IPTables-tutorial 1.0.1 (Default)
IPTables-tutorial 1.0.1 (Default). A tutorial with example rc.firewall file for use with netfilter. [freshmeat.net]
CNET on Microsoft NetDocs
And don’t forget CNET on Microsoft NetDocs, which is sure to be the next HailStorm and aimed squarely at the market we’re working in. We appear to have a zig to their zag, but we won’t know for sure until they announce it. [Scripting News]
Web project? Buy this book
Lighthouse: Web project? Buy this book.
Yes, he makes the standard noises about Web project management’s unique challenges. But he also borrows extensively from the wisdom and rigour which software project managers have developed over the past third of a century. [Tomalak’s Realm]
ICEPick
ICEPick is an “open source peer to peer system designed to enable cross web site authentication and personalization services.” [Scripting News]
Like HailStorm, but open; no payment scheme either.
Secure Windows NT 4.0 Installation and Configuration Guide
U.S. Navy:
Secure Windows NT 4.0 Installation and Configuration Guide (paper) [Security Focus]:
The objective of this project is to provide the Navy with clear and concise implementation guidance for the secure installation and configuration of the Windows NT 4.0 Server and Workstation Operating Systems. This guidance is based on the Navy IT-21 standard and is specific to the Naval Tactical Command Support System (NTCSS) and Joint Maritime Command Information System (JMCIS) local area network (LAN) architectures.
This guide covers pre-installation, server and workstation OS installation, and post-installation steps for securing a Windows NT domain. The post-installation portion includes instructions for C2 configuration, auditing, securing the registry, managing the file system, creating system policies and user profiles, controlling user accounts and rights, maintaining system repair data, and installing current service packs and hotfixes.
Two RFCs on Blocks
Two RFCs on Blocks. The Internet Engineering Task Force (IETF) has published The Blocks Extensible Exchange Protocol Core (RFC 3080) and Mapping the BEEP Core onto TCP (RFC 3081), describing an XML-based protocol layered directly on TCP/IP. [xmlhack]
Lion worm
SANS:
Lion is a new worm, that is very similar to the Ramen worm. However, this worm is much more dangerous and should be taken seriously. It infects Linux machines with the BIND DNS server running. It is known to infect bind version(s) 8.2, 8.2-P1, 8.2.1, 8.2.2-Px, and all 8.2.3-betas. The bind vulnerability is the TSIG vulnerability that was reported back on January 29, 2001.
The Lion worm spread via an application called randb. randb scans random class B networks probing TCP port 53. Once it hits a system, it then checks to see if that system is vulnerable. If so it then exploits the system using the exploit called name. It then installs the t0rn rootkit.
