=========================================================
------- SECURING THE ENTERPRISE --------
=========================================================
September 2, 2004
=========================================================
Sponsored by St. Bernard
Cut Patching Costs, Not Features!
Patching takes time and you need a comprehensive solution
that won't break your IT budget. Only UpdateEXPERT from St.
Bernard Software has the features you want at the price you
need. The exclusive optional client agent and multiple
master agents are onboard at no additional charge. And no
other patch management solution is as easy-to-use. Find out
for yourself -- download your free trial of UpdateEXPERT
today!
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120388-1
=========================================================
=========================================================
In This Edition
=========================================================
Larry Seltzer: Core Library Flaws Ripple Through Internet
1. News: Security Researchers Demand More Info from Oracle
2. News: Hack To School
3. News: Kerberos Flaws Leave Networks Unprotected
4. News: Kerberos Holes Could Bring Serious Exploits
5. News: New Bagle Threat Spreading Quickly, Quietly
For the latest in enterprise security, bookmark
eWEEK.com's Security Topic Center:
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120391-1
=========================================================
Larry Seltzer
=========================================================
Core Library Flaws Ripple Through Internet
When a popular library such as ASN.1 is hit, the list of
victims can be much longer than it seems.
In the last year we've also had problems in popular packages
such as LibPNG and OpenSSL. It's hard to know sometimes
whether you're affected when a problem like this comes out.
There are ways to address the problem, but they aren't cheap
or easy.
Read the rest of Larry's column here.
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120394-1
=========================================================
Security Update
=========================================================
1. News: Security Researchers Demand More Info from Oracle
While they say the company's move to monthly security patch
rollouts is a good start, many stress that the database
giant will need to iron out its communication process and
provide more specifics. Analysts and users speak up.
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120397-1
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2. News: Hack To School
As a new school year starts, university I.T. administrators
must learn how to counter threats to their networks from
increasingly computer-savvy students. Read how college
admins are trying to strike a balance between academic
freedom and network monitoring.
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120400-1
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
3. News: Kerberos Flaws Leave Networks Unprotected
MIT researchers have uncovered a number of serious security
flaws in the Kerberos authentication system. Get the details
on this loophole.
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120403-1
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
4. News: Kerberos Holes Could Bring Serious Exploits
While none has yet been reported, the vulnerabilities
uncovered by MIT researchers could cause "double free"
errors or send the component into an endless loop. Should
you be concerned?
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120406-1
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
5. News: New Bagle Threat Spreading Quickly, Quietly
Like Bagle.AQ infected messages of two weeks ago, a flood of
infected e-mails started hitting users' mailboxes Tuesday
bearing the subject line "foto", and an unencrypted zip file
"foto.zip". However, it doesn't seem to be able to get much
farther than the initial spam. Learn how to prevent being
infected here.
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120409-1
=========================================================
Tech Jobs
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120412-1
=========================================================
Ziff Davis Channel Zone
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120415-1
=========================================================
DevSource
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120418-1
=========================================================
eNewsletter Information
=========================================================
You are subscribed to this newsletter with the e-mail
address [EMAIL PROTECTED]
TO UNSUBSCRIBE, click here:
http://www.eweek.com/unsubscribe_newsletter/0,4223,,00.asp?n=07&type=u&[EMAIL
PROTECTED]
To change your HTML/text preferences, change your e-mail
address or subscribe to other eNewsletters from Ziff Davis
Media, click here:
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120421-1
Questions about your newsletter subscriptions? To read our
FAQ, click here:
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120424-1
=========================================================
eWEEK Magazine Information
=========================================================
To apply for a free subscription to eWEEK, please go to
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120427-1
For help with your print subscription to eWEEK, click here:
http://eletters.eweek.com/zd1/cts?d=79-1060-5-8-318676-120430-1
Copyright (c) 2004 Ziff Davis Media Inc. All Rights Reserved.
Ziff Davis Media Inc., 28 East 28th Street, New York, NY 10016
[Non-text portions of this message have been removed]
------------------------ Yahoo! Groups Sponsor --------------------~-->
$9.95 domain names from Yahoo!. Register anything.
http://us.click.yahoo.com/J8kdrA/y20IAA/yQLSAA/BCfwlB/TM
--------------------------------------------------------------------~->
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/kumpulan/
<*> To unsubscribe from this group, send an email to:
[EMAIL PROTECTED]
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
