Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Jul 17, 2000

  • Linux Security Week, July 17th 2000 (Jul 17, 2000, 11:07)
    "Recently, the FBI's newest e-mail surveillance tool, "Carnivore," has upset many privacy-conscience individuals and organizations. While the FBI argues that there is no clear law that prohibits the usage of this system, some ISPs are already vowing to resist 'Carnivore' being installed on their networks. If you are interested in this topic, articles regarding privacy and 'Carnivore' can be found in the General News section of this newsletter."

  • SuSE Security Announcement: Package: nkitb < 2000.7.11-0 (Jul 17, 2000, 08:49)
    "The standard ftp server does directly pass untrusted data from a DNS server to the setproctitle() function in a unsecure manner."

  • Security Portal: Weekly Linux Security Digest 2000/07/10 to 2000/07/16 (Jul 17, 2000, 03:37)
    "The other big nasty hole this week is in ISC's DHCP client. Whoops, we left a trivial to exploit root hack, silly us (hey, mistakes happen). If you are using ISC's DHCP client, then any attacker managing to compromise the DHCP server, or place one on your network (using a compromised host) can then very quickly seize control of many machines."

  • Debian Security Advisory: Package: nfs-common (from nfs-utils) (Jul 17, 2000, 03:25)
    "The version of nfs-common distributed in Debian GNU/Linux 2.2 (a.k.a
    potato), as well as in the unstable (woody) distribution, is vulnerable to a remote root compromise. No exploit is known to exist in the wild, but the vulnerability has been verified."