Microsoft has third go at Exchange hole
Microsoft has third go at Exchange hole. IDG Jun 14 2001 3:10PM ET [Computer security news]
Archive for the ‘security’ Category.
Smashing the SSL Speed Trap
Smashing the SSL Speed Trap. Network Computing Jun 12 2001 5:52AM ET [Computer security news]
Law Review Article Says Port Scanning Illegal
Law Review Article Says Port Scanning Illegal
Anonymous Coward writes: “The Journal of Technology Law and Policy has a good article on computer security and privacy. If you ignore the more metaphorical crap at the beginning of the article, the author marches through some laws that apply to the Internet and shows how they apply and why his way of deciding what kind of access to a computer breaks the law and what kinds don’t is better. (Its based on property and expectations of privacy.) It’s interesting to see the computer security from a lawyer’s point of view. Especially interesting are his claims that using nmap is illegal, despite the VC3 v. Moulton case. I’m not sure I agree with him, but he definitely makes a pretty sobering case.” Actually, I think the metaphors throughout this piece (not just at the beginning) are what make it interesting, and a big component of law is dealing with metaphors. This piece also collects in one place a lot of the cases dealing with computer law.
Microsoft posts new Exchange patch
Microsoft posts new Exchange patch.
MICROSOFT POSTED NEW versions of a patch late Friday to fix a flaw that it previously said only exists in its Exchange 2000 Server e-mail system. In the updated security bulletin, however, Microsoft added the more widely used Exchange 5.5 Server to the list of affected software.
See also: InfoWorld article on performance problems with Exchange 2000 and previous version of patch.
[via Computer security news]
Network ICE CTO responds to further BlackICE criticisms
Network ICE CTO responds to further BlackICE criticisms. The jury’s still out [The Register]
.NET users wide open to fraud
.NET users wide open to fraud. Silicon.com Jun 1 2001 7:08PM ET
Bill Malik, VP and research director at Gartner Group, told silicon.com the system would present an intolerable level of risk for some businesses and governments. He said: “I can’t see the banking sector going for it, and I can’t see anyone with obligations under the EU data protection directives wanting to get involved.”
Microsoft’s initiative could really come unstuck if it falls foul of EU data laws.
The Information Commissioner’s Office said it is not investigating .NET currently, but is concerned by both the data and security implications of all so-called ‘single sign-on’ initiatives.
[via Moreover Computer security news]
University computers a prime target for hackers
University computers a prime target for hackers. CNN Jun 1 2001 8:54AM ET [Computer security news]
