[ Thanks to Benjamin
D. Thomas for this link. ]
“Multiple vendors released fixes for the serious wu-ftpd
vulnerability. The problem exists in wu-ftpd’s handling of the SITE
EXEC command. The default configuration of wu-ftpd is vulnerable to
remote users gaining root access.“
“Privacy is an issue that caught the attention of many readers this
week. The World Wide Web Consortium debuted the Platform for
Privacy Preferences Project (P3P). It is intended to make privacy
statements more understandable to users who want to know how the
sites they visit use their personal information. An article titled,
“Pretty Poor Privacy: An Assessment of P3P” examines whether P3P is
an effective solution to growing public concerns about online
privacy. Additional articles covering this subject are available in
the “General News” section of this newsletter.”
“Our feature this week, “Network Intrusion Detection Using Snort,”
by Dave Wreski and Christopher Pallack, describes the basics of
intrusion detection, the steps necessary to configure the “snort”
IDS, testing and operation, and how to detect intrusion
attempts.”