-----------------------
Comunicazione di servizio: Sono stati completamente risolti i problemi riguardo l'invio e la sottoscrizione alla SecurityNews.
[Gnomix]
-----------------------
"Linux Advisory Watch"
http://www.ziobudda.net/news/see_comments.php?id_notizia=7169
SIMILE.D, IL VIRUS DELLA PAR CONDICIO
La nuova variante del virus Simile non fa discriminazioni e si attacca sia ai file binari di Windows che a quelli di Linux. Per fortuna senza fare troppi danni
URL: http://punto-informatico.it/pi.asp?i=40379
SQL INJECTION WALKTHROUGH
The following article will try to help beginners with grasping the problems facing them while trying to utilize SQL Injection techniques, to successfully utilize them, and to protect themselves from such attacks.
>> http://www.net-security.org/news.php?id=252
BEYOND INTRUSION DETECTION
Liz Simpson talks about intrusion detection and uses two security companies - Counterpane and Securify - to describe the difference in their approach.
>> http://www.net-security.org/news.php?id=267
PORTSENTRY FOR ATTACK DETECTION - PART TWO This article by Ido Dubrawsky will focus on building, installing, and operating PortSentry.
>> http://www.net-security.org/news.php?id=272
Potential security issues in Ethereal
>> http://www.net-security.org/vuln.php?id=1726
Novell Netware 5.0 Default Programs Display Server Information
>> http://www.net-security.org/vuln.php?id=1731
Novell Netware 5.0 Default Programs Displays Server Variables
>> http://www.net-security.org/vuln.php?id=1730
Ircssi IRC Chat Client Backdoor
>> http://www.net-security.org/vuln.php?id=1714
"QUI: Ecco come ho crackato l'XBOX"
Uno studente del MIT spiega come è riuscito a eludere la protezione software di XBOX. Da poco pubblicata la documentazione tecnica relativa. Redmond tace.
http://www.ziobudda.net/news/see_comments.php?id_notizia=7185
Also - http://punto-informatico.it/pi.asp?i=40413
Also - http://www.nytimes.com/reuters/technology/tech-tech-xbox.html
"2.4.19-pre9-ac3"
Alan Cox rilascia il nuovo kernel 2.4.19-pre9. Qualche fix e poche cose nuove.
http://www.ziobudda.net/news/see_comments.php?id_notizia=7175
UN MEGAPACCO INGRASSA OFFICE V.X
Microsoft ha rilasciato la Service Release 1 della suite per Mac OS X, paccone contenente di tutto: da bug fix a nuove funzionalita' e ottimizzazioni
URL: http://punto-informatico.it/pi.asp?i=40397
BUCONE NEL SERVER JAVA DI MACROMEDIA
La versione per Windows di JRun 3.1 di Macromedia e' afflitta da una falla che potrebbe aprire le porte ai cracker. Immune la versione 4.0
URL: http://punto-informatico.it/pi.asp?i=40399
Vulnerabilities
Source: ZDNet
Date Written: May 30, 2002
Date Collected: June 3, 2002
Title: Instant messaging: The next hacker target Internet Security Systems, warns that instant messaging applications are the next target for hacker and virus writers. The threat of an instant messaging virus is derived from the fact that companies seem more vigilant about stopping e-mail viruses, and IM applications may present an easy target. There have been examples of malicious codes that attack instant messaging systems observed.
http://www.zdnet.com/anchordesk/stories/story/0,10738,2868239,00.html
"Slackware 8.1 RC2 is out"
From the ChangeLog...
http://www.ziobudda.net/news/see_comments.php?id_notizia=7211
"HackMeeting 2002"
HACKMEETING 2002 Bologna, 21 22 23 giugno 2002 L'hackmeeting e' l'incontro delle comunita' e delle controculture digitali italiane. Tre giorni di seminari, giochi, feste, dibattiti, scambi di idee e apprendimento collettivo.
http://www.ziobudda.net/news/see_comments.php?id_notizia=7210
"SecurityFocus Newsletter #147"
http://www.ziobudda.net/news/see_comments.php?id_notizia=7202
"SecurityFocus Linux Newsletter #83 (fwd)"
http://www.ziobudda.net/news/see_comments.php?id_notizia=7201
"Linux Security Week - June 3rd 2002"
http://www.ziobudda.net/news/see_comments.php?id_notizia=7199
Cybercrime-Hacking
Source: Security Focus
Date Written: June 3, 2002
Date Collected: June 4, 2002
Title: Download Sites Hacked, Source Code Backdoored It appears that both a Unix-based Internet relay chat (IRC) client and the Dsniff, Fragroute, and Fragrouter security tools were compromised and "backdoored." The hacking incidents may be related. The source code of the security tools was changed after a hacker gained unauthorized access to the Monkey.org web site. If the contaminated programs are installed on a Unix-based machine, a backdoor is opened by the programs that will be accessible to a remote server. More than 2,000 copies of the booby-trapped security programs were downloaded from the Internet before the security breach was discovered. An investigation is ongoing.
http://online.securityfocus.com/news/462
"Che cos'é un SYN flood?"
Un SYN flood è un tipo di attacco DoS...
http://www.ziobudda.net/news/see_comments.php?id_notizia=7222
Bypassing JavaScript Filters - the Flash! Attack In this paper we will be describing a loophole, with security implications, found in many web-sites that allow Flash documents to be embedded within HTML, or uploaded to the server. We will be describing how Web application developers make use of complex filters for HTML pages but tend to trust Flash content, and as a result introduce a security issue. More details:
http://eyeonsecurity.net/papers/
INTERNET EXPLORER INCIAMPA SU GOPHER
Il browser di Microsoft contiene una grave vulnerabilita' di sicurezza nel codice che gestisce le connessioni Gopher, un vecchio protocollo di Internet. Si attende la patch
URL: http://punto-informatico.it/pi.asp?i=40433
Also - http://www.theregister.co.uk/content/4/25590.html
Also - http://www.washingtonpost.com/wp-dyn/articles/A63025-2002Jun5.html
Also - http://www.nwfusion.com/news/2002/0605gopher.html
Also - http://online.securityfocus.com/news/464
Also - http://www.nandotimes.com/technology/story/424457p-3389176c.html
BIND 9 VULNERABILE AI DOS
Il diffusissimo server DNS open source contiene una falla che potrebbe renderlo facile bersaglio di attacchi di tipo DoS. Interessati numerosi sistemi operativi
URL: http://punto-informatico.it/pi.asp?i=40435
Also - http://www.cert.org/advisories/CA-2002-15.html
Also - http://zdnet.com.com/2100-1105-932573.html
Also - http://www.nipc.gov/warnings/advisories/2002/02-004.htm
Also - http://www.vnunet.com/News/1132360
-->> Nuova patch per XP: il search non funziona new
Microsoft ha rilasciato oggi una patch per i sistema operativo Windows XP.
L'aggiornamento odierno tende a risolvere un bug relativo alla funzionalita'di search.
URL: http://www.hwfiles.it/news/287.html
"Syslog-ng e Snort insieme"
Interessantissimo articolo apparso su Linux Security.com la cui prefazione
recita: "A Comprehensive Guide to Building Encrypted, Secure Remote Syslog-ng Servers with the Snort Intrusion Detection System".
http://www.ziobudda.net/news/see_comments.php?id_notizia=7237
"IPTables-tutorial"
Aggiornato l'IPTabels tutorial di Linux Step By Step. Se avete necessita' di montare un FW allora questo documento fa al caso vostro.
http://www.ziobudda.net/news/see_comments.php?id_notizia=7234
VIA AL TESTING DEL PRIMO PACCO PER WINXP Esce la prima beta del Service Pack 1 per Windows XP, un pacco che si appresta a passare attraverso un'inedita e severissima fase di testing.
Presto se ne vedranno i frutti
URL: http://punto-informatico.it/pi.asp?i=40454
DOPPIA FALLA PER SUN SOLARIS
Il sistemone di Sun e' afflitto da due severe falle di sicurezza che potrebbero consentire ad un cracker di prendere il pieno controllo di un server
URL: http://punto-informatico.it/pi.asp?i=40457
Also - http://sunsolve.sun.com/securitypatch
Vulnerabilities
Source: The Register
Date Written: June 6, 2002
Date Collected: June 6, 2002
Title: Security through obsolescence
Brian Aker, one of the programmers who works on Linux.com, NewsForge, Slashdot, and other OSDN sites, suggests that to be truly secure people should use older programs to confuse script kiddies who focus primarily on the newest software. He says that some Department of Defense websites are running old Macintosh operating systems, which he says are impenetrable. He calls this security through obscurity. Using custom or older operating systems for servers, will discourage script kiddies who will move to easier targets. Another advantage of older systems is that people have already tied to crack the systems and they have already been patched numerous times.
http://www.theregister.co.uk/content/55/25608.html
"Vulnerabilità router ADSL Telindus"
I router Telindus 1120 ADSL (quelli montatati anche da Telecom sulle ADSL di fascia "Business") hanno un problema di sicurezza che permette di leggere la password da locale e da remoto. Sito di riferimento: www.portazero.info
http://www.ziobudda.net/news/see_comments.php?id_notizia=7269
Technology
Source: Security Focus
Date Written: June 6, 2002
Date Collected: June 7, 2002
Title: Optimizing NIDS Performance
This article details some of the necessary steps for deploying Network Intrusion Detection Systems (NIDS). NIDS can help a system administrator determine whether the security of a system is being, or attempting to be breached. The author recommends that administrators: read the NIDS deployment policy prior to instillation, determine a security strategy and which signatures to detect and filter, and change the customizable options to meet the security strategy of the network.
http://online.securityfocus.com/infocus/1589
Vulnerabilities
Source: ZDNet
Date Written: June 6, 2002
Date Collected: June 7, 2002
Title: Aussies warned: holes rip Yahoo Messenger The Australian Computer Emergency Response Team (AusCERT) has issued a warning about security vulnerabilities in Yahoo! Messenger version 5,0,0,1064. AusCERT suggests users update their Instant Messenger service immediately. The vulnerabilities would allow a hacker to execute malicious code on an affected machine, and could give the hacker remote control over the victim's computer with victim's privileges.
http://www.zdnet.com.au/newstech/security/story/0,2000024985,20265826,00.htm
Vulnerabilities
Source: NY Times
Date Written: June 7, 2002
Date Collected: June 7, 2002
Title: Security Hole Found in KaZaA File-Sharing Service Kazaa peer-to-peer file sharing network contains features that could leave every file on the user's hard drive open to being accessed through Kazaa.
According to researchers from Hewlett-Packard Laboratories' Information Dynamics Lab and the University of Minnesota's Office of Information Technology, a design flaw of the user interface would allow sharing of private files if misconfigured by the user.
http://www.nytimes.com/2002/06/07/technology/07PRIV.html
Also - http://www.nwfusion.com/news/2002/0607kazaa.html
g00d reading! 'n' bye
Security News Staff:
The Jackal a.k.a jAcKallO
<-jackal-@libero.it>
