“Another quiet week for Linux, not much new stuff, and a few
advisories for problems found last week in dump, etc.”
“We lead off with general advisories, then vendor advisories
(distributions, then any major software ones), then mailing list
related traffic, any interesting tidbits and then the tip of the
week. Most things are in alphabetical order. If we’re missing a
Linux vendor’s advisory please tell us, ditto for any Linux related
security alerts. The long strings of hex in front of package names
are MD5 signatures.”
“Tip of the week:
You may not want to use the ip_masq_ftp module in Linux for
providing outbound ftp access as it is vulnerable to a new attack.
The new attack consists of convincing a client to connect to an ftp
server. However, unlike the normal setup the client is tricked into
using an arbitrary port to connect out, allowing an attacker access
to the machine. To increase performance, and reduce security risks
you should consider using an ftp proxy server, such as the Squid
proxy server (available at: http://www.squid-cache.org/) and
firewalling outbound access to ftp to force clients through the
proxy.”