Thursday, December 11, 2003

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Profits, revenue up for Adobe. The software maker reports record revenue and income for its fourth quarter, boosted by PDF-related sales and by strong growth in its publishing tools.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Obituary: John Sidgmore, Internet Visionary (Reuters). Reuters - John Sidgmore, who pioneered commercial Internet access in the late 1980s and later took the helm of MCI after the long-distance company's $11 billion accounting scandal emerged, died on Thursday of cancer.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
3.  Largest Citywide Wi-Fi Deployment
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
4.  Wording on software and IPR reflects tough battle. GENEVA - The reality of the World Summit on the Information Society here in Geneva is not just about bringing computers and Internet access to the poor. It's also about making money from selling hardware, software and services. That partly explains the long and often heated debate over two particularly thorny issues: open software and intellectual property rights, or IPR.
5.  Court approves CA's shareholder suits settlement. NEW YORK - A federal court has approved Computer Associates International Inc.'s (CA's) plans to settle all outstanding litigation about its often-questioned past accounting practices, the company said Thursday.
6.  Caveo enters SSL VPN market - Infoworld Staff. Caveo Technology Group entered the Secure Socket Layer virtual private network (SSL VPN) market Wednesday with a security appliance that leverages technology developed by Sun Microsystems and others.
7.  Red Hat founder sees irony in SCO lawsuit. Though the company he founded has been drawn into a legal dispute between The SCO Group Inc. and IBM Corp., former Red Hat Inc. Chief Executive Officer (CEO) Bob Young has not had much to say about the SCO dispute. At least, that was the case until Wednesday, when Young published an open letter to SCO CEO Darl McBride criticizing him for his management of SCO and countering McBride's recent claims that the open source community is attacking intellectual property laws in Europe and the U.S.
8.  Relief not expected in US, EU antispam laws. It's a no-brainer: People hate spam and politicians in the U.S. and Europe were shrewd enough this year to respond to their constituents' growing frustration over the increasing barrage of unwanted e-mail with antispam legislation. But will the new laws really be able to thwart junk e-mail?
9.  Offshore outsourcing: Little effect on US jobs?. WASHINGTON - The trend toward U.S. IT and manufacturing companies outsourcing jobs to other countries has so far had little effect on the overall U.S. job market, supporters of offshore outsourcing and some economists argued Thursday, but others predicted the national debate over the issue will get hotter as more jobs move.
10.  Bill Gates to address RSA Conference. Microsoft Corp. Chairman and Chief Software Architect Bill Gates will address the RSA Conference 2004 in February.
11.  Microsoft readies Windows XP Service Pack 2 beta. Microsoft Corp. is gearing up for the first beta test of a set of updates for Windows XP designed to bolster the operating system's security and add features such as support for the latest version of Bluetooth and a new wireless LAN client.
12.  CSC, IRS blasted for IT project work. A report criticizing an ongoing IT modernization effort at the U.S. Internal Revenue Service (IRS) offers a peek into a properly planned project marred by poor execution.
13.  Electronic-voting security scrutinized at symposium. GAITHERSBURG, Md. - With the 2004 U.S. presidential election looming, election officials from around the U.S. joined computer scientists, voting machine vendors and others on Wednesday and Thursday to air growing concerns -- and some intense disagreements -- about the security and reliability of electronic-voting systems.
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
14.  Relief not expected in US, EU antispam laws. It's a no-brainer: People hate spam and politicians in the U.S. and Europe were shrewd enough this year to respond to their constituents' growing frustration over the increasing barrage of unwanted e-mail with antispam legislation. But will the new laws really be able to thwart junk e-mail?
15.  Bill Gates to address RSA Conference. Microsoft Corp. Chairman and Chief Software Architect Bill Gates will address the RSA Conference 2004 in February.
16.  Electronic-voting security scrutinized at symposium. GAITHERSBURG, Md. - With the 2004 U.S. presidential election looming, election officials from around the U.S. joined computer scientists, voting machine vendors and others on Wednesday and Thursday to air growing concerns -- and some intense disagreements -- about the security and reliability of electronic-voting systems.
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
17.  News: Two facing felony charges for running spamming operation. The Associated Press By Derrill Holly
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
18.  Wright Brothers the Wrong Guys?. It's the centennial of the famous flight at Kitty Hawk -- but was it the first airplane flight in history? A lot of Brazilians will give you an argument that it was their man who went airborne first.
19.  Rift Over Global Info Control. Developing countries resent what they see as American dominance over information technology. They'd like to see the Internet placed under U.N. control. The United States and its industrialized allies disagree.
20.  Company Fights for Pop-Up Rights. D-Squared claims its intrusive ads, which exploit new Windows technology to bombard PC users with unwanted messages, are protected free speech. The FTC calls the practice 'high-tech extortion.'
21.  Kofi Annan: Keep Media Free!. U.N. Secretary-General Kofi Annan urges World Summit on the Information Society participants to affirm media freedoms and protect the public's right to stay informed.
22.  U.N. Balks at Cloning Ban. The United Nations postpones a decision on cloning for a year instead of banning the procedure outright. Stem-cell researchers, who believe the science will lead to medical treatments, hope the year will be fruitful. By Kristen Philipkoski.
23.  Games, Movies Tie the Knot. It was a marriage that seemed inevitable: Movies and video games. Where there's money, there will be agents, and it's the Hollywood agents that finally got the two together. By John Gaudiosi.
24.  These Squirrels Are Super Cool. The arctic ground squirrel can lower its body temperature to that of a popsicle. If scientists can figure out how, hibernating space flight and longer shelf life for transplant organs may be possible. By Louise Knapp.
25.  Whimsy for Your Special Nerd. Looking for an alternative to ubiquitous mall stores that all carry the same crap? Check out the Wired News anti-mall gift guide. By Kristen Philipkoski.
26.  Apple Store: Chain of Devotion. Gary Allen is nuts about Apple Stores. So if you've memorized the blueprints and know the surveillance features like the back of your hand, a flight to Tokyo just to walk into the newest store doesn't seem abnormal. By Leander Kahney.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
27.  Symantec's Security Software to Ship with Fujitsu Notebooks
28.  Web Security Chief Has Local Tech Roots
29.  Certicom quarterly net jumps to $22.3M US on $24.9M U.S. security deal
30.  SCO Claims Serious Damage In DoS Attack

8:28:06 PM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Cape Clear launches data transport tool
2.  Attack on SCO's servers intensifies. A day-old denial-of-service attack on the Web server of the controversial SCO Group has been expanded to assault the company's mail and file servers, SCO's top network administrator says.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  Two Men Charged Under Va. Anti-Spam Law (AP). AP - Two North Carolina men were indicted for violating the state's junk e-mail law by sending thousands of e-mail pitches for investments, software and other products, in what prosecutors said was the nation's first felony charges for unsolicited e-mail.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  Police and Lawyers Love E-ZPass
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
5.  Vulnerabilities: FuzzyMonkey My Photo Gallery Unauthorized Access Vulnerability. My Photo Gallery is a web based photo gallery written in Perl.

A vulnerability has been reported to be present in the software that may allow an attacker to gain access ...
6.  Vulnerabilities: Chris Travers Hermes Unspecified File Include Vulnerability. Hermes is a web based application that is designed to provide a rapid application development framework for business tools including CRM. Hermes in written in PHP.

A vu...
7.  Vulnerabilities: NeoStats For Unreal IRCD Privilege Escalation Vulnerability. NeoStats is an application that is designed to provide statistical services for IRC servers. NeoStats also provides support for loading and unloading modules. Additionall...
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
8.  HP taps the taxman to knock IBM and Dell. Stuck in the middle with you
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
9.  How to Hold Moonbeam in Your Hand. Physicists find a way to hold light and its energy in its tracks -- if only for a fraction of a second. The ability to harness light particles to store and process data could aid the still distant goal of quantum computers.
10.  World's Tech Have-Nots Confer. Poorer nations want their share of the information technology pie, and a three-day summit in Geneva is designed to point the way. But richer nations, conspicuous by their absence, don't appear to give a damn.
11.  Shipshape, From Stem to Sperm. Researchers have turned mouse stem cells into sperm cells, which went on to fertilize mouse eggs and become an embryo. If they lead to normal mouse pups, it could be a boon for stem cell research. By Kristen Philipkoski.
12.  Waiting for the Phone to Bark. No more ringy-dingy: Services that let cell-phone users create almost any type of ring tone, and assign different tones to different callers, are all the rage. Some, surprisingly, are choosing the sound of silence. By Daniel Terdiman.
13.  Tomorrow's Menu: Spam, Spam, Spam. Congress overwhelmingly passes a bill to fight the online scourge, but critics say the unwanted e-mail will increase because the law will actually legitimize spam. By Amit Asaravala.
14.  Open Source for the Slopes. Mirroring the evolution of Linux, new developments in ski equipment for the disabled come largely from members of the community. By Michael Myser.
15.  Mining the Vein of Voter Rolls. The personal information people give when they register to vote is supposed to remain in the hands of governments, political parties and candidates. But nearly half of all states allow the data to go to marketers as well. By Kim Zetter.
16.  A Vending Machine for Voter Data. Aristotle International sells lists online containing personal facts about voters to anybody who cares to plunk down the money. A Wired News special report by Kim Zetter.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
17.  AntiOnline Security Spotlight: Wargames
18.  ONStor Takes On EMC, NetApp
19.  RE: Internet Explorer URL parsing vulnerability
20.  Mambo Open Source 4.0.14 SQL injection
21.  Re: Internet Explorer URL parsing vulnerability
22.  Re: Internet Explorer URL parsing vulnerability
23.  Re: Internet Explorer URL parsing vulnerability
24.  Re: Multiple Vendor SOAP server (XML parser) attribute blowup DoS
25.  Re: A new TCP/IP blind data injection technique?
26.  [CORE-2003-12-05]DCE RPC Vulnerabilities New Attack Vectors Analysis
27.  Re: A new TCP/IP blind data injection technique?
28.  Re: Dell BIOS DoS
29.  irssi - potential remote crash
30.  Re: NetGear WAB102
31.  Re: Internet Explorer URL parsing vulnerability
32.  [RHSA-2003:390-01] Updated gnupg packages disable ElGamal keys
33.  Finjan Software Discovers a New Critical Vulnerability In Yahoo E-mail Service
34.  A .NET classbug that can hang a machine instantly
35.  GLSA: cvs (200312-04)
36.  RE: A new TCP/IP blind data injection technique?
37.  Cyclonic Webmail 4 multiple vulnerabilities
38.  Remotely Anywhere Message Injection Vulnerability
39.  RE: Internet Explorer URL parsing vulnerability
40.  Re: A new TCP/IP blind data injection technique?
41.  Re: A new TCP/IP blind data injection technique?
42.  RE: A new TCP/IP blind data injection technique?
43.  Multiple vendor SOAP server (XML parser) denial of service (DTD parameter entities)
44.  Sun Solaris ed(1) Unsafe Temporary Files May Let Local Users Gain Elevated Privileges

7:27:05 PM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Virginia files felony spam charges. The state's attorney general announces that a North Carolina resident was the first person to be charged under Virginia's antispam law.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Earnings at Adobe Beat Expectations (AP). AP - Earnings at Adobe Systems Inc. beat expectations for its latest quarter, helped by its electronic-document business.
3.  Internet Summit Looks at Medical Roles (AP). AP - Delegates to a U.N. summit this week argued that spreading information technology more equitably can hasten cures for such developing world ills as poverty, AIDS, poor education and high child mortality.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  PC Mag - Mac OS X Insecure
5.  Virginia Arrests Man For Spamming
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
6.  Vulnerabilities: HSFTP Username Command Line Argument Buffer Overrun Vulnerability. hsftp is an FTP emulation program that is available for Unix/Linux variants.

hsftp is prone to a locally exploitable buffer overrun vulnerability due to insufficient bou...
7.  Vulnerabilities: HSFTP Hostname Command Line Argument Buffer Overrun Vulnerability. hsftp is an FTP emulation program that is available for Unix/Linux variants.

hsftp is prone to a locally exploitable buffer overrun vulnerability due to insufficient bou...
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
8.  Penn State President loves Microsoft, Napster, the RIAA and Al Gore (true). The ultimate groupie
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
9.  Wright Brothers the Wrong Guys?. It's the centennial of the famous flight at Kitty Hawk -- but was it the first airplane flight in history? A lot of Brazilians will give you an argument that it was their man who went airborne first.
10.  Rift Over Global Info Control. Developing countries resent what they see as American dominance over information technology. They'd like to see the Internet placed under U.N. control. The United States and its industrialized allies disagree.
11.  Company Fights for Pop-Up Rights. D-Squared claims its intrusive ads, which exploit new Windows technology to bombard PC users with unwanted messages, are protected free speech. The FTC calls the practice 'high-tech extortion.'
12.  Kofi Annan: Keep Media Free!. U.N. Secretary-General Kofi Annan urges World Summit on the Information Society participants to affirm media freedoms and protect the public's right to stay informed.
13.  U.N. Balks at Cloning Ban. The United Nations postpones a decision on cloning for a year instead of banning the procedure outright. Stem-cell researchers, who believe the science will lead to medical treatments, hope the year will be fruitful. By Kristen Philipkoski.
14.  Games, Movies Tie the Knot. It was a marriage that seemed inevitable: Movies and video games. Where there's money, there will be agents, and it's the Hollywood agents that finally got the two together. By John Gaudiosi.
15.  These Squirrels Are Super Cool. The arctic ground squirrel can lower its body temperature to that of a popsicle. If scientists can figure out how, hibernating space flight and longer shelf life for transplant organs may be possible. By Louise Knapp.
16.  Whimsy for Your Special Nerd. Looking for an alternative to ubiquitous mall stores that all carry the same crap? Check out the Wired News anti-mall gift guide. By Kristen Philipkoski.
17.  Apple Store: Chain of Devotion. Gary Allen is nuts about Apple Stores. So if you've memorized the blueprints and know the surveillance features like the back of your hand, a flight to Tokyo just to walk into the newest store doesn't seem abnormal. By Leander Kahney.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
18.  Debate raging over DDoS attack on SCO
19.  Gentoo: dorf is my name
20.  Gentoo: cvs Unauthorized access vulnerability
21.  Red Hat: GnuPG Signing key vulnerability
22.  Mandrake: cvs Unauthorized access vulnerability (correction)
23.  Fedora: GnuPG Signing key vulnerability
24.  Mandrake: etherial Multiple vulnerabilities
25.  My sysadmin is a special constable

6:26:46 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Toys R Us' sneaky trick loses in court. Eli the Bearded says: "This story of Louisiana winning a court tax battle is interesting to see the types of tax evasion big companies use.

"In this case Toys R Us advertises using a giraffe mascot named Geoffrey. But TRU does not own the rights to that mascot, instead Geoffrey, Inc (a TRU subsidiary) owns them. So the toy store "licenses" the trademark from Geoffrey, Inc, at a hefty rate, then calls that a business expense and deducts from its pre-tax income. Since GI isn't a Louisiana company, TRU argued that it doesn't need to pay LA taxes on it's income. The judge disagreed."

Link
----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
2.  Microsoft dangles Office rebates
3.  Sun prepares Java server update. Sun Microsystems plans to complete a Web services-ready, enterprise version of its Java application server next year while it ups its investment in Web server software.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  New Battlestar Galactica - Worth a Series?
5.  Solaris 8 & 9 Free for x86 Once Again
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
6.  Vulnerabilities: Red Hat Linux Apache Remote Username Enumeration Vulnerability. Versions of Apache webserver shipping with Red Hat Linux 7.0, (and possibly other Apache distributions) install with a default misconfiguration which can permit remote us...
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
7.  Typosquatter pleads guilty to luring kids to porn sites. Cyber-sex.con
8.  Penn State President loves Microsoft, Napster, the RIAA and Al Gore (true). The ultimate groupies
9.  My sysadmin is a special constable. Stop, Hacker!
10.  HP taps the taxman to knock off IBM and Dell. Stuck in the middle with you
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
11.  Windows 98 Presents Security Problems As It Ends Lifespan
12.  WORM_LORAC.A
13.  Caveo enters SSL VPN market - Infoworld Staff

5:35:15 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Contest to make a tiny chair out of champagne cork wire. Design Within Reach holds a yearly competition to design a chair faishioned out of the wire that secures a champagne cork. Link (thanks, Justin!)
2.  Tribute to Sachs: Me. "Me" is a lovely short video from Austrian net.artists Monochrom in tribute to Oliver Sachs's research on neurological defects: a man recounts his unusual defect and his coping mechanism.

Link

(Thanks, Johannes!)
3.  First-ever public demo of an open-source PC on Monday. The OpenCores movement, which produces open-source-licensed "code" for producing chips using Field Programmable Gate Arrays (FPGAs) has built a complete RISC computer that runs Linux using open source libraries to describe the hardware characteristics. This means that your open source operating system can now run on open source microprocessors. Monday will mark the first-ever public demonstration of the system.

On Monday, December 15, at 7pm, OpenCores developer Damjan Lampret will give the first public demonstration of an all-Open Source System-On-Chip (SoC) at the Freedom Technology Center in Mountain View, California, USA. The new OpenCores System-On-Chip, developed and manufactured by Flextronics Semiconductor, runs Linux, uClinux, or eCos. The SoC is exclusively built with freely licensed OpenCores IP cores. The chip includes the OpenRISC OR1200 32-bit processor, a Memory Controller for SDRAM/FLASH/SRAM, a 10/100 Mbps Ethernet MAC, 32-bit, 33/66MHz PCI support, and a 16550 UART.

Link

(Thanks, Seth!)
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
4.  National Weather Service Switches to Linux-Based IBM Servers (NewsFactor). NewsFactor - The National Weather Service (NWS), harbinger of flash floods, tornadoes, and hurricanes, will be relying on 900 IBM (NYSE: IBM) eServer IntelliStations workstations and 160 IBM eServer xSeries servers running Linux to improve forecasting speed by 400 percent, according to IBM. The workstations replace those from IBM competitor Hewlett-Packard.
5.  Will Open Source Be Forced To Go Proprietary? (NewsFactor). NewsFactor - The gains in market share that open-source software has made in recent years create a quandary for this newcomer to the computing world.
6.  Another Day, Another DoS Attack Against SCO (NewsFactor). NewsFactor - Another day, another denial of service attack at The SCO Group. Or so it must seem to the company, which -- justifiable or not -- has become about as popular as a right-wing Republican at a Howard Dean rally.
7.  Portability: Another Ugly Chapter in Telecom Service (NewsFactor). NewsFactor - Wireless service providers are starting to feel the pressure of the new federal number-portability regulations. Many transactions are not meeting the two-and-a-half-hour window set by the federal guidelines.
8.  Virginia Arrests Man for Spam Email Under New Law (Reuters). Reuters - Virginia authorities said on Thursday they had arrested and charged a North Carolina man for sending "spam" e-mail in the first use of a new state law that could bring penalties of up to 20 years in prison.
9.  IE Flaw Lets Spoofers Con Web Surfers (NewsFactor). NewsFactor - A security flaw in Microsoft's (Nasdaq: MSFT) Internet Explorer 6 enables spoofers to take unsuspecting users to fake Web sites, says Danish security firm Secunia. Microsoft is investing the "new public reports of a possible vulnerability," security program manager Stephen Toulouse told NewsFactor.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
10.  PC Mag - OS X Insecure
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
11.  Caveo enters SSL VPN market - Infoworld Staff. Caveo Technology Group entered the Secure Socket Layer virtual private network (SSL VPN) market Wednesday with a security appliance that leverages technology developed by Sun Microsystems and others.
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
12.  Vulnerabilities: Sendmail Ruleset Parsing Buffer Overflow Vulnerability. Sendmail is a widely used MTA for Unix and Microsoft Windows systems.

Sendmail has been reported prone to a buffer overflow condition when parsing non-standard rulesets...
13.  Vulnerabilities: Sendmail Prescan() Variant Remote Buffer Overrun Vulnerability. Sendmail is prone to a buffer overrun vulnerability in the prescan() function. This issue is different than the vulnerability described in BID 7230. The issue exists in...
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
14.  Tiny Personal Firewall 5.1.1242
15.  The Cleaner Database v3425
16.  Many Federal Agencies Flunk Security

4:34:56 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Transformation from the Internet as a subset of telecom to telecom as a subset of the Internet. Kevin Werbach comments on Jeff Pulver's worries about the FCC regulating voice-over-Internet technology:

As I said at the FCC VOIP hearing last week, the real issue is the transformation from the Internet as a subset of telecom to telecom as a subset of the Internet. That means treating voice as an application that can run on any platform, not as the platform itself.

Link
2.  Device turns hotdogs into octopuses. Useless but fun gadget converts ordinary hotdogs into "Octodogs." The logo is very cute, that's the main reason I'm blogging this. Link (thanks, Mel!)
----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
3.  Microsoft: Extra patching a precaution. A fix distributed to some Windows XP systems earlier this week is a preventative measure and not a new issue, the software giant says.
4.  IBM tools revamp targets Microsoft. Big Blue is boosting its developer outreach programs and its Java tools as an alternative to the software giant's Windows-only strategy.
5.  Wayport adds free NY Times downloads
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  What is the information society, players at UN summit struggle to reply (AFP). AFP - What exactly is an information society? People at a UN summit in Geneva have a vague idea but many wonder if the political leaders making the big decisions here are on the same frequency.
7.  AT&T to add Internet phone service (USATODAY.com). USATODAY.com - No. 1 long-distance carrier AT&T on Thursday will announce plans to sell Internet phone service to consumers and to more businesses in 2004, say people familiar with the matter.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
8.  Warflying 2013 Access Points in Los Angeles
9.  The Linux Development Platform
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
10.  Vulnerabilities: NetServe Web Server Directory Traversal Vulnerability. NetServe Web Server is a compact web server for Microsoft Windows platforms.

A vulnerability has been reported to exist in the software that may allow a remote attacker ...
11.  Vulnerabilities: Apache Web Server SSLCipherSuite Weak CipherSuite Renegotiation Weakness. Apache provides directives for supplying cipher suite specifications for SSL transactions. The cipher suite is negotiated with the client during the SSL handshake. Thes...
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
12.  Yahoo schließt Freemail-Sicherheitslücke
----------------------------------------------------------------------
Internet/Network Security
----------------------------------------------------------------------
13.  Yule Tide Challenge: Rudolph's XSS Christmas. Ed Skoudis, author of Counter Hack and Malware as well as the video CD tutorial Hack-Counter Hack Training Course, has posted a hacker's challenge on TechRepublic. Playing off of the classic Christmas tale of Rudolph the Red-Nosed Reindeer and his...

3:34:35 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  More luscious eye candy from Lynnfox: Bjork concert graphics.

LynnFox, whose surreal, organic digital creations I swooned over in this previous post, have just published clips of the graphics they created for Bjork's latest concert tour. Beautiful stuff. Four movies they made for her live shows are now online here. (gracias, Jose Luis de Vicente!)
2.  Lisa Rein interview on Music for America. Here's a great Music for America interview with activist/musician/geek Lisa Rein, whose open-invitation concert/party is this Saturday in San Francisco.

I believe that music is a good way to approach the emotional side of these controversial political issues. I believe that the cultural aspects of, for instance, copyright -- and the common man's loss of our history and heritage in exchange for big business to make more money on it's intellectual property -- are explained better through song.

I also believe that music is a good way to raise awareness about important issues. If you can write a song that's good in its own right, in that it's a catchy tune and people like it no matter what it's about -- that they might eventually read the lyrics and learn more about the issue you're singing about.

I try to follow John Lennon's model in raising awareness. He was able to eventually stop the vietnam war with this song and the feeling of love and community that he was able to bring to people at large. I hope to do the same thing and encourage others to climb on board.

Link
----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
3.  Swedish court blocks Lindows
4.  Briefly: Swedish court blocks Lindows. Distribution of the software is halted in the country, pending a Microsoft trademark ruling...Sharp puts Word files on phones...WS-I releases Web services app sample.
5.  Big Blue pulls in more outsourcing deals. IBM announces another pair of substantial outsourcing agreements Thursday, reporting a $1.21 billion contract with Michelin and a "pay per use" deal with Zurich Financial Services.
6.  Microsoft workers cash options for $382 million. The software giant discloses that about 50 percent of elibible employees sold their underwater stock options to a Wall Street firm.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
7.  PC sales set for record in 2003, 2004: survey (AFP). AFP - Strong demand for portable computers and aggressive price cuts will help boost global sales of personal computers to record levels in 2003 and again in 2004, a market research firm said.
8.  AT&T Unveils Internet Phone Service Plans (Reuters). Reuters - AT&T Corp. (T.N) said on Thursday it will provide Internet telephone service to homes in major U.S. markets next year, joining the fray of Baby Bells making the service a key part of their defense against new competitors like cable TV companies.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
9.  Security Experts Doubt SCO's Claims of DoS
----------------------------------------------------------------------
SecurityNewsPortal.com
----------------------------------------------------------------------
10.  New Homeland Security news and global terrorism web site opened by SecurityNewsPortal
11.  Hackers spying on major bank defeated by beta version of CyberShield Intrusion Prevention and Deception Suite (PR) Network Security
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
12.  BugTraq: Multiple vendor SOAP server (XML parser) denial of service (DTD parameter entities). Sender: Amit Klein [Amit dot Klein at SanctumInc dot com]
13.  BugTraq: RE: A new TCP/IP blind data injection technique?. Sender: Michael Wojcik [Michael dot Wojcik at microfocus dot com]
14.  BugTraq: Re: Internet Explorer URL parsing vulnerability (Yes, Mozilla too.). Sender: netmask [netmask at enZotech dot net]
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
15.  Elsewhere: More, worse cyberattacks seen coming in 2004
16.  AntiVir Personal Edition 6.22.09.09
17.  X-Cleaner 2.2 Build 37966
18.  Trend Micro Pattern File December 11, 2003
----------------------------------------------------------------------
Internet/Network Security
----------------------------------------------------------------------
19.  Book Review: Network Perimeter Security. Network Perimeter Security: Building Defense in Depth by Cliff Riggs is a concise and comprehensive book filled with good information about the technologies you can use to protect your network. The concept of layering technologies to provide defense in depth...

2:34:16 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Lab Notes from UC Berkeley. In this issue of Lab Notes from UC Berkeley's College of Engineering:

* Grabbing waste heat from industry to warm your apartment
* Engineering our water resources against El Nino
* Simulating cyber-attacks on a microscale model of the Net

I hope you enjoy it! Link
----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
2.  United Online makes dial-up Linux-friendly. The Internet service provider announces that it supports the Linux-based Lindows operating system for its dial-up services.
3.  Microsoft gets Windows XP update ready. The software maker is set to release a test version of an update to Windows XP, which adds security features and improved support for Bluetooth and Wi-Fi networks.
4.  PC shipments on the upswing. Research firm IDC raises its forecast for 2003 and 2004 worldwide PC shipments, citing evidence of a recovery in business spending.
5.  China Wi-Fi codes to be controlled by 11 firms. Companies that want to adopt the new China-only wireless encryption standard will have to acquire that technology from just 11 designated Chinese companies.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Looking at Linux in 2004 (Ziff Davis). Ziff Davis - Eric Hellweg, CNN/Money Contributing Columnist, sees big things ahead for Linux in 2004.
7.  Former Chinese government official jailed for eight years for subversion (AFP). AFP - A former government worker in southwest China was jailed for eight years for posting essays and comments online criticizing official corruption, a human rights group said.
8.  Retrial Ends in Hollywood Vs Norwegian 'Hacker' (Reuters). Reuters - The landmark retrial of a Norwegian who achieved fame when he was cleared of DVD piracy charges lodged by top Hollywood studios ended on Thursday with prosecutors demanding a suspended 90-day jail term.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
9.  Qwest Launches VoIP Trial
10.  Electronic Voting in the News
----------------------------------------------------------------------
SecurityNewsPortal.com
----------------------------------------------------------------------
11.  SecurityNewsPortal.com opens new Homeland Security news and global terrorism web site
12.  CyberShield Intrusion Prevention and Deception Suite beats spying hackers trying to break into major banking network (PR) Network Security
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
13.  Elsewhere: More, worse cyberattacks seen coming in 2004. NEW YORK CITY - The New Year will offer weary network administrators little respite from a new generation of Internet worms, viruses and targeted hacks that appeared in 2...
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
14.  BugTraq: RE: Internet Explorer URL parsing vulnerability. Sender: Mimmus [dviggiani at tiscali dot it]
15.  BugTraq: RE: A new TCP/IP blind data injection technique?. Sender: David Gillett [gillettdavid at fhda dot edu]
16.  BugTraq: Re: A new TCP/IP blind data injection technique?. Sender: [Valdis dot Kletnieks at vt dot edu]
17.  BugTraq: Re: A new TCP/IP blind data injection technique?. Sender: Casper Dik [casper at holland dot sun dot com]
18.  Vulnerabilities: MyServer HTTP File Name Request Handler Remote Denial Of Service Vulnerability. MyServer is an application and web server for Microsoft Windows and Linux operating systems.

MyServer has been reported prone to a remotely triggered denial of service ...
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
19.  Elsewhere: Social engineering holds clue to security leaks: expert
20.  Elsewhere: Security Experts Warn of New Way to Attack Windows
21.  Le Salon de la Securite Informatique 2003 - Vers des solutions de securisation integrale
22.  VisioWave et Thales annoncent un accord strategique dans le domaine de la protection et de la surveillance de sites
23.  WatchGuard renforce la securite des WLAN avec de nouvelles fonctionnalites pour les appliances Firebox SOHO 6
24.  Fortinet annonce sa plate-forme de securite Antivirus Firewall FortiGate™ 800
25.  UPDATE - SCO's Web site hit with DoS attack
26.  CRF Reveals Draft of New DRM Technology
27.  Controlling content - New industry group tries its hand at DRM
28.  Group wants P2P files to pay

1:33:57 PM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Search tools target digital music listeners. New tools help listeners navigate online services and find the music they want.
2.  HP wins storage hardware deal with IRS. Hewlett-Packard and partner PlanetGov will replace a number of IBM and Dell servers currently in use at the Internal Revenue Service.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  UN summit sends wake up call on power of information technology (AFP). AFP - The UN information summit is alerting world leaders to the importance of the Internet and other forms of technology as a powerful economic tool and not just an area for IT experts, participants revealed.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  When Good Patents Go Bad
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
5.  Windows 98 still in use despite imminent end of support. Many North American businesses still have computers running on Windows 98, even though support for the operating system is set to end on Jan. 16, according to a study released Thursday.
6.  UPDATE - SCO's Web site hit with DoS attack. The SCO Group Inc.'s Web site has been knocked out of service by a denial of service (DoS) attack, the company confirmed on Wednesday.
7.  AT&T launches new VoIP services. AT&T Corp. is aggressively expanding its voice over Internet protocol (VoIP) services with a new focus on consumers, the company said Thursday.
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
8.  UPDATE - SCO's Web site hit with DoS attack. The SCO Group Inc.'s Web site has been knocked out of service by a denial of service (DoS) attack, the company confirmed on Wednesday.
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
9.  Elsewhere: Social engineering holds clue to security leaks: expert. The Maritimes are behind the times when is comes to information security governance, according to an expert, but many also fall prey to trickery of social engineering.

M...
10.  Elsewhere: Security Experts Warn of New Way to Attack Windows. Security experts have found a new way to exploit a critical vulnerability in Windows that evades a workaround and enables the attacker to compromise a number of machines ...
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
11.  BugTraq: Re: A new TCP/IP blind data injection technique?. Sender: Nick Cleaton [nick at cleaton dot net]
12.  BugTraq: [CORE-2003-12-05] DCE RPC Vulnerabilities New Attack Vectors Analysis. Sender: Core Security Technologies [advisories at coresecurity dot com]
13.  Vulnerabilities: CDE DTPrintInfo Home Environment Variable Buffer Overflow Vulnerability. dtprintinfo is a component of the Common Desktop Environment (CDE) distributed with several UNIX operating systems.

A vulnerability has been identified in the handling o...
14.  Vulnerabilities: Yahoo! Messenger YAuto.DLL Open Buffer Overflow Vulnerability. Yahoo! Messenger is a freely available chat client distributed and maintained by Yahoo! It is available for the Microsoft Windows platform.

A problem has been identifie...
15.  Vulnerabilities: Abyss Web Server Authentication Bypass Vulnerability. Abyss Web Server is a freely available personal web server. It is maintained by Aprelium Technologies and runs on Microsoft Windows operating systems, as well as Linux.

..
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
16.  Sony and Toshiba close to sampling Cell technology. 65nm process to begin trial production in Q1 '04
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
17.  Elsewhere: New email worm is Scold outside
18.  Elsewhere: Yahoo mends e-mail security flaw
19.  News: IE phishing scam exploit unearthed
20.  News: Yahoo! fixes Web mail vuln
21.  [NTVMSNBC] SoBig.F 2003'ün en tehlikeli virüsü
22.  [NTVMSNBC] Linux kodlarýna Hacker saldýrýsý
23.  SCO web sitesine DDoS saldýrýsý
24.  [CISCO] ACNS kimlik tanýlama kütüphanesinde güvenlik açýðý
25.  Going Lean and Mean With Xitami
26.  Intel Software Accelerates Development Of Computers That 'Anticipate' The Needs Of Users
27.  Open-Source Machine Learning Library Available
28.  Intel researchers open 'learning library
29.  UK Spam Law Goes Live
30.  New laws on spam come into force
31.  New IE Bug Hides Real Site Address
32.  IE bug lets fake sites look real
33.  Powerful Flaw Found in IE

12:33:36 PM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Grassroots WSIS coverage. The Daily Summit is a group blog reporting from the front lines of the World Summit on the Information Society in Geneva, available in English and Arabic. Check the blogroll for lots more grassroots coverage links.

How do you make your press conference stand out from all the others?

Head of UN Permanent Forum on Indigenous Issues Ole-Henrik Magga decided to round his off with a song.

Without any backing, brave Mr Magga from the Sami reindeer hunting tribes of Northern Europe, trilled a song about a young reindeer meeting an early end in life.

Link (Thanks, David!)
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Leaders Promote Democracy at Tech Summit (AP). AP - World leaders attending a summit on how to spread the benefits of the Internet to the whole planet stressed on Thursday that it can contribute to development and democracy, but only if it is supported by money and strong government policies.
3.  Globalizing Internet Brings Unexpected Problems (Reuters). Reuters - The United Nations' push to transform the developing world into tech-ready nations could partly backfire, delegates to an IT summit aimed at bridging the "digital divide" said on Thursday.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  UK Spam Law Goes Live
----------------------------------------------------------------------
SecurityFocus Vulnerabilities
----------------------------------------------------------------------
5.  Vulnerabilities: EZMeeting EZNet.EXE Long HTTP Request Remote Buffer Overflow Vulnerability. eZ is a commercially available conferencing software package distributed and maintained by eZmeeting. It is available for the Microsoft Windows platform.

A vulnerabilit...
6.  Vulnerabilities: Webgate WebEye Information Disclosure Vulnerability. Webgate WebEye is a webcam server software that allows users to monitor cameras remotely through a web browser.

A vulnerability has been reported to exist in the softwar...
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
7.  Phishmongers target Lloyds TSB customers. Yup, another one
8.  Nat Semi touts Bluetooth-beating low-power Wi-Fi chipset. Long on claims, short on details
9.  Broadband minnow takes on BT over 'unacceptable' behaviour. Sorry, says monster telco
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
10.  Phishmongers target Lloyds TSB customers
11.  Microsoft veröffentlicht doch einen neuen Sicherheits-Patch
12.  Smart-card company Mist quarterly loss grows to $7.3M from $4M
13.  SCO Group Web Site Hacked Again
14.  Critical Oracle flaw found

11:33:15 AM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Steven Levy on Trusted Computing. Steven Levy, author of Hackers and Crypto, has a fantastic piece on Newsweek's site about the potential dangers of Trusted Computing.

How could the freedom genie be shoved back into the bottle? Basically, it's part of a huge effort to transform the Net from an arena where anyone can anonymously participate to a sign-in affair where tamperproof "digital certificates" identify who you are. The advantages of such a system are clear: it would eliminate identity theft and enable small, secure electronic "microtransactions," long a dream of Internet commerce pioneers. (Another bonus: arrivederci, unwelcome spam.) A concurrent step would be the adoption of "trusted computing," a system by which not only people but computer programs would be stamped with identifying marks. Those would link with certificates that determine whether programs are uncorrupted and cleared to run on your computer.
Link

(via Smartmobs)
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Company Promotes Spam-Filtering Software (AP). AP - A spam-filtering company has a holiday gift for America's charities and nonprofit organizations: free one-year subscriptions to its software.
3.  Open-Source Legal Experts Dismiss SCO's Copyright Claims (Ziff Davis). Ziff Davis - Legal experts sympathetic with the open-source movement have little patience for SCO's claims of copyright in its fight against the GPL.
4.  TiVo-Based Set-Top Boxes in High Demand (AP). AP - After years of lukewarm demand, the elves at satellite television provider DirecTV are suddenly scrambling to fill holiday orders for its TiVo-based set-top boxes.
5.  Report: Net Telephony Gains Popularity (AP). AP - About 13 percent of international voice traffic is now carried by Internet telephony, the low-cost, feature-rich technology lately being introduced to consumers.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
6.  Low Powered Mini-Server for the Masses
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
7.  Inland Revenue dumps IT provider. EDS loses its contract to run the Inland Revenue's IT services after being blamed for delays in tax credit payments.
8.  'Cyber Oscar' for web project. A Cambodian project has won an award at the UN's digital divide summit for using technology to improve lives.
9.  Iranian bloggers rally against censorship. Hundreds have been flooding a UN digital summit blog complaining about Iran's strict web blocking rules.
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
10.  Elsewhere: New email worm is Scold outside. MessageLabs has warned of a new virus that has appeared yesterday, of which it has already detected several thousand copies in the wild. Scold-MM was first intercepted ye...
11.  Elsewhere: Yahoo mends e-mail security flaw. Yahoo has fixed a flaw in its web-based e-mail service that exposed users to serious attacks, including potential interception of personal data.

Security company Finjan ...
12.  News: IE phishing scam exploit unearthed. The Register By John Leyden [john dot leyden at theregister dot co dot uk]
13.  News: Yahoo! fixes Web mail vuln. The Register By John Leyden [john dot leyden at theregister dot co dot uk]
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
14.  Cyber Oscar honour for Cambodian data-entry charity. And the winner is... Digital Divide Data
15.  IBM wins €1bn Michelin gig. Tyre kicking
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
16.  WORM_SCOLD.A
17.  VisitorBook LE Input Validation Flaw Lets Remote Users Send E-mail Via the System
18.  NETGEAR WAB102 Wireless Access Point Lets Remote Users Login Without Authenticating
19.  SmoothWall Express 2.0
20.  VisitorBook LE Multiple Vulnerabilities
21.  Mambo Server SQL Injection Vulnerabilities
22.  IPv6 will need security, too, experts warn
23.  Elsewhere: Security info center gets $2 million

10:32:55 AM    

----------------------------------------------------------------------
Boing Boing Blog
----------------------------------------------------------------------
1.  Thunderbirds trailer is go!. Jonathan "Commander Riker" Frakes is directing a live-action film based on the Thunderbirds. Sweet-looking trailer.

5.8MB Quicktime Link
2.  Urban farmers reclaim Detroit. In Detroit, urban farmers, frustrated with buying their groceries at Party Stores now that the grocery chains have largely pulled out of the city, have begun to reclaim Detroit's vast empty spaces for grow-your-own operations, complete with livestock and tractors.

After decades of blight, large swathes of Detroit are being reclaimed by nature. Roughly a third of this 139-square-mile city consists of weed-choked lots and dilapidated buildings. Satellite images show an urban core giving way to an urban prairie.

Rather than fight this return to nature, Mr. Weertz and other urban farmers have embraced it, gradually converting 15 acres of idle land into more than 40 community gardens and microfarms — some consuming entire blocks.

Link
3.  Labels to VCs: invest in P2P at your peril. The IFPI -- the international equivalent of the RIAA -- has begun threatening venture capitalists who are considering investing in P2P applications.

"The International Federation of the Phonographic Industry [IFPI] Taiwan calls for existing investors and potential investors to seriously consider their investments in unauthorized peer-to-peer network operators..>"

"IFPI seriously advises those who collect money on Kuro's behalf to reconsider the legality of their business activities with Kuro," Lee said.

If you've ever thought, "Well, why should I care about P2P? I use my computer in non-infringing ways," this is why: investors who put money into general-purpose technology that is no more immune to infringement that email or web-servers or SIP-phones or what have you are being put on notice by the labels that such investment will be targetted in the courts.

Link
4.  Creative Commons party this Sunday. The Creative Commons anniversary party is taking place in San Francisco this Sunday:

Creative Commons is having its anniversary party on Sunday, December 14, from 6-9pm at 111 Minna Gallery, 111 Minna Street, San Francisco (directions). There will be some cool new CC tunes, and great-news annoucements, and most of Joi’s cool SF friends. Be sure to RSVP.

Link
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
5.  AT&T Unveils Internet Phone Service Plans (Reuters). Reuters - AT&T Corp. (T.N) said on Thursday it would expand Internet telephone services to businesses and provide services for consumers next year.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
6.  New IE Bug Hides Real Site Address
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
7.  Microsoft takes Lindows fight to Sweden. Wins restraining order
8.  Wanna complain about spam? You must be joking. 'Technical reason' blamed
9.  Elpida ships 1Gb DDR 2 chips. Hot on Micron's heels
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
10.  Accord strategique entre Panda Software et Europe Online un canal antivirus à la demande
11.  La mafia s'intéresse aux spam et aux virus
12.  Mambo Server Input Validation Flaw in $artid in articles.php Permits SQL Injection
13.  Hackproofing DB2
14.  Overview of Virus Bulletin December 2003 Issue
15.  Cisco ACNS Authentication Module Buffer Overflow Vulnerability
16.  Visitorbook LE Multiple Vulnerabilities
17.  Sybase Anywhere 9 Multiple Vulnerabilities
18.  Mambo Open Source 4.0.14 SQL Injection Vulnerability

9:32:36 AM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Can-Spam Act is a start. With Congress cracking down on spam, Brightmail CEO Enrique Salem says this is only a first step.
2.  VoIP still needs breathing room. Jeff Pulver says federal regulators are poised to play Scrooge this holiday season by slowing the spread of Internet phoning technology.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  Software giants think small (USATODAY.com). USATODAY.com - Not long after sales at his Houston-area Krispy Kreme(KKD) operation began to soar, Jason Gordon discovered that his $200 Intuit accounting software couldn't keep up.
4.  3-D on laptop cool but sometimes just a distraction (USATODAY.com). USATODAY.com - Throughout the decades, people periodically get the bright idea that showing folks motion pictures and other content in 3-D makes it more compelling.
5.  Online sites raise shopping accessibility (USATODAY.com). USATODAY.com - Online merchants are mimicking their brick-and-mortar predecessors to make online shopping more familiar, thus more attractive.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
6.  Motion Controlled Smartphone Previewed
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
7.  More, worse cyberattacks seen coming in 2004. NEW YORK CITY - The New Year will offer weary network administrators little respite from a new generation of Internet worms, viruses and targeted hacks that appeared in 2003, according to security experts.
8.  Toshiba, Sony close to 65nm sample production. TOKYO - Toshiba Corp. and Sony Corp. are close to beginning trial production of semiconductor chips using a manufacturing process more advanced than any in commercial use today, they said Thursday.
9.  Hitachi plans fuel-cell for handheld devices by 2005. TOKYO - Hitachi Ltd. has co-developed a prototype direct methanol fuel cell (DMFC) for use in mobile electronics products and plans to launch the product with a compatible PDA (personal digital assistant) in 2005, it said Wednesday.
10.  Cape Clear integrates data via Web services - Infoworld Staff. Cape Clear Software on Thursday is rolling out Cape Clear Data Interchange, which presents a Web services-based approach to integrating data with enterprise applications.
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
11.  More, worse cyberattacks seen coming in 2004. NEW YORK CITY - The New Year will offer weary network administrators little respite from a new generation of Internet worms, viruses and targeted hacks that appeared in 2003, according to security experts.
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
12.  CSR to expand from Bluetooth into Wi-Fi. Tri-mode chipset due next year
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
13.  Hackproofing DB2
14.  Overview of Virus Bulletin December 2003 Issue
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
15.  Sybase SQL Anywhere Multiple Vulnerabilities
16.  FlashGet Dial-Up User Credential Disclosure Vulnerability
17.  Sun Solaris ed Text Editor Insecure Temporary File Creation Vulnerability
18.  Norton AntiVirus Virus Definitions December 10, 2003
19.  IE bug lets fake sites look real
20.  McAfee DAT 4308
21.  McAfee SuperDAT 4308
22.  11 Dec W32/Scold-A
23.  11 Dec Troj/Dloader-F
24.  URL-Spoofing-Bug: Microsoft kritisiert die Entdecker

8:32:16 AM    

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  MicroStrategy Sues Rival's Affiliate Over Patents (Reuters). Reuters - Business software maker MicroStrategy Inc. (MSTR.O) on Wednesday sued Crystal Decisions alleging that the company -- which is about to be bought by MicroStrategy rival Business Objects SA -- infringed on three of its key patents.
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
2.  New laws on spam come into force. New European laws banning the sending of unwanted e-mails or spam come into force on Thursday.
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
3.  Axe falls on net pin-up's 36D assets. Back to radio for CH4's Zora Suleman
4.  Inland Revenue sacks EDS. CGEY wins
5.  Sacked-by-text staff win compensation. Gr8
6.  Spanish cyberkiosks claim second victim. Middle-aged woman in harrowing terror ordeal
7.  Berlin fences off domain hijacker. Europe in Brief
8.  SanDisk blames PalmSource, PDA vendors for Wi-Fi card delays. Are they really as different as all that?
9.  Yahoo! fixes Web mail vuln. Flawed script
10.  Intel folds Xscale business into comms group. Wireless chief quits
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
11.  SCO web site attacked again? Maybe
12.  To exploit or not to exploit
13.  In a data-mining society, privacy advocates shudder
14.  Issues surrounding Linux and implications for IT managers
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
15.  Le site Web de SCO sous attaque pour la 3eme fois
16.  Security info center gets $2 million
17.  Transportation faces security, IT investment issues
18.  UK spam ban comes into force
19.  Firms fight 500 internet attacks a month
20.  SCO Group Web site hacked again
21.  Worm propagation in protected networks
22.  IE phishing scam exploit unearthed
23.  Bugwatch: Prove you believe in privacy
24.  Red Hat update for wget
25.  Red Hat update for apache
26.  Red Hat update for Pan
27.  Issues Surrounding Linux and Implications for IT Managers
28.  Developers fret over Linux attacks
29.  Guardian Digital Security Suite Based on Open Source
30.  Windows-to-Linux roadmap: Part 5. Linux logging
31.  Bytecode offers a glimpse into application performance
32.  Internet worms and critical infrastructure
33.  Former employee sentenced for hacking retailer's Web site
34.  Cooperate on security or face new rules, Ridge tells tech firms
35.  Microsoft Preps Windows XP Service Pack 2 Beta For Release Within Next Week
36.  Sex sells, especially to Web surfers
37.  UK spam ban comes into force
38.  Flaw could unleash another Slammer
39.  Homeland agency scores 'F' for network security
40.  Developers take Linux attacks to heart
41.  Yahoo Fixes Security Hole in Yahoo E-Mail
42.  Bugwatch: Prove you believe in privacy
43.  Inherent insecurity
44.  To exploit or not to exploit

7:31:56 AM    

----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
1.  UK hits 3 million broadband mark. High-speed broadband connections across the UK have now reached the three million mark, according to Oftel figures.
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
2.  Perestroika by PowerPoint. Go easy with the tax breaks
3.  IE phishing scam exploit unearthed. Master of disguise
4.  Cisco beefs up high-end routers. Bigger, better etc. etc.
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
5.  How to Hold Moonbeam in Your Hand. Physicists find a way to hold light and its energy in its tracks -- if only for a fraction of a second. The ability to harness light particles to store and process data could aid the still distant goal of quantum computers.
6.  World's Tech Have-Nots Confer. Poorer nations want their share of the information technology pie, and a three-day summit in Geneva is designed to point the way. But richer nations, conspicuous by their absence, don't appear to give a damn.
7.  Shipshape, From Stem to Sperm. Researchers have turned mouse stem cells into sperm cells, which went on to fertilize mouse eggs and become an embryo. If they lead to normal mouse pups, it could be a boon for stem cell research. By Kristen Philipkoski.
8.  Waiting for the Phone to Bark. No more ringy-dingy: Services that let cell-phone users create almost any type of ring tone, and assign different tones to different callers, are all the rage. Some, surprisingly, are choosing the sound of silence. By Daniel Terdiman.
9.  Tomorrow's Menu: Spam, Spam, Spam. Congress overwhelmingly passes a bill to fight the online scourge, but critics say the unwanted e-mail will increase because the law will actually legitimize spam. By Amit Asaravala.
10.  Open Source for the Slopes. Mirroring the evolution of Linux, new developments in ski equipment for the disabled come largely from members of the community. By Michael Myser.
11.  Mining the Vein of Voter Rolls. The personal information people give when they register to vote is supposed to remain in the hands of governments, political parties and candidates. But nearly half of all states allow the data to go to marketers as well. By Kim Zetter.
12.  A Vending Machine for Voter Data. Aristotle International sells lists online containing personal facts about voters to anybody who cares to plunk down the money. A Wired News special report by Kim Zetter.
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
13.  Firms fight 500 internet attacks a month
14.  SCO Group Web site hacked again
15.  Worm propagation in protected networks
16.  IE phishing scam exploit unearthed
17.  Bugwatch: Prove you believe in privacy
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
18.  IE bug lets fake sites look real
19.  Cisco Application and Content Networking Software (ACNS) Buffer Overflow in Authentication Module Lets Remote Users Execute Arbitrary Code
20.  Cisco Unity on IBM Servers Contain Default Accounts and Settings Used During Testing
21.  Sybase Adaptive Server Anywhere Has Multiple Flaws That Let Remote Authenticated Users Gain Elevated Privileges
22.  Mambo Server Authentication Flaws Let Remote Users Change Data and Parameters
23.  IE phishing scam exploit unearthed
24.  Group seeks political power for P2P

6:31:36 AM    

----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
1.  Scientists Freeze Pulse Of Light
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
2.  Microsoft running on Microsoft again. Linux? What Linux?
3.  Intellect thumbs up for Browns R&D tax breaks. But more definition, please
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
4.  IE bug lets fake sites look real
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
5.  Combattre les spammeurs avec des honeypots

5:31:14 AM    

----------------------------------------------------------------------
Calvin and Hobbes
----------------------------------------------------------------------
1.  Calvin and Hobbes for 10 Dec 1992.
2.  Calvin and Hobbes for 11 Dec 1992.
----------------------------------------------------------------------
Dilbert
----------------------------------------------------------------------
3.  Dilbert for 11 Dec 2003.
----------------------------------------------------------------------
Non Sequitur
----------------------------------------------------------------------
4.  Non Sequitur for 11 Dec 2003.
----------------------------------------------------------------------
User Friendly
----------------------------------------------------------------------
5.  User Friendly for 11 Dec 2003.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Calif. City Making Wireless Web Access (AP). AP - Browsing the Web from this Southern California city may soon become an outdoor sport.
7.  Student Finds Largest Known Prime Number (AP). AP - More than 200,000 computers spent years looking for the largest known prime number. It turned up on Michigan State University graduate student Michael Shafer's off-the-shelf PC.
8.  Qwest to Offer Residential Voice Over IP (AP). AP - Qwest Communications International Inc. is becoming the first Baby Bell to offer residential Internet phone service, embracing a technology that could undermine the traditional phone business.
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
9.  Web pioneer opens digital summit. Web pioneer Tim Berners-Lee helped to kick off the Geneva summit on the information society.
10.  'Cyber Oscar' for landmine project. A Cambodian project has won an award at the UN's digital divide summit for using technology to improve lives.
11.  Rub out ink 'to cut paper waste'. A new rub-out ink technology could help Japanese businesses reduce tonnes of wasted paper.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
12.  E-Voting Trade Group Formed
13.  Government Networks Still Insecure
14.  Acrobatic Elegance
15.  W32.Scold@mm

4:30:55 AM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Future: A new prime time. Multipurpose game boxes reflect a new breed of digital technologies that threaten to break the television industry's dominance of home entertainment.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
2.  Australian Pilot Stranded In Antarctica
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
3.  News: In a data-mining society, privacy advocates shudder

3:30:34 AM    

----------------------------------------------------------------------
New York Times: Technology
----------------------------------------------------------------------
1.  AT&T Joins Fray for Cheaper Calls Through the Web. AT&T plans to offer unlimited long distance and local calling using Internet technology at a significantly lower cost. By Matt Richtel.
2.  At I.R.S., a Systems Update Gone Awry. The $8 billion project to replace the Internal Revenue Service's aging file-keeping computer software is far behind schedule and over budget. By David Cay Johnston.
----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
3.  Report: AT&T to offer Internet calling. The long-distance giant expects to have a service using voice over Internet Protocol (VoIP) available to 1 million consumers in the next two years.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
4.  UK Brings in Laws to Fight Junk Email (Reuters). Reuters - New Internet laws come into force in Britain Thursday aimed at combating junk emails sent to unsuspecting users promising anything from a better sex life to untold riches.
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
5.  News: In a data-mining society, privacy advocates shudder. The Associated Press By Brian Bergstein
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
6.  No Christmas patches from Microsoft
7.  A trip down security lane

2:30:14 AM    

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  Qwest Begins Offering Net Phone Service (AP). AP - Qwest Communications International Inc. is becoming the first Baby Bell to offer residential Internet phone service, embracing a technology that could undermine the traditional phone business.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
2.  Open Source Bill For Australian Capital Territory
----------------------------------------------------------------------
SecurityNewsPortal.com
----------------------------------------------------------------------
3.  CyberShield Intrusion Prevention and Deception Suite beats spying hackers trying to break into major banking network (PR) Network Security
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
4.  No Christmas patches from Microsoft
5.  A trip down security lane
6.  SCO's Web site hit with DoS attack
7.  Wi-Fi gets more secure
8.  RIAA Hires Head of ATF for Piracy Enforcement

1:29:54 AM    

----------------------------------------------------------------------
CNET News.com - Front Door
----------------------------------------------------------------------
1.  Briefly: Sharp puts Word files on phones. The company says it has developed a way for cell phones to display business documents and graphics...WS-I releases Web services app sample...Record label group signs ATF chief...Patent office chief steps down.
2.  IBM, Akamai shake on hosting deal. The two companies expand an existing partnership to offer a utility computing service to host applications on Akamai Technologies' Web-based network.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  Intel Combining Wireless, Communications (AP). AP - Less than a week after warning of a $600 million fourth-quarter charge, Intel Corp. said it is consolidating the unit that caused the problem into another of its businesses.
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
4.  AMD, Founder to open China design lab. Advanced Micro Devices (AMD) is setting up a design center with a Chinese PC manufacturer that will focus on integrating AMD's processors into information appliances, it said Wednesday.
5.  Delayed patch ends Microsoft's patch-free month early. A glitch in Microsoft's Windows Update automated patching service caused a security fix that was released last month to be delivered to computer users on Tuesday, the same day Microsoft proclaimed December would be a patch-free month.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
6.  Norton AntiVirus Virus Definitions December 8, 2003
7.  AntiVir Personal Edition 6.22.09.09
8.  AVG Free Edition 6.0 Build 550
9.  Norton AntiVirus Virus Definitions December 09, 2003
10.  Flaw could unleash another Slammer
11.  Trend Micro Pattern File December 9, 2003
12.  AntiVir Personal Edition 6.22.09.09
13.  The Cleaner Database v3424
14.  NEW 'OFF THE HOOK' ONLINE
15.  Bind 8.4.3 removed due to major flaw
----------------------------------------------------------------------
Internet/Network Security
----------------------------------------------------------------------
16.  The Blind Leading The Blind. You probably wouldn't take medical advice from a doctor who was obese and smoked 2 packs a day. You probably wouldn't be inclined to send your kids to school if the teachers couldn't pass their own quizzes. Along those same...

12:20:36 AM    

© Copyright 2004 Gregg Doherty .
Last update: 2/10/2004; 8:52:10 AM .

Click here to visit the Radio UserLand website. Valid CSS! Subscribe to "Gregg's Security News Aggregator" in Radio UserLand. Click to see the XML version of this web page. Click here to send an email to the editor of this weblog.