Security Portal: Weekly Linux Security Roundup - 2000/05/22 to 2000/05/28May 29, 2000, 17:11 (0 Talkback[s])
(Other stories by Kurt Seifried)
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
"Busy week, with many issues. Time to go upgrading again. Some more exploits for Kerberos released, it's high time to upgrade if you haven't already. Also a nasty bug on X, and in Netscape (universal applications at the desktop level as far as I know, time to update and plug those holes too). Note: having multiple layers of security will either stop or slow down the exploitation of many of these problems. Firewalling at the desktop machine incurs very little penalty for performance, and increases a system's survivability in the event of an attack. I'm playing around with the format of the bulletin a bit, comments are welcome (firstname.lastname@example.org). Warning, this advisory is rather on the huge side."
"X Nasty little denial of service attack in X, send a malformed packet to it (port 6000) and it freezes up for a while (does 4 billion iterations of a loop before unsticking). As always you should firewall X..."
0 Talkback[s] (click to add your comment)