LINUX TODAY SECURITY LETTER FOR APRIL 16, 2000
Latest Security News for the Linux and Open Source Community.
___________________________ Sponsors ________________________
This newsletter sponsored by: TurboLinux
_____________________________________________________________
------------------------------------------------------------------
TODAY'S LINUX SECURITY NEWS:
------------------------------------------------------------------
ERIC S. RAYMOND: DESIGNED FOR INSECURITY -- REPRISED
"The security and trust problems that come with that kind
of lock-in are the real point here, not the details of any
particular exploit or the name of the vendor attached to it."
COMPLETE STORY:
http://linuxtoday.com/story.php3?sn=20251
------------------------------------------------------------------
SECURITY PORTAL: WEEKLY LINUX SECURITY ROUNDUP - 2000/04/10
TO 2000/04/16
"Vendors are still playing catch up, Red Hat and Mandrake
finally released patches for the gpm root hack, but apart from
that not a whole has happened."
COMPLETE STORY:
http://securityportal.com/topnews/weekly/linux20000417.html
------------------------------------------------------------------
SECURITYFOCUS.COM: WIDE OPEN SOURCE - IS OPEN SOURCE REALLY
MORE SECURE THAN CLOSED?
"But there have been plenty of security vulnerabilities in
Open Source Software that were discovered, not by peer review,
but by black hats. Some security holes aren't discovered by
the good guys until an attacker's tools are found."
COMPLETE STORY:
http://www.securityfocus.com/commentary/19
/-------------------------------------------------------------------\
High-nutrition food for your body. High-octane fuel for your car.
High-performance Linux for your Server. TurboCluster Server from
TurboLinux. High-performance Linux at an affordable price!
http://www.turbolinux.com/products/tcs/cluster.html
\--------------------------------------------------------------adv.-/
ROOTPROMPT.ORG: DIGITAL CERTIFICATES & ENCRYPTION
"...someone who's determined can intercept and eavesdrop on your
private conversations or credit card exchanges. Worse still,
they might replace your information with their own and send
it back on its way. Encryption & Digital Certificates... Used
together... protect your data as it travels over the Internet."
COMPLETE STORY:
http://rootprompt.org/article.php3?article=354
------------------------------------------------------------------
TECHNOCRAT.NET: OPEN SOURCE CRITIQUE CRITICIZED [BRUCE PERENS'
REBUTTAL]
"The Gauntlet firewall published by Trusted Information Systems
was not an Open Source program. It's what we call 'disclosed
source-code', and that's very important because that difference
means that nobody had much reason to read it or work on it."
COMPLETE STORY:
http://technocrat.net/955986079/index_html
------------------------------------------------------------------
THE REGISTER: MICROSOFT MOLE SPILLS BEANS ON WEENIES
"A mole working at Microsoft in Redmond has described in detail
the process that culminated in a FrontPage security bug that
unfolded its wings and started occupying hectares of column
inches last week."
COMPLETE STORY:
http://www.theregister.co.uk/000417-000001.html
------------------------------------------------------------------
SENDMAIL.NET: Q&A: WIETSE VENEMA
"Venema's name has since become synonymous with security in
the minds of sysadmins worldwide, thanks to his work on SATAN,
TCP Wrapper, and a host of other tools to keep the scriptkiddies
at bay. This work hasn't gone unnoticed."
COMPLETE STORY:
http://sendmail.net/?feed=interviewvenema
------------------------------------------------------------------
Visit the other sites in the Linux Channel:
Linux Planet <http://www.linuxplanet.com>,
LinuxStart <http://www.linuxstart.com>,
Linux Central <http://www.linuxcentral.com>,
and JustLinux <http://www.justlinux.com>.
Also, check out the ISP-Linux Moderated Digest
<http://isp-lists.isp-planet.com/moderated/isp-linux/>.
------------------------------------------------------------------
--------------------------------------------------------------------------
Utk berhenti langganan, kirim email ke [EMAIL PROTECTED]
Informasi arsip di http://www.linux.or.id/milis.php3
Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
