Linux Today SECURITY LETTER FOR SEPTEMBER 19, 2000 Latest Security News for the Linux and Open Source Community. ------------------------------------------------------------------ ------------------------------------------------------------------ TODAY'S LINUX SECURITY NEWS: ------------------------------------------------------------------ RED HAT SECURITY ADVISORY: SYSLOG FORMAT VULNERABILITY IN KLOGD "Various vulnerabilities exist in syslogd/klogd. By exploiting these vulnerabilities, it could be possible for local users to gain root access." COMPLETE STORY: http://linuxtoday.com/story.php3?sn=27655 ------------------------------------------------------------------ NET-SECURITY.ORG: SECURING A REDHAT LINUX 6.2 MACHINE (BASICS) "This article will cover the basics of making a virgin redhat install more or less secure before putting it on the internet." COMPLETE STORY: http://www.net-security.org/text/articles/srh.shtml ------------------------------------------------------------------ MOZILLA.ORG: NETWORK SECURITY SERVICES 3.1 "Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications." COMPLETE STORY: http://www.mozilla.org/projects/security/pki/nss/release_notes_31.html /-------------------------------------------------------------------\ NEED TO LEARN ABOUT LINUX FAST? Your Linux Adventure Begins Here� LinuxStart.com gives you all the latest Linux news and events. Offering tutorials, games, development, documentation and system support, it offers you all the information you need to get started with Linux. Don't hesitate, visit: http://www.linuxstart.com \--------------------------------------------------------------adv.-/ ------------------------------------------------------------------ TURBOLINUX SECURITY ANNOUNCEMENT: PACKAGE: XCHAT-1.4.2 AND EARLIER "By supplying commands enclosed in backticks ('') in URL's sent to X-Chat, it is possible to execute arbitrary commands should the X-Chat user decide to view the link by clicking on it." COMPLETE STORY: http://linuxtoday.com/story.php3?sn=27678 ------------------------------------------------------------------ TURBOLINUX SECURITY ANNOUNCEMENT: PACKAGES: SYSKLOGD-1.3.31-5 AND EARLIER "Various vulnerabilities exist in syslogd/klogd. By exploiting these vulnerabilities, it could be possible for local users to gain root access." COMPLETE STORY: http://linuxtoday.com/story.php3?sn=27679 ------------------------------------------------------------------ DEBIAN SECURITY ADVISORY: NEW VERSIONS OF SYSKLOGD RELEASED "Multiple vulnerabilities have been reported in syslogd and klogd. A local root exploit is possible, and remote exploits may be possible in some cases (though we are not currently aware of a remote exploit.)" COMPLETE STORY: http://linuxtoday.com/story.php3?sn=27711 ------------------------------------------------------------------ Visit the other sites in the Linux Channel: Linux Planet <http://www.linuxplanet.com>, LinuxStart <http://www.linuxstart.com>, Linux Central <http://www.linuxcentral.com>, and JustLinux <http://www.justlinux.com>. Also, check out the ISP-Linux Moderated Digest <http://isp-lists.isp-planet.com/moderated/isp-linux/>. ------------------------------------------------------------------ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information about advertising in this newsletter, contact Frank Fazio, Director of Inside Sales, internet.com Corporation Call (203)662-2997 or write mailto:[EMAIL PROTECTED] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This newsletter is published by internet.com Corporation http://internet.com - The Internet Industry Portal ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To learn about other free newsletters offered by internet.com or to change your subscription - http://e-newsletters.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ internet.com's network of more than 100 Websites are organized into 14 channels... Internet Technology http://internet.com/sections/it.html E-Commerce/Marketing http://internet.com/sections/marketing.html Web Developer http://internet.com/sections/webdev.html Windows Internet Technology http://internet.com/sections/win.html Linux/Open Source http://internet.com/sections/linux.html Internet Resources http://internet.com/sections/resources.html Internet Lists http://internet.com/sections/lists.html ISP Resources http://internet.com/sections/isp.html Downloads http://internet.com/sections/downloads.html International http://internet.com/sections/international.html Internet News http://internet.com/sections/news.html Internet Investing http://www.internet.com/sections/stocks.html ASP Resources http://internet.com/sections/asp.html Wireless Internet http://internet.com/sections/wireless.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ To find an answer - http://search.internet.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For information on reprinting or linking to internet.com content: http://internet.com/corporate/permissions.html ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Copyright (c) 2000 internet.com Corporation ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -------------------------------------------------------------------------- Utk berhenti langganan, kirim email ke [EMAIL PROTECTED] Informasi arsip di http://www.linux.or.id/milis.php3 Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
