Security Linux News for May 16, 2000
Security Portal: Weekly Linux Security Roundup - 2000/05/08 to 2000/05/14 (May 16, 2000, 23:33)
"Relatively quiet week. Some problems were found in various
Linux napster clones, and Bugzilla has a rather brain dead security
justLinux.com: Home network attacked by persons unknown (May 16, 2000, 21:21)
"Then it happens. Susan and I both get knocked off our machines.
The login prompt flashes on our screens. Susan and I both try to
log-on. I try telneting back into the server. Nothing works. I
power down the server and waited for it to reboot. The machine
boots up -- and everything looks fine. Until I try to log on."
BW: SecurityFocus.com Combats Damage From Cyber Attacks (May 16, 2000, 21:01)
"With the Incident Handling Focus Area, SecurityFocus.com
demonstrates its continuing commitment to educate the computer
user, IS staff and law enforcement communities on ways to
effectively handle and manage security violations."
ISP-Planet: SSH: From Secure Administration to Virtual Private Networking (May 16, 2000, 20:03)
"If you're still administering *NIX servers over the Internet
using rsh or telnet, stop right now. OpenSSH is an inexpensive
improvement well worth the minimal effort required to install and
SRO: And The Loser Is ... [Bugtraq Record on MS Security] (May 16, 2000, 19:26)
"Does NT4 have the worst security of all operating systems?
...the sheer numbers lend empirical evidence to what most security
experts have learned over the years."
LinuxMall.com: Zope Lassos Pesky Trojan (May 16, 2000, 19:04)
"Zope Weekly News has reported a problem with its security model
that appears to be potentially pervasive and not necessarily
Zope-specific. This is the first installation in a three-part
series on Zope's efforts to rein in the trojan..."
BBC News: Microsoft locks out [some] viruses (May 16, 2000, 13:12)
"As yet Microsoft has no plans to release a patch for Outlook
Express... some types of malicious programs such as the Melissa
word macro virus continue to proliferate."
SJ Mercury/AP: Microsoft alters Outlook e-mail to block viruses -- and good programs (May 16, 2000, 12:47)
"Charged with enabling easy access for computer viruses like the
Love Bug, Microsoft is altering its popular Outlook e-mail software
to prevent users from running any ``executable'' program
InfoWorld: Intel releases [Open Source] security implementation (May 16, 2000, 02:33)
"The security specification will simplify the assignment of
security technology to networks and e-businesses that may not
possess the security expertise to deploy defenses without
assistance, according to Terry Smith, CDSA Marketing manager for