Security Linux News for Jan 22, 2001
Security Portal: Top Ramen - Noodles for Script Kiddies (Jan 22, 2001, 23:07)
"The Ramen worm is similar to the Morris Internet worm of 1989.
Morris, whose father was a Unix expert and head of the National
Security Council at the time, reportedly created the Internet worm
to expose Unix vulnerabilities largely ignored by the Internet
Debian Security Advisory: New version of micq released (Jan 22, 2001, 22:21)
"PkC has reported that there is a buffer overflow in sprintf()
in micq versions 0.4.6, that allows to a remote attacker able to
sniff packets to the ICQ server to execute arbitrary code on the
Security Portal: Linux Gets Stateful Firewalling - Introducing Netfilter (iptables) (Jan 22, 2001, 08:48)
"Stateful firewalls represent a major technological jump in the
intelligence of a firewall and are present in all serious
Enterprise firewalling products. Among many enhancements, this
"statefulness" allows Netfilter to block/detect many stealth scans
that were previously undetected on Linux firewalls."
Security Portal: Weekly Linux Security Digest 2001/01/15 to 2001/01/21 (Jan 22, 2001, 08:42)
"Some cool new tools also released this week including Snort 1.7
and some nifty password generators."
LinuxSecurity.com: Linux Security Week - January 22nd 2001 (Jan 22, 2001, 08:37)
"This week, advisories were released for php4, inn, dhcpd, zope,
stunnel, joe, bash, syslog-ng, openssh, linuxconf, wu-ftpd, glibc,
and diffutils/squid. The vendors include Conectiva, Caldera,
FreeBSD, Mandrake, and Trustix."
LinuxSecurity.com: Ramen Linux Worm Propagation (Jan 22, 2001, 08:12)
"Ramen is currently known to attack Red Hat systems running
vulnerable versions of wu-ftp, rpc.statd, and LPRng. New exploits
can be added to the existing worm to expand its capabilities."
FreezerBurn.org: Important: vendor updates are for you! (Jan 22, 2001, 08:09)
"Of course, the security teams for any given vendor can only do
so much. We can find, identify, fix, and make updated packages for
vulnerabilities, but it is up to you, the end user, to apply