Linux Today SECURITY LETTER FOR MAY 17, 2000 Latest Security News for the Linux and Open Source Community. ___________________________ Sponsors ________________________________ This newsletter sponsored by: TurboLinux _____________________________________________________________________ ------------------------------------------------------------------ ------------------------------------------------------------------ TODAY'S LINUX SECURITY NEWS: ------------------------------------------------------------------ ISP-PLANET: SSH: FROM SECURE ADMINISTRATION TO VIRTUAL PRIVATE NETWORKING "If you're still administering *NIX servers over the Internet using rsh or telnet, stop right now. OpenSSH is an inexpensive improvement well worth the minimal effort required to install and configure it." COMPLETE STORY: http://linuxtoday.com/story.php3?sn=21878 ------------------------------------------------------------------ JUSTLINUX.COM: HOME NETWORK ATTACKED BY PERSONS UNKNOWN "Then it happens. Susan and I both get knocked off our machines. The login prompt flashes on our screens. Susan and I both try to log-on. I try telneting back into the server. Nothing works. I power down the server and waited for it to reboot. The machine boots up -- and everything looks fine. Until I try to log on." COMPLETE STORY: http://www.justlinux.com/bin/feature/story.pl?fid=1929218 ------------------------------------------------------------------ SECURITY PORTAL: WEEKLY LINUX SECURITY ROUNDUP - 2000/05/08 TO 2000/05/14 "Relatively quiet week. Some problems were found in various Linux napster clones, and Bugzilla has a rather brain dead security hole." COMPLETE STORY: http://securityportal.com/topnews/weekly/linux20000515.html ------------------------------------------------------------------ WIRED: CRITICS BLAST MS SECURITY "If you're a Windows 2000 user, be warned: Your security software may not work the way you think it does." COMPLETE STORY: http://www.wired.com/news/technology/0,1282,36336,00.html ------------------------------------------------------------------ ZDNET: MS AGAIN SLAMMED ON SECURITY "Experts question robustness of Windows scripting system after discovery of hole that lets intruders break in via 'back door.' " COMPLETE STORY: http://www.zdnet.com/zdnn/stories/news/0,4586,2570727,00.html?chkpt=zdhpnews01 ------------------------------------------------------------------ ZDNET: AND THE LOSER IS ... "But, before the Linux fans start popping open their champagne bottles, they'll be horrified to know that the different distributions aggravate problems almost matched NT and were much higher than other operating systems covered such as the BSDs, Solaris and Windows 95/98." COMPLETE STORY: http://www.zdnet.com/enterprise/stories/main/0,10228,2570180,00.html /-------------------------------------------------------------------\ "As e-commerce grows in popularity, and Web servers become mission-critical, clustering is back on the scene as a hot and vitally needed technology. And TurboCluster (from TurboLinux) is taking center stage." -Sm@rt Reseller TurboLinux. High-Performance Linux! http://www.turbolinux.com/products/tcs/why-to-buy.html \--------------------------------------------------------------adv.-/ ------------------------------------------------------------------ SITEREVIEW.ORG: UNIX'S POOR INTERNET SECURITY REPUTATION "Finding and repairing... misconfigured and unneeded services is one of the most important and neglected tasks involved in securing a Unix Internet server." COMPLETE STORY: http://sitereview.org/?article=120 ------------------------------------------------------------------ SUSE SECURITY ANNOUNCEMENT: PACKAGE: KERNEL < 2.2.15 "The masquerading feature in the Linux kernel has got a vulnerability in the udp and ftp masquerading code which allows arbitary backward connections to be opened. Some denial of service were found." COMPLETE STORY: http://linuxtoday.com/story.php3?sn=21946 ------------------------------------------------------------------ Visit the other sites in the Linux Channel: Linux Planet <http://www.linuxplanet.com>, LinuxStart <http://www.linuxstart.com>, Linux Central <http://www.linuxcentral.com>, and JustLinux <http://www.justlinux.com>. Also, check out the ISP-Linux Moderated Digest <http://isp-lists.isp-planet.com/moderated/isp-linux/>. ------------------------------------------------------------------ To advertise on our newsletters and 125+ more at internet.com, please contact Frank Fazio: mailto:[EMAIL PROTECTED] Director, Inside Sales (203)-662-2997 ------------------------------------------------------------------ Copyright 2000 internet.com Corp. <http://www.internet.com>. ------------------------------------------------------------------ -------------------------------------------------------------------------- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3 Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
