Security Linux News for May 12, 2000
Linux Journal: Yes, Microsoft, This Really IS About Free Speech (May 12, 2000, 22:44)
"Microsoft's attempt to silence Slashdot postings concerning its
Kerberos extensions shows what's wrong with the Digital Millennium
Copyright Act (DMCA)--and why it should be abolished
PRNewswire: Computer Associates Warns of mstream Denial of Service Tool (May 12, 2000, 20:23)
"mstream, which was found on a Linux system at a university,
enables hackers to launch attacks from multiple hijacked servers
within one or more Internet-connected systems to flood a victim
with crippling amounts of network traffic."
LinuxMall.com: Linux Firm Rackspace.com Meets Rising Asian Demand (May 12, 2000, 19:32)
"The Asian office is a natural step in Rackspace.com's expansion
outside the U.S. and London, where it established an office in
January of this year."
ComputerWorld: ActiveX flaw can help spread viruses (May 12, 2000, 16:51)
"A flawed ActiveX control makes computers running Internet
Explorer Version 5.0 or Microsoft Office 2000 vulnerable to virus
infections on most e-mail systems even if users don't open infected
attachments, according to a computer security think tank."
LinuxToday Australia: No Love [Bug] for Linux (May 12, 2000, 11:27)
"While it's understandable that some individuals in the Linux
camp are feeling a little smug about ILOVEYOU, there's no reason to
celebrate. We are not immune to security problems. One look at the
weekly Linux security roundup should be enough to sober most
ZDNet News: Microsoft in the hot seat in new Net flap (May 12, 2000, 10:44)
"Microsoft contends the postings violate the end-user license
agreement governing Microsoft's specifications for its Kerberos
ZDNet UK: Workers face more mature threat from bigger worms (May 12, 2000, 00:56)
"Security experts concur that worms in the last year, such as
the Love Letter and Melissa, merely proved the concept.
Corporations should prepare for much more dangerous worms that
operate without user intervention."
Peacefire.org: IE exposes private cookie data (May 12, 2000, 00:34)
"Peacefire has found a way for a Web site to read all cookies
stored by Internet Explorer -- including cookies that were never
intended to be visible to a third-party Web page. This has always
been the worst fear of cookie-paranoiacs who worry about cookies
revealing too much information to unauthorized sites."