Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Nov 13, 2000

  • OpenSSH Security Advisory (2000-11-13 23:44:43)
    "Hostile servers can force OpenSSH clients to do agent or X11 forwarding."

  • Local root exploit with kmod and modutils > 2.1.121 (2000-11-13 22:28:18)
    "A local root exploit has been found using kernels compiled with kmod and modutils > 2.1.121. Kernels without kmod and systems using modutils 2.1.121 are not affected."

  • LinuxSecurity.com: Linux Security Week, November 13th 2000 (2000-11-13 21:55:38)
    "This week, advisories were released for netscape, xfce, global, top, tcpdump, usermode, and dump. The vendors include FreeBSD, RedHat, and Trustix. If you have FreeBSD systems, we recommend that you update immediately."

  • SuSE Security Announcement: modules (2000-11-13 21:02:38)
    "The /sbin/modprobe command, when executed as a new task by the kernel-internal function request_module(), runs with the priviledges of the init process, usually root."

  • Debian Security Advisory: New version of gnupg installed (2000-11-13 20:50:25)
    "The version of gnupg that was distributed in Debian GNU/Linux 2.2 had a logic error in the code that checks for valid signatures which could cause false positive results."

  • Security Portal: Foiling DNS Attacks (2000-11-13 08:23:04)
    "Most of us take DNS servers for granted. Here, in a continuing series on attacking and defending your own machines, I discuss how people attack DNS servers and what you can do to better your security."

  • Security Portal: Weekly Linux Security Digest 2000/11/06 to 2000/11/12 (2000-11-13 08:17:42)
    "The big news this week is a remote denial of service in some versions of Bind. Luckily, with proper access controls the danger can be greatly minimized."