Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs



Top White Papers




More on LinuxToday

Security Linux News for Oct 11, 2000

  • SuSE Security Announcement: cfengine (Oct 11, 2000, 20:21)
    "The only efficient fix for the problem is an update of the cfengine package since access restrictions limit the attack possibilities to a closed group of hosts/users only."

  • SuSE Security Announcement: esound (Oct 11, 2000, 20:13)
    "The esound daemon creates a directory /tmp/.esd to host a unix domain socket. Upon startup, the daemon changes the modes of the socket, but a race condition allows an attacker to place a symlink into the directory to point to an arbitrary file belonging to the victim."

  • Security Portal: Format Strings - An Interview with Chris Evans (Oct 11, 2000, 08:37)
    "It appears to me that these format strings have been present a very long time. A CERT advisory mentioned them being in WuFTPD since 1993. Do you think attackers have known about them and been using them?"

  • Caldera Systems Security Advisory: file view vulnerability in mod_rewrite (Oct 11, 2000, 06:41)
    "The Apache HTTP server comes with a module named mod_rewrite which can be used to rewrite URLs presented by the client before further processing."