| |
 |
Mittwoch, 29. Januar 2003 |
Security company breaks with CERT over disclosure. The dispute highlights concerns about how the government-sponsored Internet security reporting center passes vulnerability information to third parties. [Computerworld News]
Stupid, stupid, stupid ... disclose does not mean you have to publish a working exploit! If you do not disclose a vulnerability, people can only find out about it the hard way!
11:24:34 PM  
|
|
Internet Worm Unearths New Holes [SecurityFocus]
"While similar in many ways to earlier worms, Sapphire raises new questions about the pace at which companies and government agencies are linking critical networks and computer systems to the Internet, often without a clear understanding of the risks. "
9:05:22 PM
|
|
The Case of Slammer and the Broken Patching Process. Though it could have been worse, the Slammer worm that crippled networks last weekend at a pace of 200,000 to 300,000 attacks per hour really shouldn't have been as big or as widespread as it was. Microsoft had discovered the vulnerability in its SQL Server 2000 software back in July and had issued a patch for it. [osOpinion]
7:38:58 PM
|
|
9-Digit 'Social' Overused as ID. For many American companies and universities, it's common practice to use Social Security numbers as unique identifiers. But growing concerns over identity theft are pressuring state legislators to limit the practice. By Joanna Glasner. [Wired News]
12:05:43 PM
|
|
Symantec's 'Submit a Deal' Flawed. Software giant Symantec's failure to secure a portion of its corporate site leaves an online database of acquisitions proposals exposed, including one from longtime industry critic Vmyths. By Brian McWilliams. [Wired News]
12:05:02 PM
|
|
© Copyright 2003 cipher.
Mac and the Mac logo are trademarks of Apple Computer, Inc., registered in the U.S. and other countries.
The Made on a Mac Badge is a trademark of Apple Computer, Inc., used with permission.
|
|
