"OpenOffice mostra i limiti dello sviluppo open source?"
Andrew Brown (The Guardian) si chiede: "Se questa suite è un successo,
perchè ha così tanti bug?"... (il link rimanda a slashdot che ha a su
a volta 2 links).
http://www.ziobudda.net/Admin/redir_news.php?id=25497

Come telefonare e spendere meno con il nuovo Messenger Yahoo
E' in fermento il mercato del VoIP per l'arrivo (previsto tra qualche gio
rno) della nuova versione di Yahoo Messenger che permetterà di effettua
re chiamate a telefoni fissi e mobili a prezzi competitivi, più bassi d
i quelli praticati da Skype.
http://www.alground.com/news/news.php?page=437

MUORE L'INQUINATORE DEL P2P
Overpeer chiude. Gioiscono i fan del peer-to-peer ma la crescita del file
sharing non e' mai stata messa in discussione dalle tecnologie invasive
diffuse dall'azienda su richiesta delle major
URL: http://punto-informatico.it/pi.asp?i=56740

SUN APRE IL CODICE DI ULTRASPARC
Con una decisione storica, il colosso californiano si prepara a rilasciar
e sul canale open source le specifiche dei suoi processori UltraSPARC e d
el giovane pupillo T1. Sfida a IBM
URL: http://punto-informatico.it/pi.asp?i=56741

INTEL LAVORA AL CHIPPETTO ANTI-ROOTKIT
L'idea e' quella di una tecnologia hardware che, in futuro, permettera' a
d ogni PC di rilevare e bloccare alcune delle piu' temibili minacce del m
ondo digitale
URL: http://punto-informatico.it/pi.asp?i=56751

DIVX 6 SBARCA SU MAC
Il famoso codec video e' disponibile anche per gli utenti del sistema ope
rativo di Apple, incluso il giovane Mac OS X Tiger
URL: http://punto-informatico.it/pi.asp?i=56759

PRIMO EXPLOIT PER FIREFOX 1.5
Un exploit pubblico fa leva su di un bug recentemente scoperto in Firefox
e ancora non corretto. Mozilla Foundation ne minimizza la pericolosita'
URL: http://punto-informatico.it/pi.asp?i=56738

INCHIOSTRO SIMPATICO PER SMS?
Un ISP britannico ha lanciato un nuovo servizio per inviare SMS che si au
todistruggono. Roba da agenti segreti? No, da browser WAP
URL: http://punto-informatico.it/pi.asp?i=56763

Server bug cripples Dublin law firms
http://newsvac.newsforge.com/article.pl?sid=05/12/10/1242230&from=rss
The problem was attributed to an improper server configuration, causing f
ive servers to send out more than half a million emails to Dublin solicit
ors. The deluge of mail originated with a publishing company's email mark
eting message, which was sent to solicitors. When some solicitors attempt
ed to reply to the mail, a fault in the solicitors' configuration of Micr
osoft Small Business Server sent the original email to their entire email
database tens of thousands of times.

LANrev 1.5: a desktop management system
http://newsvac.newsforge.com/article.pl?sid=05/12/09/2258229&from=rss
Mirko writes "LANrev now offers an extensive integration with Microsoft's
Systems Management Server (SMS). This integration allows LANrev to trans
fer Macintosh computer data to the SMS database allowing management of th
e data from within the SMS framework."

Microsoft Excel
Vendor: Microsoft
A vulnerability was reported in Microsoft Excel. A remote user can cause
arbitrary code to be executed on the target user's system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2005/Dec/1015333.html

Solaris
Vendor: Sun
A vulnerability was reported in Sun Solaris when running Sun Update Conne
ction Services. A local user may be able to obtain the web proxy password.
Impact: Disclosure of authentication information
Alert: http://securitytracker.com/alerts/2005/Dec/1015331.html

Mozilla Firefox
Vendor: Mozilla.org
A vulnerability was reported in Mozilla Firefox. A remote user can cause
denial of service conditions.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2005/Dec/1015328.html

Sony CD (Music)
Vendor: Sony
A vulnerability was reported in the SunnComm Media Max copy protection so
ftware used in certain Sony music CDs. A local user can obtain elevated p
rivileges.
Impact: Execution of arbitrary code via local system
Alert: http://securitytracker.com/alerts/2005/Dec/1015327.html

FireWall-1/VPN-1
Vendor: Check Point
A vulnerability was reported in Check Point VPN-1 SecureClient. A local u
ser can disable the security policy.
Impact: Modification of system information
Alert: http://securitytracker.com/alerts/2005/Dec/1015326.html

KOffice
Vendor: KDE.org
Several vulnerabilities were reported in KDE KOffice in the kpdf componen
t. A remote user can cause arbitrary code to be executed on the target us
er's system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2005/Dec/1015324.html

IPSec
Vendor: HP (Compaq)
A vulnerability was reported in IPSec on HP-UX. A remote user may be able
to obtain plain text portions of encrypted messages.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2005/Dec/1015320.html

IPSec
Vendor: HP (Compaq)
A vulnerability was reported in IPSec on HP-UX. A remote user may be able
gain access to the target system.
Impact: User access via network
Alert: http://securitytracker.com/alerts/2005/Dec/1015319.html

Xpdf
Vendor: Glyph and Cog
Several vulnerabilities were reported in Xpdf. A remote user may be able
to cause arbitrary code to be executed on the target system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2005/Dec/1015309.html

"Amministrare reti con wpkg e samba"
Un software come wpkg può essere molto utile nel caso in cui si abbia u
n server Linux che utilizzi Samba e una rete di client Windows da tenere
aggiornati...
http://www.ziobudda.net/Admin/redir_news.php?id=25511

"ACL squid con db mysql"
Sto creando un software GPL, orientato per le scuole ma adattabile ad
altre realtà, per la gestione delle liste di accesso del proxy squid
tramite interfaccia web (php4) e database mysql. Ho bisogno di qualcuno
che mi aiuti, soprattutto sulla parte grafica. Inoltre vorrei qualche
critica costruttiva per capire in che direzione espandermi. Ringrazio ant
icipatamente chiunque voglia rispondermi (la mail è sul
sito)
http://www.ziobudda.net/Admin/redir_news.php?id=2551

USA, MAXICONDANNA PER LA MAMMA PIRATA
Il tribunale federale di Chicago condanna una giovane madre a pagare 22.5
00 dollari di multa per 30 MP3 ottenuti illegalmente. Pioggia di polemich
e contro le major: stanno distruggendo le famiglie americane. Ma la RIAA
applaude: avanti cosi'
URL: http://punto-informatico.it/pi.asp?i=56773

SATELLITI SPIA, NUOVO RECORD AMERICANO
Gli Stati Uniti gestiscono una flotta di satelliti superiore per numero a
lla somma dei satelliti messi in orbita da tutti gli altri paesi. Molti s
ervono a spiare il resto del Mondo
URL: http://punto-informatico.it/pi.asp?i=56771

MICROSOFT: PAGHEREMO GLI UTENTI DI MSN SEARCH
Lo annuncia il chairman e fondatore Bill Gates in visita a Bangalore, spi
egando di voler condividere gli introiti pubblicitari con i propri utenti
. Per contrastare Google
URL: http://punto-informatico.it/pi.asp?i=56787

** NATALE CON PALLADIUM **
Capeggiate da Sony, alcune aziende lanciano i primi PC portatili muniti d
i chip Fritz. È solo l'inizio.
>> di Michele Bottari
http://www.zeusnews.it/news.php?cod=4489

** SONY, NUOVA FALLA IN ALTRO SISTEMA ANTICOPIA **
Dopo la figuraccia fatta con il sistema anticopia XCP, che infetta volont
ariamente i computer degli utenti, Sony rimedia un altro sfacelo: MediaMa
x.
>> di Paolo Attivissimo
http://www.zeusnews.it/news.php?cod=4490

Packetstorm Security: Mozilla è ancora sicuro
Il primo exploit che sfruttasse appieno la vulnerabilità scoperta in Mo
zilla Firefox 1.5 di qualche giorno fa è stato pubblicato su Packetstor
m, il famoso sito web dedicato alla sicurezza informatica, agli inizi del
la scorsa settimana. Tuttavia secondo alcuni report stilati dal alcune im
portanti società specializzate in sicurezza informatica è emerso che
considerare Firefox potenzialmente insicuro sembra essere davvero esagera
to.
Continua su: http://www.tuxjournal.net/news/00399.html

Users inundated with pop-ups
There are many examples where users are now being inundated with pop-up m
essages asking them to respond to things they don't know about or don't u
nderstand, and it leads to weaker security overall.
http://www.securityfocus.com/columnists/374

ADVISORIES, DECEMBER 11, 2005
This weekend's security advisories: osh (Debian GNU/Linux); openvpn (Mand
riva Linux); kernel and perl (Trustix Secure Linux); and courier (Ubuntu
Linux).
http://nl.internet.com/ct.html?rtr=on&s=1,23d5,1,1z7r,ildk,85jl,7pty

REVENTING BUFFER OVERFLOW EXPLOITS USING THE LINUX DISTRIBUTED SECURITY M
ODULE, PT. 1
"Internet servers (such as Web, email, and ftp servers) have been the tar
get for different kinds of attacks aiming to disable them from providing
services to their respective users. One particular exploit, which has bec
ome almost ubiquitous in the last several years, is the buffer overflow e
xploit..."
http://nl.internet.com/ct.html?rtr=on&s=1,23d5,1,5gjt,65mw,85jl,7pty

DIY TELEPHONY WITH ASTERISK, PART 3
"Today we'll dig into setting up custom hold music, conferencing, and ski
m lightly over faxing and incorporating telephony into your home automati
on system..."
http://nl.internet.com/ct.html?rtr=on&s=1,23d7,1,m7aj,jh3y,85jl,7pty

SECURE CODING IN C AND C++: STRINGS
Strings such as command-line arguments, environment variables, and consol
e input are of special concern in secure programming because they compris
e most of the data exchanged between an end user and a software system.
http://www.net-security.org/news.php?id=9633

WEB APPLICATION FOOTPRINTING & ASSESSMENT WITH MSN SEARCH TRICKS
This paper describes some of the queries that can be run against SEARCH.M
SN in order to fetch important information that would eventually help in
web application assessment.
http://www.net-security.org/news.php?id=9641

VIRUSES: WRAPPING UP THE YEAR
F-Secure published their year-end summary.
http://www.net-security.org/news.php?id=9669

SECURITY BEST PRACTICES FOR C++
This topic contains information on recommended security tools and practic
es. Using these resources and tools doesn't make applications immune from
attack, but it makes successful attacks less likely.
http://www.net-security.org/news.php?id=9673

How and Why Hackers Want to Get Inside Your Machine
If your computer is a fortress, hackers are the interlopers with pointy m
etal hats who charge the gate, scale the walls, or use stolen keys to get
inside. Their mission? To steal your crown jewels or carve graffiti on t
he walls, such as "The king is a weenie." In this sample chapter Andy Wal
ker tells you why they want access to your computer, how they try to gain
access to it, and what you stand to lose if they do. There's also a real
ly exciting section on how to stop them and what to do if one of them suc
ceeds. It's like a medieval video game, but scarily, it's real.
http://www.informit.com/articles/article.asp?p=425380&rl=1

Microsoft Security Assessment Tool: Can It Make Your Organization More Se
cure?
The Microsoft Security Assessment Tool (MSAT) claims to analyze whether y
our existing network security architecture meets some of the common indus
try best practices. Zubair Alexander assesses the assessor, reporting on
the strengths and weaknesses in this free utility.
http://www.informit.com/articles/article.asp?p=431710

The Changing Face of Data Protection
The explosion of corporate data in the 1990s, coupled with new data stora
ge technology such as networked storage, has made the accumulation and ma
nagement of large amounts of data a corporate priority. The ability to pr
otect this data is paramount, and this chapter will give you an idea of h
ow data protection has changed and grown in the past few years.
http://www.informit.com/articles/article.asp?p=422303

The Basic Uses of TCP/IP Route Maps
Route maps are similar to access lists; they both have criteria for match
ing the details of certain packets and an action of permitting or denying
those packets. This chapter explains the basics of Route Maps. Included
are sample exercises to help you practice administration and use of Route
Maps.
http://www.informit.com/articles/article.asp?p=426637

Working for Apples: A Windows Administrator's Guide to Serving Macs
Are you Mac-savvy? Many Windows administrators and technicians have never
had to support Macs on their networks, so the idea of suddenly having a
handful of Mac workstations might seem really challenging. Luckily for yo
u, it's an easier task than you probably think. Ryan Faas gives you a sim
ple guide to supporting Mac workstations and Mac users within your Window
s network.
http://www.informit.com/articles/article.asp?p=430214

Adobe and Macromeda complete merger
http://newsvac.newsforge.com/article.pl?sid=05/12/12/2150209&from=rss
ValourX writes "Adobe has now officially swallowed up Macromedia in an at
tempt to keep both companies alive a little longer in the face of growing
competition from the two companies that you never want to mess with on t
heir own turf: Microsoft and Apple. Both have been quietly threatening Ad
obe and Macromedia for a while, and this merger may be a (probably futile
) effort to fend them off. You just can't compete with companies that mak
e operating systems; they decide that they want to make more money on app
lications like yours, and either you're bought out by them or your produc
ts are history. Microsoft has proved this several times over the years. W
hy does Adobe think that things will be different this time?"

Mozilla issues Firefox alert
http://newsvac.newsforge.com/article.pl?sid=05/12/12/2142211&from=rss
The open source firm has played down a secuity problem with its browser a
nd ruled out the potential of denial-of-service attacks.

MALWARE
Title: Sober worm algorithm cracked by F-Secure
Source: Computerworld
Date Written: 2005-12-09
Date Collected: 2005-12-12
Anti-virus researchers at F-Secure have cracked the pseudo-random algorit
hm used by the Sober worm to calculate new IP addresses to download newer
variants of itself. Sober has been in circulation since October 2003, an
d has kept itself strong by automatically downloading new variants of its
elf to infected machines from website with URLs calculated by a secret al
gorithm. The algorithm is based on the current date, and allows the virus
author to register URLs the Sober worm will use to post updated code. Th
e algorithm calculates the names of fifteen new download sites every four
teen days. Now that the algorithm has been cracked, hosting providers wil
l be able to block the malicious websites from being accessed.
http://www.computerworld.com/securitytopics/security/story/0,10801,106939
,00.html?source=x06

"Ma quale falla. Firefox 1.5 è sicuro!"
Mozilla Foundation ha smentito le notizie circa una vulnerabilità sul p
roprio browser open source. D'accordo anche Secunia: si tratta di un bug
"non critico".
http://www.ziobudda.net/Admin/redir_news.php?id=25544
Also - http://nl.internet.com/ct.html?rtr=on&s=1,23gz,1,818t,h0uz,85j
l,7pty

"Nessus 3.0"
Rilasciata la terza versione di nessus. Il codice è stato riscritto da
capo per ottenere un incremento di performance mostruoso!
http://www.ziobudda.net/Admin/redir_news.php?id=25540

"A quanto pare Macromedia cerca un programmatore Linux"
Come da titolo Macromedia sta cercando un programmatore C/C++/Assembler p
er il porting di di Flash Player 8 su Linux, ma non riesce a trovarlo. So
tto con i Curricula.
http://www.ziobudda.net/Admin/redir_news.php?id=25533

"Online la prima lezione introduttiva ad XML di LinuxHelp"
E' disponibile online e liberamente scaricabile la prima lezione di intro
duzione al linguaggio XML, realizzata da LinuxHelp per un corso tenuto pe
r conto della Provincia di Torino, nell'ambito dei corsi per l'apprendist
ato.
http://www.ziobudda.net/Admin/redir_news.php?id=25560

"Access Point sicuri con OpenBSD e OpenVPN"
Ormai tutti sanno qualcosa sull'insicurezza delle reti wireless 802.11x e
quanto siano vulnerabili anche ai più semplici attacchi. Nell'articolo
che volevamo segnalarvi viene spiegato nei minimi particolari come crear
e un access point wireless "sicuro" basato su OpenBSD che previene access
i non autorizzati alla vostra rete anche attraverso l'uso di pacchetti cr
iptati su un tunnel VPN creato con OpenVPN.
http://www.ziobudda.net/Admin/redir_news.php?id=25557
Also - http://software.newsforge.com/article.pl?sid=05/11/21/175249&fro
m=rss

"Un'altra vulnerabilità per Firefox"
Tutti gli utenti pigri e sbadati farebbero meglio ad aggiornarsi all'ulti
ma versione disponibile del famoso browser Firefox. E' stato infatti reso
pubblico un altro codice sorgente, dopo quello di alcuni giorni fa che s
fruttava un'altra vulnerabilità, per sfruttare una falla presente nei b
rowser precedenti alla versione 1.0.4. L'exploit sfrutta un bug ben conos
ciuto al mondo di Mozilla: Firefox non processa in modo ottimale gli Java
script.
http://www.ziobudda.net/Admin/redir_news.php?id=25554
Also - http://www.techworld.com/security/news/index.cfm?RSS&NewsID=4985

"Configurazione di UBUNTU Breezy (Parte 4. L'ultimo capitolo)"
Quarta ed ultima parte della guida a immagini di RekStorm.org. In questo
ultimo capitolo si tratta: la gestione di utenti, la gestione dei filesys
tem, la configurazione e gestione di servizi, la configurazione di GRUB,
la personalizzazione del Desktop, come utilizzare al meglio software per
il controllo remoto (VNC), l'installazione di KDE 3.5 e quindi di Kubuntu
, Tips & tricks.... il tutto condito con tanti SCREENSHOTS e IMMAGINI...
Da non perdere!
http://www.ziobudda.net/Admin/redir_news.php?id=25551

"Web 2.0: 23 applicazioni web innovative da provare subito"
Dopo aver letto e sentito molto sulle meraviglie del Web 2.0, nell'artico
lo vediamo 23 applicazioni web innovative, per testare subito (e di perso
na!) le novita'. Ovviamente non poteva mancare una nota di precisazione s
ull'utilizzo (abuso?) della terminologia Web 2.0
http://www.ziobudda.net/Admin/redir_news.php?id=25550

PATRIOT ACT II, NESSUNO SCONTO PER INTERNET
Il pacchetto di leggi speciali varato negli USA dopo l'11 settembre sta p
er scadere. L'amministrazione Bush e' decisa a rinnovarlo senza abrogare
le attuali limitazioni alle liberta' che colpiscono gli utenti. Le interc
ettazioni? Un male necessario
URL: http://punto-informatico.it/pi.asp?i=56806

TORVALDS: SEI SVEGLIO? USA KDE
In un accalorato post l'inventore del piu' celebre sistema operativo open
source boccia il progetto GNOME, accusato di sviluppare software tagliat
o su misura per gli stolti. Usate KDE, raccomanda Torvalds
URL: http://punto-informatico.it/pi.asp?i=56816
Also - http://nl.internet.com/ct.html?rtr=on&s=1,23h1,1,inxd,2cyx,85j
l,7pty
Also - http://newsvac.newsforge.com/article.pl?sid=05/12/13/2126215&fro
m=rss

VMWARE PLAYER VIRTUALIZZA FIREFOX
Con il debutto della versione finale del proprio player gratuito di macch
ine virtuali, VMware ha messo a disposizione degli utenti versioni virtua
lizzate di Firefox e altro software open source
URL: http://punto-informatico.it/pi.asp?i=56802

UE, VIA LIBERA ALL'INTERCETTAZIONE DI MASSA
Gli Stati membri potranno conservare i dati delle comunicazioni elettroni
che per combattere qualsiasi cosa, dal terrorismo alla pirateria. Colpo g
obbo delle major. Le spese del giochino le pagheranno i provider e le tel
co
URL: http://punto-informatico.it/pi.asp?i=56831

APACHE GERONIMO DICE AUGH!
L'application server J2EE di Apache Software Foundation e' arrivato alla
prima release matura, la 1.0, ed e' ora pronto a sfidare i numerosi rival
i proprietari e open source
URL: http://punto-informatico.it/pi.asp?i=56849

WINDOWS, ECCO LE PATCH NATALIZIE
Microsoft ha pubblicato due bollettini di sicurezza che sistemano quattro
vulnerabilita' di Internet Explorer, tra cui due molto serie, ed una fal
la di Windows. Rilasciati anche diversi altri aggiornamenti
URL: http://punto-informatico.it/pi.asp?i=56830

** 2005, ANNO DIFFICILE PER LA SICUREZZA INFORMATICA **
Virus per cellulari e smart phone, attacchi phishing, worm, false richies
te di denaro a sfondo benefico e molto altro, per un totale di oltre 150.
000 malware differenti.
>> di Pier Luigi Tolardo
http://www.zeusnews.it/news.php?cod=4491

Un'arma in meno contro il P2P: si arrende Overpeer
Overpeer è, o meglio era, una società con sede a New York la cui miss
ion era quella di rendere la vita difficile agli amanti dello scambio, tr
amite software peer to peer, di opere protette dal diritto di autore.
http://www.alground.com/news/news.php?page=438

Intel studia un nuovo metodo contro i rootkit
I ricercatori della Intel Corporation stanno lavorando per porre freno al
l'incredibile numero di cyber attacker che si è avuto in questi anni. L
a loro scoperta prevede una soluzione hardware. Il progetto, chiamato Sys
tem Integrety Services, è stato creto dal laboratorio Communications Te
chnology della stessa Intel e ha partorito un nuovo e sofisticato metodo
hardware per evitare attacchi malware e altri spiacevoli imprevisti. Cont
inua su:
http://www.tuxjournal.net/news/00407.html

Users inundated with pop-ups
There are many examples where users are now being inundated with pop-up
messages asking them to respond to things they don't know about or don't
understand, and it leads to weaker security overall.
http://www.securityfocus.com/columnists/374

Understanding the TFTP Protocol
Author: Don Parker
Summary: In real life we all have relatives, some distant, some not so di
stant. Sometimes in the networking world you have the same parallel. In t
his article we will look at FTP’s cousin, TFTP, or Trivial File Transfe
r Protocol. They both share the same properties, while also having some k
ey differences.
Link: http://www.WindowsNetworking.com/articles_tutorials/Understanding-T
FTP-Protocol.html

Will upgrading to 64 Bit Windows make you More Secure?
Author: Deb Shinder
Summary: Both Windows Server 2003 and Windows XP now come in 64 bit versi
ons, to run on the 64 bit processors made by Intel and AMD. 64 bit hardwa
re and operating systems offer some big advantages over the currently mor
e commonplace 32 bit systems, including the ability to handle more physic
al memory and big performance boosts for applications that are written fo
r the 64 bit system.
Link: http://www.WindowSecurity.com/articles/64-Bit-Windows-More-Secure.h
tml

ADVISORIES, DECEMBER 12, 2005
Today's security advisories: curl (Debian GNU/Linux); curl (Fedora Core);
phpMyAdmin, Openswan, and IPsec-Tools (Gentoo Linux); and perl, xpdf, cu
psys, tetex-bin, kdegraphics, koffice, and curl (Ubuntu Linux).
http://nl.internet.com/ct.html?rtr=on&s=1,23gz,1,k6e,eg7u,85jl,7pty

ADVISORIES, DECEMBER 13, 2005
Today's security advisories: ethereal (Debian GNU/Linux); Openswan and IP
sec-Tools (Gentoo Linux); mozilla-thunderbird (Mandriva Linux); and zope2
.8 (Ubuntu Linux).
http://nl.internet.com/ct.html?rtr=on&s=1,23m0,1,agcj,gcwg,85jl,7pty

OPEN-SOURCE ANTIVIRUS TECH MAY GET COMMERCIAL HELP
"To plug a hole in its intrusion-prevention product, eEye Digital Securit
y may adopt the Clam AntiVirus project and improve the open-source softwa
re..."
http://nl.internet.com/ct.html?rtr=on&s=1,23gz,1,i6da,dexg,85jl,7pty

OS/2 LIVES!
"With all all the talk around here lately of MacOS vs. Linux vs. Windows,
it got me thinking lately about my old Microsoft Alternative OS Of Choic
e--OS/2..."
http://nl.internet.com/ct.html?rtr=on&s=1,23h1,1,ev1m,b4tw,85jl,7pty

CLI MAGIC: DAILY ALIASES
"One thing that distinguishes the GNU versions from the classic Unix vers
ions is that the GNU programs are rife with additional options..."
http://nl.internet.com/ct.html?rtr=on&s=1,23h1,1,b8zq,1aeq,85jl,7pty

KERNELTRAP: ANONYMOUS CONTRIBUTIONS
"Back in May of 2004 Linux creator Linus Torvalds suggested a simple proc
ess for tracking where patches originate from and the path they follow to
ultimately be merged into the Linux kernel..."
http://nl.internet.com/ct.html?rtr=on&s=1,23ly,1,bh11,hrrj,85jl,7pty

KERNELTRAP: DROPPING SUPPORT FOR GCC 2.95
"Four months ago a debate on the lkml suggested that support for GCC 2.95
would be around for a long time, but a more recent thread suggests other
wise..."
http://nl.internet.com/ct.html?rtr=on&s=1,23ly,1,mfgp,brgz,85jl,7pty

BACKUP THUNDERBIRD'S EMAIL
"Mozilla's Thunderbird is an excellent all-round email client, and one wh
ich offers significant advantages in security and reliability over Micros
oft's Outlook..."
http://nl.internet.com/ct.html?rtr=on&s=1,23ly,1,k5rh,7bej,85jl,7pty

How Many Voice Callers Fit on the Head of an Access Point?
Matthew Gast develops a simple model to determine the maximum theoretical
capacity of an access point to carry voice calls.
http://www.oreillynet.com/pub/a/etel/2005/12/13/how-many-voice-callers-fi
t-on-the-head-of-an-access-point.html

Managing MySQL on Mac OS X
There are myriad ways to control and manipulate information on a MySQL se
rver -- some are stand-alone GUI apps, some are web-based, and of course
the venerable (and powerful) command-line option is alwayss available. Ro
bert Daeley shows some of the most useful tools.
http://www.macdevcenter.com/pub/a/mac/2005/12/13/mysql.html

Identifying Essential Windows Services: Part 2
In Part 1 of this series, Mitch Tulloch, author of Windows Server Hacks,
showed you how to identify which basic server services are essential, and
which can be turned off. In this second part, he shows you additional se
rvices for servers configured with specific roles.
http://www.windowsdevcenter.com/pub/a/windows/2005/12/13/identifying-esse
ntial-windows-services-2.html

Bug Trackers: Do They Really All Suck?
The most complained-about development tool is often the bug tracking syst
em. Matthew B. Doar, author of Practical Development Environments, offers
advice on what to do about some of the most common frustrations with bug
trackers, such as tracking bugs in multiple releases; tracking files aff
ected by a bug; and more.
http://www.oreillynet.com/pub/a/network/2005/12/09/do-bug-trackers-all-su
ck.html

Through Project Looking Glass with Hideya Kawahara
3D has taken over video gaming. When will it take over mundane computing
areas such as file managers, word processors, and desktop environments? M
aybe soon, if Hideya Kawahara and the Project Looking Glass team have the
ir way. John Littler explores the ideas, implementations, and possibiliti
es of 3D interfaces in this interview.
http://www.linuxdevcenter.com/pub/a/linux/2005/12/08/project_looking_glas
s.html

Testing Files and Test Modules
Perl hackers work with files all day long, creating, renaming, updating,
editing, and munging them. Do you know your file-manipulation code works,
though? That's why Phil Crow wrote Test::Files--to gain confidence and p
ractice good coding. Here's how it works and how he tested a test module.
http://www.perl.com/pub/a/2005/12/08/test_files.html

Fixing Your Windows Partition
What will happen if you've set up your XP system with a too-small C: driv
e, installed a new drive, and reassigned space? Mayhem sometimes ensues.
For details, and a fix, check out advice from Chris Josephes.
http://www.windowsdevcenter.com/pub/wlg/8594

MALWARE
Title: Fake virus phishing scam targets McAfee
Source: Federal Computer Week
Date Written: 2005-12-14
Date Collected: 2005-12-14
Phishing emails pretending to contain a warning from McAfee describes a n
onexistent virus called Kongo31.XRW, and links to a Canadian-hosted websi
te masquerading as an official McAfee site. The link downloads a file cal
led ak26xrw-patch-installer- win32.exe that carries Trojan-Downloader.Win
32.Hanlo.h. McAfee does publish virus alerts via links in emails, so user
s are cautioned to only trust email from AVERT_Advisory@avertlabs.com and
subscriptions@mcafee.com. http://www.zdnet.com.au/news/software/soa/
Fake_virus_phishing_scam_targets_McAfee/0,2000061733,39227707,00.htm

VULNERABILITIES & EXPLOITS
Title: Opera struck by bizarre hidden hole
Source: Techworld
Date Written: 2005-12-14
Date Collected: 2005-12-14
Secunia had advised users of the Opera web browser of a mouse-click bug w
hich attackers could exploit to trick users into running malicious code.
The bug can create a file download dialog box that is still sensitive to
mouse-clicks beneath a new window. Since the dialog opens in a predictabl
e place, a link on the new window could lead users to unknowingly click '
Run' on the invisible dialog box. Secunia notified Opera in June and the
bug was fixed in July, though details were kept secret until Microsoft co
uld fix a similar bug in the Internet Explorer.
http://www.techworld.com/security/news/index.cfm?RSS&NewsID=5000

VULNERABILITIES & EXPLOITS
Title: Critical Explorer hole patched
Source: Techworld
Date Written: 2005-12-14
Date Collected: 2005-12-14
Microsoft's December 2005 patch release includes four critical patches fo
r Internet Explorer. One is a critical JavaScript flaw that could allow a
ttackers to run malicious code, but would require the user to visit a mal
icious website first. An exploit is already circulating in the wild. The
December patches also include an 'important' fix for the Windows 2000 ker
nel and an update for the Microsoft Malicious Software Removal Tool to re
move Sony's XCP rootkit.
http://www.techworld.com/security/news/index.cfm?RSS&NewsID=4994

Rootkit Guru: Win 9x/ME Are Hopeless
http://newsvac.newsforge.com/article.pl?sid=05/12/13/2121235&from=rss
zanek writes "The author of the most famous and dangerous Windows rootkit
, Hacker Defender, explains why he refuses to write attack code for Windo
ws 95, 98 or Millennium. In a nutshell, he told Email Battles it's just n
ot fair. Those operating systems simply can't be protected."

"Conferenza Rettori Italiani boicotta Linux"
Con un recente comunicato stampa, la CRUI ha annunciato un programma in s
tretto accordo con Microsoft per la "diffusione dei più innovativi stru
menti informatici per tutti gli studenti universitari", annunciando tra l
'altro forti sconti sui prodotti. Riteniamo questo atteggiamento della CR
UI lesivo del pluralismo informatico. Aiutaci a sostenere il nostro appel
lo. clicca qui e scopri come...
http://www.ziobudda.net/Admin/redir_news.php?id=25587

"Kernel 2.6.14.4"
Rilasciata la nuova release stabile del kernel linux arrivato alla versio
ne 2.6.14.4. Rimando al changelog per le novità e i bugfix. Buona compi
lazione.
http://www.ziobudda.net/Admin/redir_news.php?id=25585

"Hacking. Linux Sul Palm Treo 650"
Riporto: "Forse motivato dalla recente notizia che la Palm utilizzera' il
sistema operativo mobile della Microsoft, l'hacker Matthew Mastracci e'
riuscito a far girare GNU/Linux su un Treo."
http://www.ziobudda.net/Admin/redir_news.php?id=25584

CHI BOICOTTA LA BANDA LARGA ELETTRICA?
La tecnologia c'e', in altri Paesi migliaia di utenti possono avere Inter
net veloce anche se non coperti da ADSL. In Italia solo nel 2006 le prime
offerte commerciali. A frenare il tutto e' Enel o complesse questioni no
rmative?
URL: http://punto-informatico.it/pi.asp?i=56885

WINXP E 2003 LAUREATI IN SICUREZZA
I due sistemi operativi di Microsoft hanno ottenuto una certificazione in
ternazionale, chiamata EAL4+, che attesa la conformita' dei sistemi infor
matici ad un insieme di requisiti di sicurezza
URL: http://punto-informatico.it/pi.asp?i=56870

IL P2P SI MUOVE CONTRO LA RIAA
Pubblicato un nuovo software pensato per contrastare le attivita' di moni
toraggio dei network di scambio attivate dalle major. Al grido di: Combat
ti il cartello del copyright
URL: http://punto-informatico.it/pi.asp?i=56865

SALTA LA CARTA ID ELETTRONICA?
In una nota il ministro all'Innovazione ipotizza lo scardinamento del pro
getto. La causa? Un comma del maxiemendamento alla Finanziaria che - dice
- snatura il progetto
URL: http://punto-informatico.it/pi.asp?i=56867

** I VIRUS PIU' BIZZARRI DEL 2005 **
Gli aneddoti più curiosi dei codici maligni apparsi quest'anno. Il più
ingenuo, il più molesto, il più competente...
http://www.zeusnews.it/news.php?cod=4495

** QUANDO IL PREGIUDIZIO DI MASSA DIVENTA WIKIPEDIA **
Una diffamazione nei confronti di un anziano signore americano è rimast
a per mesi sull'enciclopedia più grande del mondo. E' subito polemica.
>> di Valerio Di Stefano
http://www.zeusnews.it/news.php?cod=4496

isCOBOL: il COBOL cambia pelle
Il COBOL e` un linguaggio di programmazione che risale al 1960, ma nonost
ante l'eta`, continua a essere usato largamente. Il suo nome e` l'acronim
o di COmmon Business Oriented Language e il motivo per cui e` ancora oggi
cosi` diffuso e` dovuto principalmente al fatto di essere stato usato ne
i mainframe delle grosse aziende grazie al suo orientamento alla risoluzi
one di problemi di tipo gestionale e amministrativo.
http://www.siforge.org/articles/2005/12/15-ilCobolCambiaPelle.html

Stealth text: l'sms che si autodistrugge in 40 secondi
Questo sms si autodistruggerà fra 40 secondi L'Inghilterra lancia un nu
ovo servizio: l'sms che scompare. Proprio così. La società Staellium
ha avuto l'idea di creare dei messaggini sms che appena letti si autodist
ruggono in modo da evitare letture da parte di persone indesiderate.
http://www.alground.com/news/news.php?page=442

Access Controls: What is it and how can it be undermined?
Author: Don Parker
Summary: We have stoplights on city streets, and locks on the doors of ou
r homes. What these things have in common is that they are access control
s. The world of computer security is very much the same in that it employ
s various ways to limit access. In this article we will cover several one
s and discuss their usage.
Link: http://www.WindowSecurity.com/articles/Access-Controls-What-is-it-h
ow-undermined.html

Storage Monitoring and Reporting
Author: Mitch Tulloch
Summary: This article demonstrates the new storage monitoring and reporti
ng features of Windows Server 2003 R2. Using these new capabilities, admi
nistrators can generate reports for quota and file screening activity and
monitor disk space on critical servers and receive email notifications o
n which are approaching their limit.
Link: http://www.WindowsNetworking.com/articles_tutorials/Storage-Monitor
ing-Reporting.html

Filmato sul Trusted Computing
I problemi legati al Trusted Computing possono risultare di difficile com
prensione per chi non abbia sufficienti conoscenze informatiche. Per ques
to motivo è stato realizzato un breve filmato che, attraverso un'animaz
ione, è in grado spiegare il punto di vista di chi vede in questa tecno
logia uno strumento pericoloso per la salvaguardia della libertà di esp
ressione. Lo spot è stato realizzato da LAFKON e doppiato in lingua it
aliana dal team di no1984.org. La sua diffusione è incoraggiata, nel ri
spetto dei termini della licenza Creative Commons sotto la quale viene d
istribuito.
http://www.no1984.org/Trusted_Computing_movie

Securing ASP.Net Applications
Read how to deal with security and authentication issues in ASP.Net appli
cations.
http://www.aspfree.com/c/a/ASP.NET/Securing-ASPNet-Applications/

ADVISORIES, DECEMBER 14, 2005
Today's security advisories: kernel-source-2.4.27 and kernel-source-2.6.8
(Debian GNU/Linux); kernel, cups, perl, and gpdf (Fedora Core); Xmail (G
entoo Linux); ethereal, xine-lib, xmovie, mplayer, ffmpeg, and gstreamer-
ffmpeg (Mandriva Linux); and php4 and php5 (SUSE Linux)
http://nl.internet.com/ct.html?rtr=on&s=1,23py,1,5296,1fzq,85jl,7pty

INSTALLATION FACE OFF: LINUX OR WINDOWS
"The XP interface was easier to work with but had many more screens to wo
rk through than the Ubuntu Linux..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,fw4t,k552,85jl,7pty

OPEN THE DAMN SOURCE!
"I'm not saying that building model trains is meaningful; in fact, I thin
k it's ridiculous and useless. But what I think is even more amazing is t
hat none of them work together..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,i1pu,d4v8,85jl,7pty

FREE SOFTWARE MAGAZINE: CODE SIGNING SYSTEMS
"How to manage digital certificates, Software Publishing Certificates and
private keys for code signing..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,t6z,2zam,85jl,7pty

MEMORY MANAGEMENT BY THE LINUX KERNEL: #2
"Now we know how the kernel manages memory from the first article, let's
have a look how the kernel allows you to allocate and free memory inside
the kernel..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,m2ps,gso6,85jl,7pty

IBM OPENS HIGH-OCTANE FILE SYSTEM
"With the popularity of Linux clusters booming, IBM has opened up the sou
rce code to its General Parallel File System (GPFS), so it can run on oth
er vendors' hardware..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,2bda,8ahv,85jl,7pty

THUNDERBIRD 1.5 GETS READY TO FLY
"Version 1.5 of the Mozilla Foundation's e-mail client brings with it a u
seful set of new features, without the annoying bugs of the earlier versi
on..."
http://nl.internet.com/ct.html?rtr=on&s=1,23q0,1,91t4,khno,85jl,7pty

MALWARE
Title: Roundup: 2005's 'curious malicious code'
Source: SearchSecurity
Date Written: 2005-12-15
Date Collected: 2005-12-15
Panda Software has released its list of 2005's most 'curious' malwares. T
he list includes such viruses as Assiral-A, a copycat of 2000's LoveLette
r virus. Crowt-A delivered CNN headlines, Elitper-D disrupted 90 applicat
ions, including Word and Excel and Zar-A and Downloader-ENC exploited cha
ritable impulses after the Indian Ocean tsunami and Hurricane Katrina. Ro
na-A kept highly organized logs of its malicious activity, including a ti
mestamp of its installation. The list also includes social engineering at
tacks and viruses that targeted gaming platforms.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci11
52377,00.html

VULNERABILITIES & EXPLOITS
Title: Microsoft's security patches hit snag
Source: Techworld
Date Written: 2005-12-15
Date Collected: 2005-12-15
Microsoft reports that an error in its most recent security patch appears
to be changing the status of software updates previously approved by sys
admins who use Software Update Service (SUS). SUS is a software that allo
ws sysadmins to manage which patches are tested and approved to be instal
led on their network. A message sent by Microsoft details several work-ar
ounds for this issue.
http://www.techworld.com/security/news/index.cfm?RSS&NewsID=5009

VULNERABILITIES & EXPLOITS
Title: Flaws reported in Trend Micro ServerProtect
Source: SearchSecurity
Date Written: 2005-12-15
Date Collected: 2005-12-15
Several flaws have been discovered in Trend Micro Inc.'s ServerProtect pr
oducts, according to the iDefense division of VeriSign. Among the possibl
e exploits are denial of service attacks and the ability to run malicious
code. As a temporary work-around, iDefense recommends that vulnerable pa
rties "employ firewalls, access control lists or other TCP/UDP restrictio
n mechanisms to limit access to vulnerable systems on TCP port 5005."
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci11
52371,00.html

Securely setting up a Linux PC
http://newsvac.newsforge.com/article.pl?sid=05/12/16/0126204&from=rss
Linux Internet connection made easy with a step by step guide to a secure
configuration.

"Processo Civile Telematico Ai Nastri di Partenza"
Si terra' il prossimo 21 dicembre, nelle aule di Corte di Assise dei trib
unali di Foggia e di Lucera, la conferenza di presentazione del Polisweb
- Processo Civile Telematico, organizzata dagli Ordini degli Avvocati di
Foggia e di Lucera, i Tribunali di Foggia e di Lucera, il Ministero della
Giustizia CISIA di Bari, con la partecipazione del GL-OS Gruppo di Lavor
o Open Source presso gli Ordini degli Avvocati di Foggia e di Lucera e la
Scuola Forense di Capitanata.
http://www.ziobudda.net/Admin/redir_news.php?id=25594

"DRM sui filmati di MTV.COM"
Che brutta sopresa! Sul sito di mtv, cliccando in basso a destra sul film
atino flash che rimanda alla sezione "movies" ho trovato una pagina con u
n messaggino alquanto inquietante. Fine di linux dul desktop?
http://www.ziobudda.net/Admin/redir_news.php?id=25598

"Diffondere i propri feeds RSS nella rete"
Recensioni di FeedBurner, strumento on line che automatizza la gestione,
la manutenzione e la diffusione dei feeds RSS e monitora i risultati.
http://www.ziobudda.net/Admin/redir_news.php?id=25597

"IBM rende Open Source il suo filesystem GPFS"
IBM ha reso Open Source e quindi liberamente diponibile il suo GPFS file
system, utilizzato per l'high performance supercomputing. Inoltre ha inca
ricato la Networx di vendere e sviluppare soluzioni per tale sistema.
http://www.ziobudda.net/Admin/redir_news.php?id=25596

"Sun rilascia il codice x far girare le app Linux su Solaris"
Sun ha rilasciato un software il suo sistema Sun Solaris per poter far gi
rare le applicazioni GNU/Linux su tale piattaforma. Il software, chiamato
originariamente Project janus ora è stato rinominato in BrandZ.
http://www.ziobudda.net/Admin/redir_news.php?id=25623

ADVISORIES, DECEMBER 15, 2005
Today's security advisories: Ethereal (Gentoo Linux), kernel (SUSE Linux)
, and ffmpeg (Ubuntu Linux).
http://nl.internet.com/ct.html?rtr=on&s=1,23ud,1,i79,ktzj,85jl,7pty

WARNING TONED DOWN ON PERL APP FLAWS
"The Perl Foundation has toned down a warning on a type of vulnerability
commonly found in applications written in the Perl programming language..
."
http://nl.internet.com/ct.html?rtr=on&s=1,23ud,1,d9n8,cqdu,85jl,7pty
Also - http://news.com.com/Warning+toned+down+on+Perl+app+flaws/2100-7349
_3-5997378.html?part=rss&tag=5997378&subj=news

HOW MUCH MEMORY IS ENOUGH MEMORY ?
"I remember the time around 5 years back when I had a system which had on
ly 32 MB RAM..."
http://nl.internet.com/ct.html?rtr=on&s=1,23uf,1,fnve,k3lt,85jl,7pty

THE PUSH FOR CLUSTERING
"This article provides details, direct from the Apache Geronimo clusterin
g effort team leader, Jeff Genender, on the clustering technologies the t
eam is considering implementing...
http://nl.internet.com/ct.html?rtr=on&s=1,23uf,1,kv64,1zjb,85jl,7pty

MALWARE
Title: Trio of trouble: Malcode targets Windows, IM users
Source: Search Security
Date Written: 2005-12-16
Date Collected: 2005-12-16
Three malwares have attracted the notice of security companies. Symantec
has issued a warning against Dasher-B, which spreads through a memory cor
ruption vulnerability in the Microsoft Windows Distributed Transaction Co
ordinator (MSDTC). Dasher connects to an FTP server to download a keylogg
er and rootkit; one server has over 3,000 connections. Panda Labs has iss
ued a warning against the latest Bagle variant, Bagle-FU, which is spread
ing over e-mail. Akonix warns of a new trojan, Banbra-BOK, which spreads
via instant messages and steals passwords.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci11
52645,00.html

Writing more HTML-friendly PHP
http://newsvac.newsforge.com/article.pl?sid=05/12/16/1930259&from=rss
Anonymous Reader writes "Any programmer will tell you how important it is
to maintain readable code. Naturally, this is all easier said than done.
That's never truer than when your code consists of two different languag
es intertwined like PHP and HTML. Fortunately, with PHP there is more tha
n one way to code a cat."

Sessionlimit: Rate Session Limiting Capabilities For OpenBSD's PF
Sessionlimit is a tool designed to interact with OpenBSD's PF in order to
contain the intruders activities after a compromise of a honeypot. It ca
n detect when a scan or DoS is initiated from a honeypot -- once the acti
vity is detected a rule is inserted to PF in order to block the outgoing
traffic. This rule is removed after sspecified time.
http://www.astalavista.com/index.php?section=directory&linkid=5750

SQL injection. Are your web applications vulnerable?
The objective of this paper is to focus the professional security communi
ty on the techniques that can be used to take advantage of a web applicat
ion that is vulnerable to SQL injection, and to make clear the correct me
chanisms that should be put in place to protect against SQL injection and
input validation problems in general. Readers should have a basic unders
tanding of how databases work and how SQL is used to access them.
http://www.astalavista.com/index.php?section=directory&linkid=5761

Hardening Windows NT
Is Windows secure? Can Windows be secure? These are two questions which a
re often asked by many people. To answer the first question, Windows with
its default settings out of the box is by far the most insecure operatin
g system there is (OpenBSD being the most secure.) One of the reasons Win
dows is often said to be insecure is because it is attacked the most, thi
s is generally because Windows is targeted more because it is more popula
r. Script Kiddies, as well as there botnets are constantly scanning the i
nternet looking for windows machines which are set up poorly and/or do no
t have the latest security patches. Can Windows be secured? The answer is
yes, Windows can be secured with the right knowledge and tools. In this
day and age computer security is extremely important, often people do not
know how to secure there machines and that is why they are being attacke
d, with the help of this guide you will be able to lock down your windows
machine.
http://www.astalavista.com/index.php?section=directory&linkid=5763

The SASSER Event : History and Implications
This paper is not an exhaustive technical guide on how SASSER operates an
d how to deal with it. Rather, it presents the said malware family as an
event that has a unique context. Hence, this study is primarily concerned
with SASSER’s behavior in relation to other chronological events and o
ther malware families.
http://www.astalavista.com/index.php?section=directory&linkid=5772

BIOS Information Leakage
Whitepaper discussing information leakage and password extraction from a
BIOS.
http://www.astalavista.com/index.php?section=directory&linkid=5774

Low Cost Technique for Intrusion Detection
This paper will address a technique that could be used by small to medium
sized companies to address the needs of an Intrusion Detection process.
The paper assumes the budget and staff for such security mitigation is li
ttle to non-existent.
http://www.astalavista.com/index.php?section=directory&linkid=5775

Hardening the Internet
The Internet was designed 35 years ago as a robust, distributed network w
ithout centralized control in order to provide resiliency against a multi
tude of attacks, including nuclear war. Globally, the Internet has been s
ubstantially built out and built up throughout the last decade. The Inter
net is more than just a network of routers. Across the world, it has a ne
twork of computers, ranging from high-end computing environments and serv
er farms in offices to enduser, personal computers in households. This di
stributed network of systems has proven resilient, especially to point fa
ilures such as the 9/11 terrorist attacks, natural disasters, or backhoes.
http://www.astalavista.com/index.php?section=directory&linkid=5777

The future of HTML, Part 1: WHATWG
In this two-part series, Edd Dumbill examines the various ways forward fo
r HTML that Web authors, browser developers, and standards bodies propose
. This series covers the incremental approach embodied by the WHATWG spec
ifications and the radical cleanup of XHTML proposed by the W3C. Addition
ally, the author gives an overview of the W3C's new Rich Client Activity.
Here in Part 1, Edd focuses primarily on two specifications being develo
ped by WHATWG: Web Applications 1.0 (HTML5) and Web Forms 2.0.
http://www-128.ibm.com/developerworks/library/x-futhtml1/?ca=dgr-lnxw01
FutureHTML

Forensic Analysis of Malcode. Step by Step
I’m going to step you through the process of dissecting a malcode sampl
e using tools and techniques that are commonly used by forensic teams. Ke
ep in mind that at the time of this writing there are no set standards in
forensics. This means that you may find other forensic teams doing thing
s differently but rest assured that the techniques I’m about to show yo
u are used by the top minds in the discipline, including myself.
http://www.antionline.com/showthread.php?threadid=272469&pagenumber=1
#post876218

Demystifying Denial-Of-Service attacks, part one
Demystifying Denial-Of-Service attacks, part one By Abhishek Singh, CISSP
This paper provides an introduction to Denial of Service (DoS) attacks,
their methodologies, common prevention techniques, and how they differ fr
om Distributed Denial of Service (DDoS) Attacks. This article is intended
to be a broad overview for the beginner or intermediate-level administra
tor on the different types of DoS attacks.
http://www.securityfocus.com/infocus/1853

Howto Make Your Own Copy-Protected CD with Passive Protection
Here’s a great gift idea just in time for the holidays: Make your frien
ds and relatives their very own copy-protected CDs using the same industr
ial-grade passive protection technology built into XCP and Macrovision di
scs.
http://www.freedom-to-tinker.com/?p=946

g00d reading! 'n' bye
Security News MainTainer:

The Jackal a.k.a. jAcKallO < jackal [at] capitanlug.it >

(AreaSessantuno Inside) / (SpiPPolatori Collaborator)
(HackerAlliance Member) / (Socio fondatore del CapitanLUG.iT)
(Daily DisInfo CreaTor & MainTainer) / (Security News MainTainer)