"Nuovo gruppo di ricerca: PuCCioLAB"
E' con immenso piacere che vi presentiamo il nostro nuovo gruppo di ricerca.
Il suo nome è PuCCiOLAB. Il gruppo si occuperà di sicurezza informatica,programmazione, howto,guide di base e di tutto di più sul mondo del pinguino.
http://www.ziobudda.net/Admin/redir_news.php?id=11312

QuickTime
Vendor: Apple Computer
A vulnerability was reported in the Apple QuickTime Player for Windows. A remote user could cause arbitrary code to be executed on a target user's player when the target user loads a malicious URL.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2003/Mar/1006427.html

Hyperion FTP Server
Vendor: Mollensoft Software
A buffer overflow vulnerability was reported in the Hyperion FTP Server. A remote user can crash the FTP service and may be able to obtain System level access on the target server.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2003/Apr/1006479.html

FTP (Generic)
Vendor: IBM
An authentication vulnerability was reported in IBM's 'ftpd'
FTP server daemon for the AIX operating system. A remote user could gain root access on the system if Kerberos 5 is used for authentication.
Impact: Root access via network
Alert: http://securitytracker.com/alerts/2003/Apr/1006455.html

InterBase
Vendor: Borland
A vulnerability was reported in Borland's Interbase database server. A local user can execute arbitrary code with root privileges on the system.
Impact: Execution of arbitrary code via local system
Alert: http://securitytracker.com/alerts/2003/Apr/1006454.html

Windows Remote Desktop Protocol (RDP)
Vendor: Microsoft
An authentication vulnerability was reported in Microsoft's Remote Desktop Protocol (RDP) implementation in Windows Terminal Services. The implementation does not verify the server's identity.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2003/Apr/1006447.html

Apache
Vendor: Apache Software Foundation
A vulnerability was reported in the Apache 2.0 web server. A remote user can cause denial of service conditions.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2003/Apr/1006444.html

passlogd
Vendor: Void, Christian
INetCop Security reported several buffer overflows in the 'passlogd' network sniffer. A remote user can execute arbitrary code on the target system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2003/Apr/1006443.html

FTP (Generic)
Vendor: HP (Compaq)
A vulnerability was reported in the HP MPE/iX FTP server. A remote user could gain unauthorized access to data.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2003/Apr/1006431.html

"Rilasciato FreeBSD 4.8"
In questa release viene introdotta una parte delle nuove feature che, secondo i piani iniziali, dovevano debuttare nella versione 5.0.
http://www.ziobudda.net/Admin/redir_news.php?id=11328

"Marcelo Tosatti: Linux 2.4.21-pre7"
Forse in dirittura d'arrivo linux 2.4.21: dovrebbe essere l'ultima pre-release...
http://www.ziobudda.net/Admin/redir_news.php?id=11318

"Un pieghevole in formato PDF per TCP/IP e tcpdump"
SANS Institute ha pubblicato un file PDF per la generazione di un pieghevole in due facciate con le tabelle dei formati di IP, TCP, UDP, ARP, DNS, ICMP, PING e della sintassi di tcpdump
http://www.ziobudda.net/Admin/redir_news.php?id=11317

Vulnerabilities
Title: Apache urges update ahead of DoS risk alert
Source: The Register
Date Written: April 7, 2003
Date Collected: April 7, 2003
The Apache Software Foundation urges everyone using version 2.x of their web server product to upgrade immediately to version 2.0.45, to guard against a denial of service risk. The details of the flaw, discovered by iDefense, will not be released until late in the day January 7, 2003.
http://www.theregister.co.uk/content/55/30126.html

Vulnerabilities
Title: Security flaw hits SETI@home
Source: ZDNet
Date Written: April 7, 2003
Date Collected: April 7, 2003
The SETI@home project has released a precautionary security update to its popular screensaver software. The project uses distributed processing to analyze radio-telescope data as part of project's search for extraterrestrial life. the vulnerability, affecting more than 4 million users, could result in the compromise of all of the SETI@home clients. The flaw was discovered by Breend-Jan Wever. Client software on all platforms are subject to information leakage and buffer overflow risks. SETI@home confirmed the vulnerability, but added "to our knowledge, no SETI@home client has ever been attacked in this manner".
http://news.zdnet.co.uk/story/0,,t278-s2133025,00.html
Also - http://www.theregister.co.uk/content/55/30124.html

Vulnerabilities
Title: Databases Ripe for Attacks
Source: EWeek.com
Date Written: April 7, 2003
Date Collected: April 7, 2003
Databases are increasingly appealing to hackers because of systems administrators reluctance to install patches. That is the finding of Pete Allor, manager of Internet Security Systems' X-force Threat Intelligence Services. "We've noted for awhile that there's been a lot of scanning for database events," said Allor, in Atlanta. six months before the zero-day Slammer worm infected over 200,000 database servers across the Internet, Microsoft had issued a patch that would have prevented the worm's spread.
"Everyone's afraid that if you play with something that's working, you'll break it," Allor said. Experts suggest that Database Administrators set up a network segment where patches can be tested in a non-critical environment.
http://www.eweek.com/article2/0,3959,1007007,00.asp

WS-I TO CLEAR PATH FOR WEB SERVICES SECURITY The Web Services Interoperability Organization (WS-I) has set up a working group to clear a way through overlapping proposals about Web services security.
>> http://www.net-security.org/news.php?id=2292

SPYWARE: IT'S LURKING ON YOUR MACHINE
This article looks at common forms of spyware, spyware delivery methods, and a cross-section of tools you can use to start a spy hunt on your machine.
>> http://www.net-security.org/news.php?id=2299

FREE LINUX SOFTWARE WILL HELP DETECT CYBER ATTACKS FloodGuard Alert software can detect a variety of attacks, including distributed denial of service, distributed reflective denial of service, Worm propagation, and other flooding attacks.
>> http://www.net-security.org/news.php?id=2309

THE CASE FOR SECURE EMAIL
This non-technical article is designed to educate you about how email really works, what the real security issues are, what the solutions are, and how you can mitigate your exposure to these security risks.
>> http://www.net-security.org/article.php?id=436

FIREWALL + FIREWALL POLICY = IMPROVED SECURITY The best way to achieve security effectiveness is to design a security policy. This will ensure the integrity of any mission critical device - especially firewalls. Here is a guide on how to create a firewall policy.
>> http://www.net-security.org/article.php?id=440

"Samba, scoperta una vulnerabilità..."
...presente da ben sette anni!
http://www.ziobudda.net/Admin/redir_news.php?id=11351
Also - http://punto-informatico.it/pi.asp?i=43714
Also - http://news.com.com/2100-1002-995834.html
Also - http://news.com.com/2100-1002-995939.html
Also - http://www.apogeonline.com/webzine/2003/04/10/05/200304100501

"Ezine di Daemon News"
Per tutti gli amanti dei sistemi BSD è disponibile il nuovo numero della Ezine di Deamon News.
http://www.ziobudda.net/Admin/redir_news.php?id=11345

PIU' VICINO IL KERNEL LINUX 2.6?
Da piu' parti nella comunita' di Linux si sostiene che il kernel 2.5 e'
ormai sufficientemente stabile per essere testato in ambienti di produzione ed essere provato dagli utenti. L'obiettivo e' accelerare il rilascio del
2.6
URL: http://punto-informatico.it/pi.asp?i=43696

"Linux.conf.au 2003"
Disponibili la ISO della conferenza Linux.conf.au 2003. All'interno del CD:
i papar, le biografie e gli speach in formato Ogg Vorbis.
http://www.ziobudda.net/Admin/redir_news.php?id=11363

Technology
Title: Inside the World of Secure Operating Systems
Source: NewsFactor
Date Written: April 8, 2003
Date Collected: April 9, 2003
A 'secure operating system' offers better information protection and generally follows one of two schools of security: trusted systems and hardened systems. Trusted systems are designed to ensure that only people with the proper read, write, and execute permissions can read, write, or execute a file. Hardened systems are designed to lock down the possible entry points of an attack. Trusted systems grew out of the theoretical frameworks developed in the Rainbow Books, and require multi-year certification processes before they can call themselves "trusted." Hardened systems vary across distributors, and no formal theory has been developed for hardened systems.
http://www.newsfactor.com/perl/story/21212.html

"Interactivity patch per kernel 2.4"
Nelle ultime settimane si è parlato molto del lavoro degli sviluppatori per rendere il kernel Linux maggiormente interattivo e quindi favorire l'uso sui sistemi desktop.
http://www.ziobudda.net/Admin/redir_news.php?id=11387

SHARED SOURCE, LIBERTA' DI MODIFICA
Microsoft vara una nuova licenza Shared Source per Windows CE tesa ad abbattere alcuni dei vincoli che oggi limitano la modifica e la ridistribuzione del codice
URL: http://punto-informatico.it/pi.asp?i=43747

CREPA NELLA MS VIRTUAL MACHINE
Microsoft rilascia una versione aggiornata della propria macchina virtuale Java, inclusa in quasi tutte le versioni di Windows, che chiude una vulnerabilita'. Sistemati anche alcuni bachi
URL: http://punto-informatico.it/pi.asp?i=43745
Also - http://zdnet.com.com/2100-1105-996308.html
Also - http://www.eweek.com/article2/0,3959,1013578,00.asp
Also - http://www.idg.net/ic_1305843_9677_1-5046.html
Also - http://www.vnunet.com/News/1140118

Technology
Title: Steganography Revealed
Source: Security Focus
Date Written: April 9, 2003
Date Collected: April 10, 2003
Steganography is a form of cryptography that hides a message inside a larger message, usually a multimedia file, such as an image or sound file.
Steganography can be used in digital watermarks to protect intellectual property rights; as a hash function to ensure that a message has not been tampered with; as a tag on online images; and finally, as a confidential means of exchanging data. The article provides links to sites that can provide tools for steganography (embedding messages in images) and steganalysis (discovering and destroying hidden messages). Decryption is difficult without the keys. The author reviews several tools and their capabilities.
http://www.securityfocus.com/infocus/1684

"Linux Advisory Watch"
This week, advisories were released for snort, sendmail, samba, dhcp, file, kernel ptrace, zlib, man, mutt, metrics, moxftp, glibc, heimdal, seti, kde, apache, cvs, kerberos, mysql, httpd, and openssl. The distributors include Conectiva, Debian, Gentoo, Immunix, FreeBSD, Mandrake, Slackware, SuSE, and Trustix.
http://www.ziobudda.net/Admin/redir_news.php?id=11401

g00d reading! 'n' bye
Security News MainTainer:
The Jackal a.k.a. jAcKallO < -jackal-@libero.it > (AreaSessantuno Member) / (SpiPPolatori Collaborator) (HackerAlliance Member) / (Daily DisInfo CreaTor & MainTainer) (Socio fondatore e Membro del CapitanLUG.iT)