GnomixLand :: Manuali, immagini, fotografie e tanto altro a portata di un click

"Brevetti: Linux vince il primo round contro Microsoft"
Clamorosa battuta d'arresto nella campagna legale con cui Microsoft intende regolare i conti con il sistema open source Linux: l'Ufficio brevetti degli Stati Uniti ha rifiutato infatti i due brevetti di Microsoft relativi al formato di archiviazione dei dati FAT.
http://www.ziobudda.net/Admin/redir_news.php?id=24556

INTERCETTAZIONI, L'EUROPA SCALA IN TERZA I ministri europei ora vogliono evitare di introdurre norme liberticide in barba al Parlamento europeo. Se Londra lancia un ultimatum l'Italia puo' rilassarsi: l'intercettazione puo' continuare
URL: http://punto-informatico.it/pi.asp?i=55606

WINMEDIACENTER FA COPPIA CON XBOX 360
Microsoft ha rilasciato un nuovo aggiornamento per Windows XP Media Center che permette di far funzionare questo sistema operativo in coppia con l'imminente Xbox 360. Ecco come
URL: http://punto-informatico.it/pi.asp?i=55618

SICUREZZA, MS INCIAMPA SU UNA PATCH
Microsoft ha ammesso che una delle recenti patch per Windows non va d'accordo con alcune impostazioni personalizzate. In questi giorni sono anche apparsi i primi exploit per alcune delle falle corrette la scorsa settimana
URL: http://punto-informatico.it/pi.asp?i=55607

** PHISHING BANCO POSTA **
Non si ferma l'ondata di email con le quali ignoti truffatori cercano di carpire i dati personali dei correntisti del Banco Posta. Si raccomanda di prestare attenzione.
http://forum.zeusnews.com/viewtopic.php?t=12076

** MICROSOFT TI PAGA **
Ti paga se usi Internet Explorer e lo fai usare anche ai tuoi amici. Almeno cosi' recita un messaggio-bufala che circola in questi giorni.
http://forum.zeusnews.com/viewtopic.php?t=11916

A Comparison of Solaris, Linux, and FreeBSD Kernels This article examines three of the basic subsystems of the kernel and compares implementation between Solaris 10, Linux 2.6, and FreeBSD 5.3 http://www.opensolaris.org/os/article/2005-10-14_a_comparison_of_solaris__linux__and_freebsd_kernels/

Exploiting Windows Device Drivers
To my knowledge, the first windows device driver attack was presented by SEC-LABS team in the "Win32 Device Drivers Communication Vulnerabilities" whitepaper. This publication presented useful technique of drivers exploitation and layed a ground for further research. Second publication surely worth to mention is an article by Barnaby Jack, titled „Remote Windows Kernel Exploitation Step into the Ring 0. Due to lack of technical paper on the discussed subject, I decided to share results of my own research. In this paper I will introduce my device driver exploitation technique, provide detailed description of techniques used and include full exploit code with sample vulnerable driver code for tests.
http://pb.specialised.info/all/articles/ewdd.pdf

Wireless Denial of Service Attacks
Wireless networks are not a secure form of communication. True, you can do a lot to secure the traffic passing from one point to another, and in recent years various methods of encryption and authentication have helped to keep attackers from capturing useful data. However, even if the data is secure an attacker can easily shutdown a wireless network with only a handful of packets or a noise generator. As a result, deploying a wireless network as a single and main means of communication is not only stupid, but in some cases could be down right dangerous (e.g. medical or military). This section will look at the tools and technology that makes a wireless network susceptible to instant denial of service attacks, and how you can prepare for such an attack.
http://www.informit.com/guides/content.asp?g=security&seqNum=160

Horton AV announces avian flu vaccine for Linux http://www.newsforge.com/article.pl?sid=05/10/13/1648206&from=rss
Reacting to fears that the avian flu outbreak recently reported in Turkey could spread to Linux, anti-virus vendor Horton AV has released what it calls an effective vaccine.

Lightweight Web Serving with thttpd
http://newsvac.newsforge.com/article.pl?sid=05/10/16/160210&from=rss
The Apache HTTP Server is the most popular web server due to its functionality, stability, and maturity. However, this does not make it suitable for all uses: slow machines and embedded systems may have serious problems running it because of its size. Here is where lightweight HTTP servers come into play, as their low-memory footprints deliver decent results without having to swap data back to disk.

Solaris
Vendor: Sun
A vulnerability was reported in Sun Solaris. A local user can cause a kernel panic.
Impact: Denial of service via local system
Alert: http://securitytracker.com/alerts/2005/Oct/1015059.html

wget
Vendor: GNU [multiple authors]
iDEFENSE reported a vulnerability in wget. A remote user can cause arbitrary code to be executed on the target user's system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015056.html

Kaspersky Anti-Virus
Vendor: Kaspersky Lab
iDEFENSE reported a vulnerability in Kaspersky Anti-Virus. A remote user can execute arbitrary code on the target system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015030.html

Symantec Anti Virus
Vendor: Symantec
fRoGGz from SecuBox Labs reported a vulnerability in Symantec AntiVirus. A remote user can create a file containing a virus that will not be detected by the scanning mechanism.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015027.html

Sophos Anti-Virus
Vendor: Sophos
fRoGGz from SecuBox Labs reported a vulnerability in Sophos Anti-Virus. A remote user can create a file containing a virus that will not be detected by the scanning mechanism.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015025.html

Kaspersky Anti-Virus
Vendor: Kaspersky Lab
fRoGGz from SecuBox Labs reported a vulnerability in Kaspersky Anti-Virus. A remote user can create a file containing a virus that will not be detected by the scanning mechanism.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015024.html

Clam AntiVirus
Vendor: clamav.sourceforge.net
fRoGGz from SecuBox Labs reported a vulnerability in Clam AntiVirus. A remote user can create a file containing a virus that will not be detected by the scanning mechanism.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015023.html

McAfee VirusScan
Vendor: McAfee
fRoGGz from SecuBox Labs reported a vulnerability in McAfee VirusScan. A remote user can create a file containing a virus that will not be detected by the scanning mechanism.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2005/Oct/1015022.html

"Master in Tecnologia del Software Libero e Open Source"
"Se sei un informatico per titolo o per passione, sai programmare, gli algoritmi non ti spaventano, sei in grado di leggere documenti tecnici in lingua inglese e vuoi specializzarti nel progettare, realizzare, personalizzare sistemi basati sul software libero e open source, il Master in Tecnologia del Software Libero e Open Source fa al caso tuo."
http://www.ziobudda.net/Admin/redir_news.php?id=24565

"Realizzare un server casalingo con Gentoo (parte 1)"
Con un po' di materiale di recupero e qualche ora di lavoro è possibile assemblare un server casalingo con sistema RAID per la sicurezza dei dati. In questa prima guida utilizzeremo Gentoo Linux e nella prima puntata ci occuperemo dell'installazione http://www.ziobudda.net/Admin/redir_news.php?id=24560

FREE E-LEARNING PER TUTTI
Questa la filosofia di e-Socrates.org, che da due anni offre corsi gratuiti a distanza, con nuove chance anche per chi vuole insegnare. E che auspica un'unica struttura per tutti gli operatori free. L'intervista ai promotori
URL: http://punto-informatico.it/pi.asp?i=55628

SUONA LA SIRENA PER I BREVETTI MP3
Si inasprisce lo scontro tra Sisvel e Thomson: il gigante dell'elettronica di consumo e' accusato di aver violato alcuni brevetti riguardanti le tecnologie di codifica MPEG Layer III. In ballo la paternita' della compressione piu' celebre
URL: http://punto-informatico.it/pi.asp?i=55634

LA SECURACY DEFINISCE IL FUTURO
di Stefano Aterno - Sicurezza e Privacy viaggino sempre l'una accanto all'altra, per garantire un equilibrio senza il quale ogni tragico scenario diventa possibile. Per controllare gli strumenti del Controllo
URL: http://punto-informatico.it/pi.asp?i=55599

Traduzione di LFS 6.1 e BLFS 6.0
Sono state pubblicate le traduzioni italiane dei libri Linux From Scratch 6.1 e Beyond Linux From Scratch 6.0. Il libro Linux From Scratch 6.1 tradotto è consultabile presso: http://it.tldp.org/lfs/lfs/6.1/ Il libro Beyond Linux From Scratch 6.0 tradotto è consultabile presso:
http://it.tldp.org/lfs/blfs/6.0/

** MESSENGER A PAGAMENTO DAL 1 NOVEMBRE? ** C'è in giro un appello secondo il quale MSN Messenger diventerà a pagamento.
[Pubblicato su www.zeusnews.it il 17-10-2005] >> di Paolo Attivissimo
http://www.zeusnews.it/news.php?cod=4384

Living the "Least Privilege" Lifestyle, Part 3: Surviving as a Mere User In the first two parts of this series, Don Kiely scared us good with how dangerous it is to run as an admin, and pointed out what a pain it is to run as a mere user. But he has some tricks and tools up his sleeve to make the "least privilege" lifestyle a little more bearable, which he covers in this installment.
http://www.informit.com/articles/article.asp?p=418858&rl=1

Anatomy of an Intrusion Prevention System Ultimately, security will be embedded within the network fabric, where traffic of all types (e.g., data, voice, video, graphics, fax) is not just routed from source to destination, but delivered with the necessary quality of service, and delivered securely. Intrusion Prevention Systems are the first step in this direction.
http://www.informit.com/articles/article.asp?p=419454

Close Encounters of the Hacker Kind: Part 2 of the Story From the Front Line The saga unfolds: Seth Fogie continues his tale of investigating a hacked server in the second half of this story. Join him as he chats with DOOM and feels the THR34T.
http://www.informit.com/articles/article.asp?p=30479

LINUX VS. WINDOWS SECURITY: HOW ABOUT THE TRUTH?
"Unfortunately for you Gates-lovers, I'm going to have to say 'Yes.' The general design of Linux gives it an inherited security boost..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yoz,1,lzot,8wlo,85jl,7pty

CONFIGURATION OF MANDRIVA LINUX 2006
"This page describes how I configure Mandriva on my systems..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yox,1,3816,ieb5,85jl,7pty

THE DAEMON, THE GNU AND THE PENGUIN, CH. 19 "Here is our next installment of The Daemon, the GNU and the Penguin, by Dr. Peter Salus, Chapter 19: 'Tanenbaum and Torvalds...'"
http://nl.internet.com/ct.html?rtr=on&s=1,1yox,1,102n,lss6,85jl,7pty

CRUISING THE KERNEL WITH ANDREW, TED AND THE GANG, PART I "The ship may not win any interior design awards, but the latest Geek Cruise made up for that with smart minds giving great talks--both on the schedule and off..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yox,1,mevd,h8nj,85jl,7pty

VULNERABILITIES & EXPLOITS
Title: Glitch afflicts critical MS patch
Source: The Register
Date Written: 2005-10-17
Date Collected: 2005-10-17
Microsoft has issued a warning that a patch designed to fix a critical flaw in Windows middleware components (MS05-051.mspx) creates system instability in environments with modified Access Control List (ACL) settings. It is not yet clear how many users have been effected by issues associated with the patch, ranging from users unable to log on after the patch is applied to a blank screen after the update. The flaw the patch is designed to fix could be exploited by an internet worm, giving systems administrators the choice of possibly breaking their systems or leaving them exposed.
http://www.theregister.co.uk/2005/10/17/ms_patch_glitch/

Three reasons why Internet-based applications are a bad idea http://software.newsforge.com/article.pl?sid=05/10/14/1633248&from=rss
We've all heard the hype about how Sun and Google may someday, somehow, produce a version of StarOffice or OpenOffice.org that you'll access online through your browser instead of installing an office suite on your hard drive. Even though I think "The Network is the Computer" makes a fine marketing slogan, I am still going to keep most of my software where it belongs: on my own computer. Here are three reasons why.

"World's First XSS Worm: 'Samy'"
Prima o poi doveva succedere.
http://www.ziobudda.net/Admin/redir_news.php?id=24594
Also - http://news.com.com/Samy+worm+opens+new+front+in+malware+war/2100-7349_3-5897099.html

"DocuColor Tracking Dot Decoding Guide"
Tempo fa la rivista americana PCWorld aveva scoperto che i servizi segreti USA si erano attivati per "convincere" alcuni produttori di stampanti laser ad inserire in ogni pagina stampata dall'utente un codice identificativo invisibile ad occhio nudo ( http://www.eff.org/Privacy/printers/ ). Ora EFF è riuscita a decifrare i codici di un particolare modello: Xerox DocuColor http://www.ziobudda.net/Admin/redir_news.php?id=24590
Also - http://www.smh.com.au/news/breaking/xerox-printer-codes-track-documents/2005/10/18/1129401224436.html

"QiLinux: la distribuzione tutta italiana."
QiLinux è la prima distribuzione Linux interamente realizzata in Italia. La Java Open Business ha intervistato Livio Traversa di QiNet S.r.l., società mantainer del progetto, riguardo gli sviluppi futuri di questa interessante distribuzione.
http://www.ziobudda.net/Admin/redir_news.php?id=24586

** UBUNTU LINUX ALLA RISCOSSA **
Breezy Badger, l'ultima versione del pinguino sudafricano, è un salto decisivo di qualità. Lo spirito dell'umanità va alla conquista dei windowsiani insoddisfatti.
>> di Michele Bottari
http://www.zeusnews.it/news.php?cod=4383

** ABOLIRE LE TASSE SULLA COPIA PRIVATA ** A chiederlo è... la BSA!
>> di Paolo Attivissimo
http://www.zeusnews.it/news.php?cod=4385

** AMMINISTRAZIONE AVANZATA DI SERVER LINUX ** Quattro sysadmin italiani spiegano come padroneggiare le tecniche necessarie alla gestione del pinguino.
>> di Matteo Campofiorito
http://www.zeusnews.it/news.php?cod=4370

Attenzione alla patch Microsoft MS05-051 La patch MS05-051 rilasciata da Microsoft martedì scorso, relativa alla vulnerabilità del componente MSDTC, potrebbe causare diversi problemi.
http://www.alground.com/news/news.php?page=386

Un Trojan nel nome di Skype
E' stato scoperto dall'azienda di sicurezza informatica MessageLabs, una variante del già noto IRCbot-trojan che si diffonde via e-mail spacciandosi per un aggiornamento del popolare programma Skype.
http://www.alground.com/news/news.php?page=389
Also - http://news.com.com/Trojan+masquerades+as+Skype+update/2100-7349_3-5898272.html

Two-factor banking
Trust in financial institutions is eroding as phishing scams grow exponentially; adding two-factor authentication is our only hope.
http://www.securityfocus.com/columnists/363

Understanding the HTTP Protocol (Part 3)
Author: Don Parker
Summary: In part two of this article series we covered all of the HTTP metrics that were sent by the web server. We also expanded a bit more on HTTP, and how the Internet largely communicates using the client/server model. In this last part on HTTP we will further delve into the inner designs of HTTP, and show you a tool that you can use to further your knowledge of HTTP.
Link: http://www.WindowsNetworking.com/articles_tutorials/Understanding-HTTP-Protocol-Part3.html

New Security Features in IE 7.0
Author: Deb Shinder
Summary: The browser security wars have been heating up again lately. After a small but significant exodus in which many computer users switched from Internet Explorer to Mozilla’s Firefox because of its supposed security advantages, last month <b><a href="http://news.com.com/Symantec+Mozilla+browsers+more+vulnerable+than+IE/2100-1002_3-5873273.html" target=_blank>a report from Symantec</a></b> shocked many open source fans with data showing the Mozilla browsers suffered from more security vulnerabilities than IE, including more that were of high severity.
Link: http://www.WindowSecurity.com/articles/New-Security-Features-IE-70.html

Stopping Automated Attack Tools
An analysis of web-based application techniques capable of defending against current and future automated attack tools.
http://www.technicalinfo.net/papers/StoppingAutomatedAttackTools.html

CLI MAGIC: TROJAN SCAN
"Not the security you get from being all wrapped up in a baby-blanket, coddling, gratuitous GUI, but the kind that comes from knowing who is connected to your machine, and why..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yt1,1,8x55,dfcc,85jl,7pty

MOZILLA FIREFOX DOS EXPLOIT CODE RELEASED "A non-critical bug in the Mozilla FireFox browser can be used to trigger a Denial of Service (DoS) attack, according to Whitedust Security..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yt1,1,lduf,5gph,85jl,7pty

AUTOMATED BACKUPS WITH RDIFF-BACKUP
"This tutorial describes how to do automated server backups with the tool rdiff-backup..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yt3,1,igbb,1trc,85jl,7pty

ON THE TRAIL OF THE Z SHELL
"Whether you're new to Linux or longtime Penguinista, a powerful command-line shell can boost productivity..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yt3,1,du85,19eo,85jl,7pty

STOPPING LINUX DESKTOP ADOPTION SABOTAGE [PARTS 1-3] "Many IT professionals ask me when Linux will finally 'make it' on the desktop. How will they know when Linux has made it? What's holding it back...?"
http://nl.internet.com/ct.html?rtr=on&s=1,1yt3,1,eyjz,hdcw,85jl,7pty

Metasploit Framework v2.5 released
The Metasploit Framework is an advanced open-source exploit development platform. The 2.5 release includes three user interfaces, 105 exploits and 75 payloads. The Framework will run on any modern operating system that has a working Perl interpreter. The Windows installer includes a slimmed-down version of the Cygwin environment. This is a maintenance release - all updates to 2.4 have been rolled into 2.5, along with some new exploits and minor features. This release is available from the Metasploit.com web site:
Unix: http://metasploit.com/tools/framework-2.5.tar.gz
Win32: http://metasploit.com/tools/framework-2.5.exe
A demonstration of the msfweb interface is running live from:
http://metasploit.com:55555/

TECHNOLOGY
Title: Cisco launches its network security system
Source: Techworld
Date Written: 2005-10-18
Date Collected: 2005-10-18
Cisco announced Phase 2 of its Network Admission Control (NAC) project at the RSA 2005 conference in Vienna. NAC is meant to protect a network from attack by assessing the security of connecting clients, from whether the operating system is fully patched to the last update of anti-virus scanners. While users in Phase 1 had to purchase a separate NAC appliance for their networks, Phase 2 will build NAC into Cisco's Internetwork Operating System (IOS) on Catalyst switches. A new partner program will allow NAC users to choose auditing software from different vendors for the client assessment. Cisco delayed its release of it NAC tools, allowing 3Com, Alcatel, Enterasys, HP and Nortel, among others, to develop competing NAC products, but some users believe integration with switches makes Cisco's NAC a top contender despite the delay.
http://www.techworld.com/security/news/index.cfm?RSS&NewsID=4602

VULNERABILITIES & EXPLOITS
Title: Security flaw touches Windows Media Player, IE
Source: C-Net News
Date Written: 2005-10-18
Date Collected: 2005-10-18
eEye Digital Security has released an advisory warning users of a critical flaw affecting Windows Media Player and Internet Explorer that could allow a remote attacker to execute malicious code. The flaw is found in Windows XP with Service packs 1 and 2, as well as Windows NT, 2003, 2003 SP1, and 2000. Although the eEye advisory describes the flaw as critical, eEye does not believe a worm can exploit it. Microsoft says it is investigating the flaw and that no exploits have been reported.
http://news.com.com/Security+flaw+touches+Windows+Media+Player%2C+IE/2100-1002_3-5899448.html

EFF launches contest to design GUI for Tor http://programming.newsforge.com/article.pl?sid=05/10/18/1352234&from=rss
The Tor project, which designs tools for anonymous Internet communications, is running a public user interface design contest in two phases. Phase one will select designs for the new GUI Tor, while phase two will choose among the best implementations. A panel of top-caliber judges from the network security and human-computer interaction worlds will select the winners, and qualifying entrants will receive a free Tor T-shirt from the Electronic Frontier Foundation (EFF).

Get Linux drivers for wireless network cards http://newsvac.newsforge.com/article.pl?sid=05/10/18/2114257&from=rss
Where can I find Linux hardware drivers for my USB wireless network adapter?

"A780 Hacks"
A780 .. il primo (credo) cellulare linux inside è finito nelle mani di Harald Welte, un kernel hacker che non ha esitato a spippolarci un pò.
http://www.ziobudda.net/Admin/redir_news.php?id=24617

"Intervista a Samy"
Intervista all'autore del primo Worm XSS.
http://www.ziobudda.net/Admin/redir_news.php?id=24604

SAMY, UN WORM CHE ALLARMA
Potrebbe rappresentare il capostipite di una nuova generazione di worm in grado di sfruttare le spesso sottovalutate vulnerabilita' di tipo cross-site scripting. Ecco di cosa e' stato capace
URL: http://punto-informatico.it/pi.asp?i=55672

FIREFOX, BUGGHETTO CON EXPLOIT
I browser di Mozilla Foundation, e forse anche Internet Explorer, sono afflitti da un bug sfruttabile da siti malevoli per mandarli in crash. In se' poco pericoloso, il buco ha gia' un suo exploit pubblico
URL: http://punto-informatico.it/pi.asp?i=55663

MICROSOFT VERSO L'OPEN SOURCE
Solleva molto rumore l'annuncio dell'azienda che spinge in una direzione un tempo ritenuta impensabile: ritocca le sue licenze Shared Source e le trasforma in qualcosa che assomiglia da vicino alle licenze base dell'open source
URL: http://punto-informatico.it/pi.asp?i=55707

EFF SCOPRE I CODICI SEGRETI DELLE STAMPANTI L'associazione che si batte per le liberta' digitali conclude l'inchiesta sui marchi nascosti lasciati dalle laser sui fogli stampati e ne decifra i segreti. Privacy a rischio? Quali altri accordi tra produttori e governi?
URL: http://punto-informatico.it/pi.asp?i=55697

ORACLE, TEMPO DI MEGAPATCH
Il colosso ha rilasciato un voluminoso aggiornamento di sicurezza contenente decine di patch per buona parte dei suoi software piu' noti, tra cui i database
URL: http://punto-informatico.it/pi.asp?i=55702

EEYE SCOVA UN BUCO IN WMP E IE
L'ormai nota societa' di sicurezza californiana ha pubblicato un nuovo advisory di sicurezza relativo alla scoperta di una falla in Windows Media Player e Internet Explorer. Il bug sarebbe piuttosto serio
URL: http://punto-informatico.it/pi.asp?i=55704

FALLA IN SNORT, MOLTE LE RETI A RISCHIO
Tra gli esperti di sicurezza c'e' allarme per una vulnerabilita' che affligge uno dei software per la sicurezza piu' celebri dell'open source. Tutti invitati a scaricare la nuova versione corretta
URL: http://punto-informatico.it/pi.asp?i=55714
Also - http://www.networkworld.com/news/2005/101805-snort.html?fsrc=netflash-rss

BUCHETTO SUI SITI DI MTV.IT E CLARENCE
I due famosi siti web condividono una potenziale vulnerabilita' nei rispettivi motori di ricerca, utilizzabili per eseguire codice HTML e javascript
URL: http://punto-informatico.it/pi.asp?i=55691

OPENING UP CLUSTERED FILE SYSTEMS
"Open source continues to make inroads into enterprise storage, and its latest route is clustered file systems..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yxg,1,9n63,8v20,85jl,7pty

SMB BROWSING WITH KDE
"However, on a network of Linux and Windows machines, connecting a Linux box to a Windows server can still require some manual configuration..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yxg,1,m0qw,iqj4,85jl,7pty

FREERADIUS AND LINUX SECURE YOUR WLAN
"The RADIUS protocol has long been a standard authentication, authorization and accounting protocol for Internet service providers and businesses..."
http://nl.internet.com/ct.html?rtr=on&s=1,1yxg,1,b1o4,bs40,85jl,7pty

IRC on a Higher Level Continued
Take a look at more features of the Python IRC library.
http://www.devshed.com/c/a/Python/IRC-on-a-Higher-Level-Continued/

Core System Services
Read about the five core services of Linux systems which perform fundamental functions.
http://www.devshed.com/c/a/Administration/Core-System-Services/

Temporary Variables: Runtime rvalue Detection Test whether a variable is temporary or not by using the ternary conditional operator.
http://www.devarticles.com/c/a/Cplusplus/Temporary-Variables-Runtime-rvalue-Detection/

Active Directory Design Considerations for Small Networks
Author: Brien M. Posey
Summary: A lot of people who are new to networking or who work primarily on larger networks seem to underestimate the design considerations for small networks. It kind of makes sense when you think about it though. From an Active Directory standpoint, what’s really to consider? After all, most small networks have a single forest and a single domain. Even so, your network will run a lot more smoothly if you take the time to do a little planning first. In this article, I will discuss some of the issues involved in planning a small Active Directory deployment.
Link: http://www.WindowsNetworking.com/articles_tutorials/Active-Directory-Design-Considerations-Small-Networks.html

Ian Murdock responds to Debian-DCC Alliance trademark dispute http://trends.newsforge.com/article.pl?sid=05/10/19/1638239&from=rss
Earlier today we posted an article about the dispute between the Debian Project and the former Debian Common Core Alliance, now known as the DCC Alliance. Before press time we had not received a response from DCCA leader Ian Murdock, the founder of Progeny. Now we have.

Debian Common Core Alliance loses 'Debian' from its name http://trends.newsforge.com/article.pl?sid=05/10/19/1444211&from=rss
Lacking permission from the Debian project to call itself Debian anything, the Debian Common Core Alliance has agreed to change its name to the recursive DCC Alliance, but, according to Debian, has so far refused to remove Debian's logo from its own logo or issue any formal press release about the change or why it took place.

Essentials for Using Linux FTP HOWTO
http://newsvac.newsforge.com/article.pl?sid=05/10/19/2110202&from=rss
Mark Rais writes "We share the basics of FTP and a number of unique ways to automate updating and maintaining of files on a server. The tips include applying shell scripting and text editors. Our hope is that any beginner who needs to use Linux and FTP on a regular basis will gain some insights to make their life easier."

"[OT]Passwords indimenticabili!"
Il problema delle parole chiave è atavico. Chiunque crede di aver trovato quella giusta, ma molti non ne conoscono la reale fragilità... A cura di Umberto Rapetto
http://www.ziobudda.net/Admin/redir_news.php?id=24636

"netfilterone, configurare facilmente netfilter"
Solsoft ha rilasciato NetfilterOne, un programma gratuito che permette di configurare in maniera intuitiva netfilter, cioè il firewall che equipaggia di default tutte le distribuzioni Gnu/Linux moderne.
http://www.ziobudda.net/Admin/redir_news.php?id=24633

"Un frontend grafico per l'amministrazione di amavis e spamassasin"
La gestione di amavis e spamassassin è senza alcun dubbio complessa e richiede all'amministratore molto tempo per tenere sotto controllo tutti i parametri di configurazione disponibili nei due software. Maia Mailguard è un ottimo programma che può essere di aiuto nella gestione, ma soprattutto nell'analisi dei log di un mail server basato su amavis e spamassassin. Il software è realizzato in PHP e necessita quindi di un webserver apache con supporto PHP e di un database MySQL in cui verranno salvati tutti i dati.
http://www.ziobudda.net/Admin/redir_news.php?id=24629

"Squid avanzato"
Articolo dedicato alla configurazione avanzata di Squid (proxy server). Acl ed autenticazione in primis.
http://www.ziobudda.net/Admin/redir_news.php?id=24626

"Rilasciato Xorg 6.9/7.0 RC1"
Un importante passo di avvicinamento alla release definitiva di Xorg 6.9 & 7.0 (che presenterà caratteristiche molto innovative) prevista per il 7 Dicembre 2005.
http://www.ziobudda.net/Admin/redir_news.php?id=24623

ADSL 2 PLUS? C'E', MA ANCORA NON LA VENDONO A breve, velocita' assai piu' elevate e una copertura superiore rispetto all'ADSL attuale. Ci stanno lavorando tutti i maggiori operatori. L'inchiesta di PI su questa nuova modalita' di connessione, tra miti e promesse
URL: http://punto-informatico.it/pi.asp?i=55736

COPYZERO, COME TUTELARSI SENZA SIAE
Sfrutta la firma digitale per dare certezze agli autori di opere che non vogliano legarsi alla SIAE. Un metodo semplice ed economico per associare legalmente il proprio nome a quanto si produce. PI intervista i promotori del progetto
URL: http://punto-informatico.it/pi.asp?i=55659

OPENOFFICE 2.0 AL TRAGUARDO
Ed eccola, dopo vari ritardi e contrattempi, la nuova versione della piu' celebre suite per l'ufficio open source. Ecco le armi che ha affilato per rinnovare la propria sfida a Office e ai formati di file proprietari
URL: http://punto-informatico.it/pi.asp?i=55738
Also - http://www.ziobudda.net/Admin/redir_news.php?id=24640
Also - http://nl.internet.com/ct.html?rtr=on&s=1,1z2c,1,28j4,9o4t,85jl,7pty

SP2 PER EXCHANGE 2003 E' ON-LINE
Il secondo service pack per Exchange Server 2003, del peso di oltre un centinaio di megabyte, puo' essere scaricato gratuitamente dal sito di Microsoft. Migliorano soprattutto il servizio push delle e-mail e i meccanismi di sicurezza
URL: http://punto-informatico.it/pi.asp?i=55723

KERIO UCCIDE IL SUO PERSONAL FIREWALL
Uno fra i piu' diffusi firewall personali, Kerio, si prepara a lasciare il mercato. La causa e' l'ormai forte concorrenza delle soluzioni integrate per la sicurezza dei colossi del settore
URL: http://punto-informatico.it/pi.asp?i=55743

CASSANDRA CROSSING/ SICUREZZA SI', MA I DIRITTI?
di Marco A. Calamari - L'equazione secondo cui a meno privacy equivale una maggiore sicurezza e' fasulla e non e' solo ideologicamante scorretta ma anche totalmente sbagliata dal punto di vista tecnico
URL: http://punto-informatico.it/pi.asp?i=55721

GUIDA AL P2P: ISTIGAZIONE A DELINQUERE?
Una corte federale statunitense ha oscurato temporaneamente un sito web che vende guide ed istruzioni per i sistemi P2P. Istigava - dicono - a compiere atti di pirateria multimediale
URL: http://punto-informatico.it/pi.asp?i=55731

** LOGAN: SARA' L'HACKER-MOBILE? **
L'auto per i tirchi e gli smanettoni debutta in Italia. Il prezzo però è meno invitante del previsto.
>> di Michele Bottari
http://www.zeusnews.it/news.php?cod=4390

Sicurezza Web
Da WatchFire una serie di whitepaper web security related davvero interessanti.
http://www.watchfire.com/securityzone/library/whitepapers.aspx

Robot Wars. How Botnets Work
Author: hakin9
Summary: One of the most common and efficient DDoS attack methods is based on using hundreds of zombie hosts. Zombies are usually controlled and managed via IRC networks, using so-called botnets. Let's take a look at the ways an attacker can use to infect and take control of a target computer, and let's see how we can apply effective countermeasures in order to defend our machines against this threat.
Link: http://www.WindowSecurity.com/articles/Robot-Wars-How-Botnets-Work.html

EVERYBODY'S GUIDE TO OPENDOCUMENT
"Sorting out the facts from the errors and omissions in recent reaction to Massachusetts' announcement to use OpenDocument..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z2c,1,4f82,h75o,85jl,7pty

LINUS TORVALDS: LINUX V2.6.14-RC5
"Yeah, I know I said -rc4 was going to be the last one..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z2c,1,j43z,amc0,85jl,7pty

OPENDOC PLUG-IN FOR MS OFFICE USERS
"Software industry group Open Source Victoria has teamed up with NSW technology company Phase N to develop a plug-in for Microsoft Office users to view documents in the Open Document Format..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z2c,1,9y93,95p4,85jl,7pty

EBEN MOGLEN MINI-INTERVIEW
"I think there will be minimal confusion, because there will have been a long public conversation and there will be--I hope--no reseller or developer or distributor of GPL software who doesn't know that licence change is going on..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z2c,1,inns,6q8c,85jl,7pty

Why OpenOffice.org 2.0 Is Your Best Choice http://newsvac.newsforge.com/article.pl?sid=05/10/20/2046222&from=rss
sjvn writes "There are many fancy reasons that OpenOffice.org is a great choice for your office work. For example, it's open source and it supports an open format document standard, OpenDocument. But let's put "openness" to the side. Let me get down to the nitty-gritty: It's free (as in free beer) and it works. What's not to like?"

"Giappone: in arrivo una rete VoIP per cellulari"
In Giappone è in fase di studio la realizzazione di una nuova rete mobile che utilizzerà la tecnologia VoIP...
http://www.ziobudda.net/Admin/redir_news.php?id=24666

"Programmare server e client con Ruby"
Se dovete realizzare programmi di rete multipiattaforma, non perdetevi questo documento di IBM sui socket di Ruby.
http://www.ziobudda.net/Admin/redir_news.php?id=24663

"10 comandi per Linux"
Ecco la classifica, con una piccola guida, dei 10 comandi Linux, ritenuti indispensabili per ogni nuovo utente che si affacci a questo mondo...
http://www.ziobudda.net/Admin/redir_news.php?id=24655

"USA, dopo Echelon arriva Dshield"
Dopo l'esperienza di Echelon, ecco che la nostra privacy viene posta all'attenzione di un altro grande fratello: Dshield. Il progetto Dshield funziana mettendo insieme i log provenienti da diverse parti del mondo, in tale modo riesce a tracciare le attivita di "tutti" i computer connessi in internet.
http://www.ziobudda.net/Admin/redir_news.php?id=24654

"Disponibile Quake 4 per Linux!"
La idSoftware ha rilasciato server e client per Linux. Il link rimanda alle FAQ per l'installazione.
http://www.ziobudda.net/Admin/redir_news.php?id=24650

VULNERABILITIES & EXPLOITS
Title: Oracle patches 88 holes in security update
Source: Techworld
Date Written: 2005-10-19
Date Collected: 2005-10-21
Oracle issued 88 patches affecting database software versions from 8i onwards in its quarterly update. The vulnerabilities include 33 database, 14 application server, 13 Collaboration Suite, 22 E-Business suite, and 6 PeopleSoft and JD Edwards software flaws. Only one of the vulnerabilities, CAN-2005-0873, had already been made public.
http://www.techworld.com/security/news/index.cfm?NewsID=4610

VULNERABILITIES & EXPLOITS
Title: Apache fixes pair of Web server flaws
Source: Search Security
Date Written: 2005-10-19
Date Collected: 2005-10-21
Two newly discovered vulnerabilities in older versions of the Apache HTTP Server could open the door to cross-site scripting attacks or security policy bypasses. The flaws have been deemed a "moderate risk" by FrSIRT (French Security Incident Response Team) because they cannot be used to compromise a susceptible system. HTTP Server 1.3.33 and earlier are affected, but the problem can be eliminated by upgrading to version 1.3.34 or newer. The Apache users most likely to be affected are those that have not upgraded in quite a while.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1135516,00.html

VULNERABILITIES & EXPLOITS
Title: Tempted by blogs, spam becomes 'splog'
Source: CNet
Date Written: 2005-10-20
Date Collected: 2005-10-21
Splog, the blog equivalent of spam, hit Google's Blogger blog-creation tool and BlogSpot hosting service with the largest assault seen thus far. An attacker used automated tools to create thousands of fake blogs loaded with links to specific Web sites (for mortgage services and the like) in order to manipulate search engine results. It also caused RSS feeders and email boxes to be flooded with alerts. The extent of the attack and the skilled methods used to mount it show splogging, a problem experts say has been growing, is becoming a true threat. PubSub and IceRocket.com plan to stop indexing Blogger sites until a fix has been implemented. Some are calling for Google to shut down Blogger due to its insufficient security protection.
http://news.com.com/Tempted+by+blogs%2C+spam+becomes+splog+-+page+2/2100-1032_3-5903409-2.html?tag=st.next

VULNERABILITIES & EXPLOITS
Title: Exploit code for Oracle hole surfaces
Source: Techworld
Date Written: 2005-10-21
Date Collected: 2005-10-21
The Full Disclosure mailing list has an exploit targeting a buffer overflow in Oracle 9i and 10g that could allow an attacker to crash a database. The exploit could be used either by an attacker with user credentials or a remote hacker using an SQL injection attack. Oracle's quarterly patch release for October 2005 fixed 88 flaws in various products, including software from Peoplesoft and J.D. Edwards. While the flaw is in both 9i and 10g, the exploit only affects 10g.
http://www.techworld.com/security/news/index.cfm?RSS&NewsID=4625

SNORT'S INTRUSION SYSTEM BLOWS A HOLE
"In an interesting case of technical irony, a tool used to help security professionals detect intrusions into their networks is in fact vulnerable to intrusions itself..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z6a,1,l7k6,eqk1,85jl,7pty

OPENOFFICE.ORG 2.0: AN OFFICE SUITE WITH NO HORIZONS "It's the day that OpenOffice.org leaves its youth, and becomes a mature office suite fit to challenge the market leader, Microsoft Office, with today's release of OpenOffice.org 2.0 stable version..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z68,1,137z,lqpg,85jl,7pty

WHEN IS DEBIAN NOT DEBIAN?
"There are times when I just want to crack some open-source heads together..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z68,1,597o,1mob,85jl,7pty

THE CUPS PRINTING SYSTEM
"A basic introduction to what CUPS is and why you might want to use it rather than LPD..."
http://nl.internet.com/ct.html?rtr=on&s=1,1z68,1,6l88,9ffl,85jl,7pty

Free Random WEP/WPA-PSK online generator tool Create and customize random WEP/WPA-PSK Key with this online tool.
http://www.securitywireless.info/genwpawep.php

Remote Timing Attacks are Practical
Timing attacks are usually used to attack weak computing devices such as smartcards. We show that timing attacks apply to general software systems. Specifically, we devise a timing attack against OpenSSL. Our experiments show that we can extract private keys from an OpenSSL-based web server running on a machine in the local network. Our results demonstrate that timing attacks against network servers are practical and therefore security systems should defend against them.
http://www.astalavista.com/index.php?section=directory&linkid=5319

Securing Web Servers against Insider Attack We present a vision: using secure coprocessors to establish trusted coservers at Web servers and moving sensitive computations inside these co-servers; we present a prototype implementation of this vision that scales to realistic workloads; and we validate this approach by building a simple E-voting application on top of our prototype. By showing the real potential of COTS secure coprocessing technology to establish trusted islands of computation in hostile environments—such as at web servers with risk of insider attack—this work also helps demonstrate that “secure hardware” can be more than synonym for “cryptographic accelerator.’
http://www.astalavista.com/index.php?section=directory&linkid=5321

Traffic Analysis on a Mass Mailing Worm and DNS/SMTP How mass mailing worms interfere with DNS and SMTP servers.
http://www.astalavista.com/index.php?section=directory&linkid=5332

Malicious Cryptography: Exposing Cryptovirology The first part of this chapter describes various physical phenomena that have been proposed in the literature as sources of randomness. It is common practice to misuse such sources by utilizing cryptographic hash functions as entropy extractors. The nature of this questionable practice is discussed in some detail.
http://www.astalavista.com/index.php?section=directory&linkid=5335

Network Utilities from Bindshell
www.bindshell.net hosts network and other tools such as : synscan, ipsort, rfidtool, massresolve, kismet-parse.
http://www.bindshell.net/tools/

Cloaking and Redirection: A Preliminary Study Cloaking and redirection are two possible search engine spamming techniques. In order to understand cloaking and redirection on the Web, we downloaded two sets ofWeb pages while mimicking a popularWeb crawler and as a common Web browser. We estimate that 3% of the first data set and 9% of the second data set utilize cloaking of some kind. By checking manually a sample of the cloaking pages from the second data set, nearly one third of them appear to aim to manipulate search engine ranking. We also examined redirection methods present in the first data set. We propose a method of detecting cloaking pages by calculating the difference of three copies of the same page. We examine the different types of cloaking that are found and the distribution of different types of redirection.
http://www.cse.lehigh.edu/~brian/pubs/2005/airweb/cloaking.pdf

Encrypting Voice: An Interview with Phil Zimmermann http://www.voip-magazine.com/content/view/520/
VoIP Magazine recently interviewed Phil Zimmermann, creator of PGP, the most widely used email encryption software. Phil discusses the urgency of creating powerful encryption for VoIP, among other issues. Phil will be speaking at O'Reilly's upcoming Emerging Telephony Conference, January 24-26 in San Francisco. Join us!

What do to when apt-get fails
http://software.newsforge.com/article.pl?sid=05/10/12/1953209&from=rss
When you install an application package in a Debian-based system, sometimes prerequisite application packages are unavailable. These missing packages are known as broken dependencies. Left unresolved, they can cripple your system's ability to install new packages. They're a disaster that isn't supposed to happen in Debian, thanks to the Advanced Packaging Tool (APT) and the scripts contained in Debian packages. That makes broken dependencies all the more devastating when they happen. Some users have even been known to reinstall the whole operating system, despairing of otherwise having a functioning package management system. However, depending on how the broken dependencies arose, you have several options to try before you consider reinstalling.

g00d reading! 'n' bye
Daily DisInfo CreaTor & MainTainer:

The Jackal a.k.a. jAcKallO < jackal [at] capitanlug.it >

(AreaSessantuno Inside) / (SpiPPolatori Collaborator) (HackerAlliance Member) / (Socio fondatore del CapitanLUG.iT) (Daily DisInfo CreaTor & MainTainer) / (Security News MainTainer)

..::::: ooOOOo sPoT oOOOoo :::::...

Il Daily DisInfo è disponibile anche
all'indirizzo: http://dailydisinfo.splinder.com

..::::: ooOOOo eNd oOOOoo :::::...