Copyright (c) 2000 internet.com Corporation ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -------------------------------------------------------------------------- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3 Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
