Security Linux News for Feb 28, 2000
ComputerWorld: New McAfee Suite Offers Centralized Virus Protection (2000-02-28 22:31:22)
"The VirusScan engine can be embedded in both Linux and Solaris
applications and managed services with the McAfee Virus Interface
for Protective Early Response tools, which can detect malicious
code such as the Trinoo tool..."
Security Portal: Weekly Linux Security Roundup - 2000/02/22 to 2000/02/28 (2000-02-28 19:05:12)
"...several large problems found in distributions, and several
major new tools released. Apache 1.3.12 was released, with a fix
for the cross site scripting vulnerability..."
Debian Security Advisory: New version of nmh released (2000-02-28 17:54:12)
"The version of nmh that was distributed in Debian GNU/Linux 2.1
(aka slink) did not check incoming mail messages properly. This
could be exploited by using carefully designed MIME headers to
trick mhshow into executing arbitrary shell code."
Inter@ctive Week: Kerberos Made To Heel To Windows 2000 (2000-02-28 17:39:29)
"In a move that company detractors said is another sign of its
infamous 'Embrace, Extend, Extinguish' strategy, Microsoft has used
an open Internet security standard in its Windows 2000 operating
system and made modifications without openly documenting its
PIKT, Problem Informant/Killer Tool, v1.9.0 released (2000-02-28 17:31:07)
"PIKT... is a multi-functional tool for monitoring systems,
reporting and fixing problems, and managing system configurations.
PIKT is quickly gathering potential as a serious security
IT-Director: Linux at the Top-end - chasing the Enterprise space (2000-02-28 16:41:55)
"Linux may have its feet firmly implanted in the Enterprise, but
we would be unwise to say that the operating system currently has
all it needs... However, what we can see is a clear desire to add
these facilities, from some of the biggest names in the industry.
Big Iron companies such as IBM and Amdahl are putting their full
weight behind the OS..."
VNU Net: Cookies crumble under data protection legislation (2000-02-28 16:16:20)
"The latest [UK] data protection legislation makes cookie
technology... illegal unless it is transparent."
PRNewswire: Argus to Develop Trusted Web Foundation for Linux (2000-02-28 15:16:56)
"Enterprise-Level Security Solution to Be Positioned for Linux
PRNewswire: Fujitsu Siemens Computers Extends ASP Support (2000-02-28 14:22:30)
"'With IA-64, the Linux open source operating system starts to
address a completely new market sector, and our PitBull security
products will give Linux applications the security required by
LinuxSecurity.com: Interview with David A. Wheeler (2000-02-28 08:05:08)
"David A. Wheeler is the author of the "Secure Programming for
Linux HOWTO", the Linux Documentation Project's document describing
how to write secure programs for Linux."
Silicon.com: IBM critical of Win2000 technology (2000-02-28 00:49:08)
"...Big Blue repeated concerns to it had with certain elements
of Win2000, most notably Active Directory, the operating system's
network management tool."
CNN/Network World: Microsoft to patch Active Directory (2000-02-28 00:24:36)
"...company officials acknowledged that at least one fix for
Active Directory will be in the first Win 2000 service pack. No
date has been set for the shipment of the service pack."
Security Portal: All About SSH - Part II/II - OpenSSH (2000-02-28 00:16:00)
"OpenSSH has developed very quickly in the last few months and has an expert team of developers behind it. It will soon surpass SSH1 and probably SSH2."