THE RISKS OF SHORT RSA KEYS
The flexibility of SSL potentially leaves companies and their customers at risk. The SSL protocol does not mandate minimum key lengths to be used during the critical initial key exchange that begins each secure session. All too many servers still use insufficiently secure long-term keys.
Link: http://www.ncipher.com/insights/fe_shortkeys.html

COMPROMISED REDHAT LINUX 6.2 HONEYPOT
Stephen Holcroft posted to Incidents - "My Redhat 6.2 server Honeypot was compromised recently after just 26 minutes of being connected to the internet, it was used as an IRC proxy for two hours after being hacked." Details of the incident can be seen on the link below.
Link: http://www.lucidic.net/whitepapers/sholcroft-4.1-2002.html

OPENWALL: IMPROVING SECURITY WITH THE OPENWALL PATCH This article will examine the Openwall Linux kernel Patch, one of the best-known kernel hardening patches. It will explain how to install the patch and will examine its main features. Using the patch will require a basic understanding of how to recompile the kernel. Some of the explanations will assume a basic knowledge of the C programming language, but it is not essential to the usage of the patch.
Link: http://online.securityfocus.com/infocus/1570

MICROSOFT IE AND OFFICE FOR MAC OS PROBLEMS There is a vulnerability in multiple Microsoft products on Mac OS.
The problem lies in the handling of a lengthy subdirectory in the file:// directive, such as file:///AAAAAA[...] or file://A/A/A/A/[...]. The number of subdirectories is trivial as long as there is at least one.
Link: http://www.net-security.org/text/bugs/1019051066,30208,.shtml

NORTON PERSONAL FIREWALL 2002 VULNERABLE TO SYN/FIN SCAN Norton Personal Firewall 2002 on Windows 2000 is vulnerable to SYN/FIN scan (SYN/FIN/URG, SYN/FIN/PUSH, SYN/FIN/URG/PUSH are not detected as well) also if you activate "detect portscan".
Link: http://www.net-security.org/text/bugs/1019051114,75779,.shtml

FILESEEK CGI SCRIPT VULNERABILITY
The script doesn't check on special symbols '|' and ";".
Link: http://www.net-security.org/text/bugs/1019051173,17483,.shtml

WINDOWS 2000 MICROSOFT-DS DENIAL OF SERVICE The default LANMAN registry settings on Windows 2000 could allow a malicious user, with access to TCP port 445 on your Windows 2000, to cause a Denial of Service.
Link: http://www.net-security.org/text/bugs/1019136440,36987,.shtml

Vulnerabilities
   Source:   SecuriTeam.com
   Date Written:  April 21, 2002
   Date Collected: April 22, 2002
   Title: User Privileges Vulnerability in Oracle9i Database Server SecuriTeam.com reports a potential vulnerability in the Oracle9i Database Server, version 9.0.1.x that might allow access to privileged data.  A patch is available from Oracle.
http://www.securiteam.com/securitynews/5PP0L0A6UO.html

-->> Symantec svilupperà un firewall enterprise per IBM
Symantec si occuperà dello sviluppo del primo proxy firewall di fascia enterprise per i sistemi IBM eServer iSeries Linux.
URL: http://www.hwfiles.it/news/234.html

 IL PROGRAMMA CHE DISINSTALLA L'ANTI-SPYWARE Lavasoft denuncia il fatto che RadLight, player multimediale, nel corso dell'installazione cancella AdAware, il piu' celebre software anti-spyware
URL: http://punto-informatico.it/pi.asp?i=39944
Also - http://www.newsbytes.com/news/02/176075.html

Vulnerabilities
   Source:   Newsbytes
   Date Written:  April 23, 2002
   Date Collected: April 23, 2002
   Title: IE 6 Privacy Features Open Users To Attack - Expert Microsoft's Internet Explorer version 6 contains a security vulnerability that may allow an attacker to hijack a victim's MSN Messenger accounts or steal browser cookies.  The flaw is in the 'Privacy Report' feature, and disabling IE's use of JavaScript will prevent exploitation of the flaw.
http://www.newsbytes.com/news/02/176077.html

"Using GnuPG"
Il sito Mandrake Secure presenta una piccola guida all'uso di questo famosissimo tool usato in specialmodo quando si parla di firma elettronica.
http://www.ziobudda.net/Admin/redir_news.php?id=6695

Cybercrime-Hacking
   Source:   OSAC Cybernews
   Date Written:  April 24, 2002
   Date Collected: April 24, 2002
   Title: Hackers Use New Method to Invade DAta Banks Su Ching-wei, an official at the Criminal Investigation Bureau (CIB) of Taiwan, announced that malicious hackers are using a tool called Structured Query Language (SQL) injection to gain access to government and commercial website databases.  The hackers link their computer to the selected website while simultaneously performing search and attack orders to gain access to the website, which goes undetected since firewalls do not categorized those that use SQL as intruders.
http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=7952

Cybercrime-Hacking
   Source:   ZDNet News
   Date Written:  April 19, 2002
   Date Collected: April 24, 2002
   Title: New tool camouflages hacker programs A new hacking tool has surfaced called Fragroute.  The tool manipulates packets of data just enough to pass undetected through some firewalls and intrusion detection systems.  The tool attempts to distort packet enough to bypass the signature recognition system.  Although the tool can be used for malicious activities, it can also be utilized to determine weaknesses in network security.
http://techupdate.zdnet.com/techupdate/stories/main/0,14179,5106597,00.html

Vulnerabilities
   Source:   Linux Today
   Date Written:  April 23, 2002
   Date Collected: April 24, 2002
   Title: EnGarde Secure Linux Advisory: webalizer An EnGarde Secure Linux Security Advisory was released April 23, 2002 warning of a possible exploitable buffer overflow vulnerability in Webalizer, a free web server log file analysis program.  The vulnerability "could allow an attacker to compromise a host by spoofing reverse DNS queries."  An upgrade is available to address the vulnerability.
http://linuxtoday.com/news_story.php3?ltsn=2002-04-23-018-26-SC-NT

Vulnerabilities
   Source:   ecommerce times
   Date Written:  April 19, 2002
   Date Collected: April 24, 2002
   Title: Hacking Through the Wireless Jungle AMR research analysts report that there are well-known vulnerabilities and well-know exploits to the wireless local area network (WLANs), but few companies will report the unauthorized access to the networks.  One major contributor to the problem is that users with WLAN equipment install devices without informing the IT department or understanding the security risks involved.
http://www.ecommercetimes.com/perl/story/17342.html
Also - http://www.theregister.co.uk/content/55/25000.html

Vulnerabilities
   Source:   OSAC Cybernews
   Date Written:  April 24, 2002
   Date Collected: April 24, 2002
   Title: AOL's AIM Puts Browser Security in Danger Installing AOL AIM (instant message service) on a PC forces Microsoft Internet Explorer (IE) browsers to accept free.aol.com as a 'Trusted site'.
Changing the designation to trusted site, as opposed to the default security setting of 'Low' will allow cookies from this web site to be saved onto the computer.  Analysts believe this action can violate the trust that users place in AOL, as the company fails to inform users of the practice, and undermines the security setting of the user.
http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=7947

Cybercrime-Hacking
   Source:   C-Net News
   Date Written:  April 25, 2002
   Date Collected: April 25, 2002
   Title: Hackers turn tables on file-swapping firms A college student and programmer known as Dr. Damn has released versions of file-swapping programs stripped of advertising (adware) and user-tracking features (spyware).  File-sharing companies, accused of theft of intellectual property by the movie and record industry, are now accusing the hacker of stealing their intellectual property.
http://news.com.com/2100-1023-891724.html

Vulnerabilities
   Source:   Fijan
   Date Written:  April 24, 2002
   Date Collected: April 25, 2002
   Title: Microsoft Baseline Security Analyzer exploit (Exposed vulnerabilities' list) A vulnerability exists in Microsoft's Baseline Security Analyzer.  The tool analyzed Windows systems and scans for missing patches or vulnerabilities.
The tool creates a report in plain text that includes the information about security vulnerabilities.  If the report can be accessed by a potential cyberattacker, exploitation of the machine can be accomplished much more easily.
http://www.finjan.com/mcrc/alert_show.cfm?attack_release_id=71

Vulnerabilities
   Source:   Newsbytes
   Date Written:  April 25, 2002
   Date Collected: April 25, 2002
   Title: Microsoft Yanks Office Tools After Security Report Microsoft removed access to Office suite tools from their Web site following the Israel's GreyMagic Security's disclosure of security vulnerabilities.
According to GreyMagic security, Microsoft's Office Web Components (OWC) can enable malicious web sites or e-mails to perform cyberattacks.  A patch is available, and Microsoft is investigating the vulnerabilities.
http://www.newsbytes.com/news/02/176138.html

Technology
   Source:   Computerworld
   Date Written:  April 25, 2002
   Date Collected: April 26, 2002
   Title: Ballmer: Microsoft to launch security update tool CEO Steve Ballmer of Microsoft said the company is releasing a new tool called Microsoft Update that will automate the process of publishing and distributing security patches.  The tool is part of Microsoft's new Trustworthy Computing initiative to enhance security.
http://www.computerworld.com/storyba/0,4125,NAV47_STO70529,00.html

Technology
   Source:   Washington Post
   Date Written:  April 25, 2002
   Date Collected: April 26, 2002
   Title: We're Watching You
The security software company SilentRunner has designed a software package to increase network security from both external attacks and insider breaches.
The application utilizes 25 algorithms to record how a network is used, and transforms large amounts of data into simple diagrams to aid network administrators in the detection of suspicious activity, security breaches, or security vulnerabilities.
http://www.washingtonpost.com/wp-dyn/articles/A42202-2002Apr24.html

Vulnerabilities
   Source:   InfoWorld
   Date Written:  April 26, 2002
   Date Collected: April 26, 2002
   Title: Microsoft patches Outlook hole A vulnerability in Microsoft Outlook 2000 and 2002 has been addressed by the company, and a remedy is available.  The vulnerability stems from the different security settings of Internet Explorer and Microsoft Word.  When MS Word is used as the e-mail editor, the flaw enables script execution when an HTML with malicious code is replied to or forwarded.  This flaw could allow an attacker to gain privileges on the machine.
http://www.infoworld.com/articles/hn/xml/02/04/26/020426hnmsoutlook.xml
Also - http://www.theregus.com/content/55/24772.html

Vulnerabilities
   Source:   Wired News
   Date Written:  April 26, 2002
   Date Collected: April 26, 2002
   Title: Hotmail at Risk to Cookie Thieves Capturing a copy of a target's browser cookie files will allow an attacker to gain access to the victim's Microsoft Hotmail service.  Changing the password of the free e-mail account will not lock out the perpetrator.  Microsoft terms the attack a cookie-based replay attack.  There is currently no certain remedy for this problem.
http://www.wired.com/news/technology/0,1282,52115,00.html

g00d reading!  'n' bye
Security  News  Staff:
The Jackal a.k.a. jAcKa||0
< -jackal-@libero.it >