Anti-virus software vendors warn against Sircam
Friday, July 20th, 2001Anti-virus software vendors warn against Sircam. IDG Jul 20 2001 4:08PM ET [Computer security news]
Archive for July, 2001
Harvard University and 3 Publishers Develop Experimental Online Archive
Friday, July 20th, 2001The Chronicle of Higher Education: Harvard University and 3 Publishers Develop Experimental Online Archive. While finding long-term solutions to archiving text presents more modest problems, archiving the other objects that electronic journals increasingly contain presents a much greater challenge. These include sound and video files, computer simulations and computer data sets. [Tomalak’s Realm]
New Worm Keeps Them Guessing
Friday, July 20th, 2001New Worm Keeps Them Guessing. A new e-mail infection is spreading fast across the globe — probably faster than anything since Anna K. So fast in fact, the antivirus companies can’t agree on what it does. By Leander Kahney. [Wired News]
Examining the life cycle of a RAD project
Friday, July 20th, 2001TechRepulic: Examining the life cycle of a RAD project
CA-2001-19: “Code Red” Worm Exploiting Buffer Overflow In IIS Indexing Service DLL
Thursday, July 19th, 2001LinuxPR: Dell Announces Factory Installation of Red Hat Linux 7.1
Thursday, July 19th, 2001Linux: Tech Support Nightmare
Thursday, July 19th, 2001Linux: Tech Support Nightmare. There’s almost never-ending debate about the chances of success for the Linux OS in relation to Windows but one point I rarely see discussed is the simple fact that Linux, as it stands, is almost unsupportable. [kuro5hin.org]
IIS virus triggers Red alert
Wednesday, July 18th, 2001IIS virus triggers Red alert. VNU Jul 18 2001 5:16PM ET
A worm bearing strong similarities to the sadmind virus, which hit over 9000 IIS websites back in May, has been doing the rounds, exploiting a vulnerability which is over a month old.
The worm exploits a known buffer overflow vulnerability - an ISAPI extension in the Index Server of Windows 2000 and XP beta - for which Microsoft released a patch in June that it believed had fixed the problem.
Red Hat Security Advisory: Updated openssl packages available
Wednesday, July 18th, 2001Red Hat Security Advisory: Updated openssl packages available
[Linux Today]Versions of OpenSSL prior to 0.9.6a suffer from potential security problems. These include potential leakage of information after SSL version 3 key exchanges, imperfect distribution of random numbers used when generating signatures, honoring of sensitive environment variables in library functions in setuid or setgid applications, and not taking precautions to counter effects of potential hardware glitches when generating digital signatures.
A flaw has also been found in the pseudo-random number generator used in versions of OpenSSL prior to 0.9.6b. The OpenSSL Project Team has released a patch which corrects this problem.
Review: EnGarde Secure Linux by Guardian Digital
Wednesday, July 18th, 2001Review of EnGarde Secure Linux by Guardian Digital.
