Gregg's Security News Aggregator

Currently, this "blog" is nothing more than a news aggregator which

gets security information from over 30 sources. As you'll note,

a number of the sources are not specific to security. Advanced

filtering is definitely needed.






Subscribe to "Gregg's Security News Aggregator" in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.
 

 

Monday, April 12, 2004
 

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
1.  Majority of Dell workers overseas. The majority of PC maker Dell's employees are located outside the United States, according to the company's annual report filed with securities regulators.
2.  Apple investigating complaints of iPod static. Apple Computer says it is looking into some users' complaints of sound problems--ranging from crackling sound to interrupted play--with the iPod Mini.
3.  Intel cuts Itanium fat with new chips, tech. The chipmaker announces two new Itanium processors for two-processor servers, another step in the company's efforts to eliminate price as a barrier to Itanium acceptance.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
4.  SEC Is Preparing to Charge Time Warner in AOL Ad Sales (washingtonpost.com). washingtonpost.com - The Securities and Exchange Commission is preparing documents alleging that Time Warner Inc. booked more than $400 million in questionable advertising revenue following the company's January 2001 merger with America Online Inc., according to people familiar with the investigation.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
5.  Will Linux For Windows Change The World?
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
6.  Vulns: HP AAA Server Denial of Service Vulnerability. HP AAA Server is used for authentication, authorization and accounting of user access at the network entry point.

HP has issued a notice, SSRT3622, stating that a remo...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
7.  Forensic Analysis of a Live Linux System, Part Two
8.  Cyber Terrorism: The new kind of Terrorism
9.  Keyspan Ships "USB Server"
10.  Migrating From Windows To Linux: Part 2
11.  Intel unveils processor with hard-wired security
12.  Sun's Solaris Takes Security Mainstream
13.  More security woes for Cisco
14.  Chat, Copy, Paste, Prison
15.  Nokia N-Gage 2 expected on 14th
16.  Browser-Based Attacks On The Rise, IT Pros Say
17.  Microsoft Outlook Express EML file Crash vulnerability
18.  TikiWiki Multiple Input Validation Holes Let Remote Users Inject SQL Commands, Conduct Cross-Site Scripting Attacks, and Upload Files
19.  SurgeLDAP 'user.cgi' Directory Traversal Flaw Discloses Files to Remote Users

11:16:42 PM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Controvery brews over Suicide Girls-branded print zine. Fleshbot points to some hoo-ha around the yet-to-be-launched print magazine bearing the Suicide Girls brand:
Will the new Suicide Girls Magazine be over before it even begins? We've just received a copy of a legal notice signed by nine writers whose work was supposed to appear in the debut issue denying the magazine the right to print any articles submitted by them; according to our tipster, "The writers, who are all without contract, lost interest in the magazine when it became clear that it would be little more than a hipsterized Maxim with nipples." (Hmm, "a hipsterized Maxim with nipples" ... doesn't sound so bad to us, actually.) We'll keep you posted.
I've seen a copy of the letter. I'm told by writers and photographers involved that none were being paid; all were said to be contributing gratis to get a cool, underfunded project off the ground. Link to previous BB post on SG's print plans. Suicide Girls online? Alive and well, and apparently not as directly involved with the magazine as many had assumed.

UPDATE: Suicide Girls founder Sean tells BoingBoing: "SG Pin-up (that's the official name of the mag, advertisers don't like the name Suicide in the title - shocking, no?) is a licensee of SuicideGirls. A company in New York is creating the magazine, which Missy and I get to approve. It is my understanding the Publisher and the editor had some disagreements about the direction of the mag and the editor is pissed off with a capital P and is throwing some kind of fit. I'm sure the publisher will work it out and get us an issue to approve, everything I've seen so far has been really good, but I'm not involved in the production of the magazine so I don't know if the stuff I've seen will be in the final first issue or not. In any case, news of our magazines demise has been reported prematurely, I hope. I think they're just going through the kinds of things you go through when creating a new magazine. Although honestly, I have no idea, as I've never worked in publishing and my only contact has been with the publisher and the art director, both of whom I think are doing a great job with everything they've shown me. I sent them the link and I'm sure they'll respond to you as well, but feel free to print my comments."

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
2.  Intel's latest P4 chip hard to get, PC makers say. Prescott Pentium 4s are in short supply, according to Dell and HP, causing some to turn to an older Pentium 4 design to keep up with demand for new desktop PCs.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  Some iPod Mini Users Report Headphone Problems (Reuters). Reuters - Some buyers of Apple Computer Inc.'s (AAPL.O) popular iPod Mini digital music players are reporting problems with the headphone jacks.
4.  Pfizer Says It Sues Web Site Selling Bogus Lipitor (Reuters). Reuters - Pfizer Inc. said on Monday it filed a lawsuit against the operator of an Internet site selling an unapproved version of its cholesterol-lowering drug Lipitor, the world's top-selling prescription medicine.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
5.  Forbes Reviews Google's Gmail [updated]
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
6.  BugTraq: [CLA-2004:837] Conectiva Security Announcement - mod_python. Sender: Conectiva Updates [secure at conectiva dot com dot br]
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
7.  Veritas and BEA vow to love Java together. Dependent software vendors By Ashlee Vance .
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
8.  Microsoft Moves High-Level Executives To Security Effort
9.  Happy spamiversary
10.  Microsoft shuffles execs to combat security flaws
11.  Concern grows over browser security

10:16:22 PM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Suicide Girls print zine DOA?. Fleshbot points to a controvery brewing around the yet-to-be-launched print magazine bearing the Suicide Girls brand:
Will the new Suicide Girls Magazine be over before it even begins? We've just received a copy of a legal notice signed by nine writers whose work was supposed to appear in the debut issue denying the magazine the right to print any articles submitted by them; according to our tipster, "The writers, who are all without contract, lost interest in the magazine when it became clear that it would be little more than a hipsterized Maxim with nipples." (Hmm, "a hipsterized Maxim with nipples" ... doesn't sound so bad to us, actually.) We'll keep you posted.
I've seen a copy of the letter. I'm told by writers and photographers involved that none were being paid; all were said to be contributing gratis to get a cool, underfunded project off the ground. Link to previous BB post on SG's print plans. Suicide Girls online? Alive and well, and apparently not as directly involved with the magazine as many had assumed.

UPDATE: A source close to the matter who asks to remain anonymous tells BoingBoing, "SG didn't have anything to do with the magazine per se. A company got in touch, and licensed the name for use on a magazine and was doing everything. SG got a final yes or no on content but had no involvement with day to day."

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
2.  RackSaver acquires company, renames. Blade server company RackSaver acquires a software developer, renames the combined firm Verari Systems and brings in a former Sun executive to take on management duties.
3.  Salesforce's new program offers flexibility. With the launch of its Spring '04 software, the company aims to make its programs easier for the nontechie to customize.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  When Does Usability Become a Liability?
5.  Rocket Science vs. Barry Bonds
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
6.  RackSaver buys software company, changes name. SAN FRANCISCO - RackSaver Inc., which sells servers and software used to build high performance computing clusters, has acquired systems management software vendor MPI Software Technology Inc., it announced Monday. RackSaver has also changed its name to Verari Systems Inc., effective immediately.
7.  IBM boosts autonomic computing resources. IBM on Tuesday will unveil its Autonomic Computing Zone, an online information resource featuring daily and weekly updates of information pertaining to autonomic computing.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
8.  Task Force Issues Network-Security Guidelines
9.  Adobe Acrobat Reader PDF file DoS vulnerability
10.  [waraxe-2004-SA#018 - Admin-level authentication bypass in phpnuke 6.x-7.2]
11.  [CLA-2004:838] Conectiva Security Announcement - squid
12.  Iomega Ships REV, Tape Rival

9:16:02 PM    comment []

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
1.  Task force puts security responsibility on CEOs. The National Cyber Security Partnership's fourth task force report offers guidelines for top-down information security programs.
2.  Energy Dept. to unveil details on supercomputer effort. The federal agency is targeting tax day to reveal which institution the next big thing in supercomputing will call home.
3.  Network Associates builds a better SpamKiller. The security firm adds pattern recognition based on Bayesian principles to its latest version of antispam software SpamKiller.
4.  VC exec to leave Juniper Network board. Venture capitalist Vinod Khosla is leaving the board of directors of Juniper Networks, which makes networking equipment, to make way for a designee from newly acquired NetScreen Technologies.
5.  Utopia awaits moment of truth. Pressure is rising, as cities involved in the controversial fiber-optic network in Utah decide whether to commit funds to back the project.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
6.  Microsoft Pays $440M to License InterTrust Patents
----------------------------------------------------------------------
Hack the Planet
----------------------------------------------------------------------
7.  Better late than never, the annual king cake arrived in the office today. Haydel's seems to do the best at shipping them in my experience.
8.  Be's $23 million is starting to look like chump change.
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
9.  E-mail fingerprinting attacks bounce storms. BOSTON - E-mail provider Everyone.net Inc. is trying to head off one type of spam with an encryption technology designed to create a unique signature for each outbound e-mail message.
10.  Salesforce.com launches into Spring 04. As regular as the four seasons, Saleforce.com unveiled this week its Spring 04 edition of its online CRM application.
11.  Microsoft bolsters executive ranks at security unit. SAN FRANCISCO - Microsoft Corp., as part of its battle against cybersecurity threats, is moving two senior executives to its security business and technology unit, the company said Monday.
12.  Sun gambles big on future chip design. SAN FRANCISCO - Sun Microsystems Inc.'s recent surprisedecision to drop work on its UltraSparc V processor could be seen as either a desperate cost-cutting measure by a troubled company, or a vote of confidence for the next generation of multithreaded, multicore "throughput computing" processors that Sun has been readying since its 2002 acquisition of Afara WebSystems Inc.
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
13.  Resignation, hope frame Microsoft patent deal. Settlement clears way for digital rights management features
14.  E-mail fingerprinting attacks bounce storms. Everyone.net fights spam
15.  Microsoft bolsters executive ranks at security unit. SQL Server exec makes move
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
16.  BugTraq: [CLA-2004:838] Conectiva Security Announcement - squid. Sender: Conectiva Updates [secure at conectiva dot com dot br]
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
17.  Fastest Rising: 25 smtp

8:15:44 PM    comment []

----------------------------------------------------------------------
Penny Arcade!
----------------------------------------------------------------------
1.  A Crown Of Thorns.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Calif. Lawmaker Moves to Block Google's Gmail (Reuters). Reuters - A California state senator on Monday said she was drafting legislation to block Google Inc.'s free e-mail service "Gmail" because it would place advertising in personal messages after searching them for key words.
3.  Annoying Web Ads Redux (Ziff Davis). Ziff Davis - There are more effective and less annoying alternatives to pop-up ads.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  Second Round of EU Patent Fight, Coming Up
5.  Forbes Reviews Google's Gmail
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
6.  Resignation, hope frame Microsoft patent deal. The announcement Monday of a settlement in the patent dispute between InterTrust Technologies Corp. and Microsoft Corp. marked a new beginning for the Santa Clara, California, company and the end of another long and ultimately fruitless battle for the Redmond, Washington, software maker.
7.  IAnywhere updates Web application software.  IAnywhere Solutions Inc. released an upgrade to M-Business Anywhere on Monday with features designed to make the mobile application software more attractive to corporate users.
8.  IVDR removable hard disk drives to finally appear. LONDON - A removable hard disk drive system first unveiled more than two years ago will see its commercial launch later this month. IO Data Device Inc., a Tokyo-based manufacturer of computer peripherals, will put on sale a drive and disk based on the IVDR (Information Versatile Disk for Removable usage) standard in late-April, it said Monday.

7:15:24 PM    comment []

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
1.  E-Book album works on TVs, PCs. E-Book Systems' $299 FlipAlbum Recorder burns, stores and displays digital photos, interacting with televisions and computers.
2.  Bright picture for digital TV sales, study says. In-Stat/MDR forecasts that worldwide shipments of digital TV sets will reach 93 million units in 2008, up from a projected 17 million units this year.
3.  Briefly: E-Book album works on TVs, PCs. Plus: FTC to explore RFID consumer implications...Connecticut, Ohio join Oracle suit...Yahoo's Semel gets raise, stock...Infosys launches consulting unit.
4.  Proxim names new COO, CFO. The company promotes Kevin J. Duffy to COO and appoints Michael D. Angel as its chief financial officer.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
5.  Sun Cuts UltraSparc V and Gemini Chips (NewsFactor). NewsFactor - With an eye to the bottom line, Sun Microsystems (Nasdaq: SUNW) has abandoned plans for development of two server processors, UltraSparc V and Gemini.
6.  Chill Pill May Cool Cell Phones (NewsFactor). NewsFactor - University of Wisconsin researchers say they have developed a "chill pill" to help cool down overheated cell phones and improve signal quality while using less battery power.
7.  Intel Delivers New Mobile Processors (NewsFactor). NewsFactor - Intel (Nasdaq: INTC) has unveiled processors designed to take advantage of 3G wireless networks, which are delivering multimedia and security capabilities that blur the lines between notebook PCs and smartphones.
8.  Who Wants To Regulate VoIP? (NewsFactor). NewsFactor - Likewise, Federal Communications Commission Chairman Michael Powell has stated many times he would like to see a "light regulatory touch" applied to this burgeoning technology. Indeed, a recent FCC action on this matter -- its ruling that Free World Dialup, a broadband VoIP service, is an information service and not subject to phone service regulations -- suggests he will push in this direction.
9.  Microsoft Settles InterTrust Patent Suit (AP). AP - In settling with InterTrust Technologies Corp., Microsoft Corp. could be gaining a big advantage in the growing market for distributing music and videos online — to the detriment of competitors who now risk getting caught in InterTrust patent squabbles of their own.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
10.  A New Type Of Realtime Blocklist: The SURBL
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
11.  Computer Associates guilt spreads. Three former Computer Associates executives admit illegally boosting the software maker's earnings.
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
12.  Mixed results predicted for Q1 hardware earnings. Revenue warnings last week from cell-phone maker Nokia Corp. and hard-drive manufacturer Seagate Technology LLC unnerved some investors looking for continued evidence of a technology recovery. But the majority of signs point to a solid, if unspectacular, first quarter for several hardware companies expected to report earnings this week, according to analysts.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
13.  Cisco Systems Security Summit 2004 Focuses on Self-Defense
14.  Florida Hospital Cuts Cord, Goes Wireless
15.  Browser-Based Attacks On The Rise, IT Pros Say
16.  Free Internet Security Database Goes Live
17.  Security Task Force To CEOs: Make Improvement, Or Else
18.  LCDProc Multiple System Compromise Vulnerabilities
19.  Crackalaka Denial of Service Vulnerability
20.  Nuked-KlaN Arbitrary File Inclusion
21.  X-Micro Access Point Default Username and Password
22.  Monit
23.  SurgeLDAP Arbitrary File Retrieval Vulnerability
24.  Possible DoS on Linux kernel 2.4 and 2.6 using sigqueue overflow.
25.  TikiWiki Multiple Vulnerabilities
26.  Citadel/UX 6.20 fixes local permissions vulnerability
27.  UPDATE: Cisco Security Notice: Dictionary Attack on Cisco LEAP Vulnerability
28.  Gnome nautilus bug
29.  Multiple Vulnerabilities In Tiki CMS/Groupware [ TikiWiki ]
30.  IE 6 Print Without Prompt
31.  Crackalaka Denial of Service Vulnerability
32.  [waraxe-2004-SA#017 - User-level authentication bypass in phpnuke 6.x-7.2]
33.  eMule
34.  Nuked-KlaN Arbitrary File Inclusion
35.  BID 7482, bug in OpenSSH (Still in FreeBSD-STABLE)
36.  X-Micro Access Point Default Username and Password
37.  SurgeLDAP Arbitrary File Retrieval Vulnerability
38.  TikiWiki Multiple Vulnerabilities
39.  Mailbag - Malware Everywhere, IE Unauthorized Printing
40.  Network Security Has A Lot of Growing Up to Do
41.  How Security Firms Exploit Us

6:15:04 PM    comment []

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
1.  Microsoft's eye on data protection. The software giant's settlement with InterTrust reflects a growing focus on digital rights management across a wide spectrum of computing tasks.
2.  Microsoft shuffles execs to combat security flaws. Amid continued criticism over holes in its software, Microsoft moves Gordon Mangione and Rich Kaplan into the unit charged with minimizing those vulnerabilities.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
3.  Microsoft Settles Another Legal Dispute (PC World). PC World - Software giant will pay $440 million to end InterTrust case.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
4.  When Does Usablility Become a Liability?
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
5.  Security Flaws Database Goes Live
6.  Browser-Based Attacks On The Rise, IT Pros Say
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
7.  BugTraq: [waraxe-2004-SA#017 - User-level authentication bypass in phpnuke 6.x-7.2]. Sender: Janek Vind [come2waraxe at yahoo dot com]
8.  BugTraq: [waraxe-2004-SA#018 - Admin-level authentication bypass in phpnuke 6.x-7.2]. Sender: Janek Vind [come2waraxe at yahoo dot com]
9.  BugTraq: UPDATE: Cisco Security Notice: Dictionary Attack on Cisco LEAP Vulnerability. Sender: Cisco Systems Product Security Incident Response Team [psirt at cisco dot com]
10.  BugTraq: Citadel/UX 6.20 fixes local permissions vulnerability. Sender: [error at citadel dot org (IO ERROR)]
11.  Vulns: RSniff Remote Denial of Service Vulnerability. RSniff (Remote Sniff) is a network analyzer utility designed for Linux.

A denial of service vulnerability has been identified in the application that may allow remote at...

----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
12.  NH judge throws out paedo chat-log evidence. Chat, Copy, Paste, Prison By Mark Rasch, SecurityFocus .
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
13.  Cheaper Shared Hosting Imperils Security
14.  Enterprise Storage Snapshots
15.  Oblix Simplifies User Identity Management for E-business Partners
16.  Foundry Intros Secure Enterprise Switches
17.  Columnists: Chat, Copy, Paste, Prison

5:14:44 PM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Felten's Grand Unified Theory of Filesharing. On "Freedom to Tinker," Ed Felten writes:
Recently we've seen several studies of the impact of filesharing on CD sales. We have enough data now to draw some (very) preliminary conclusions, assuming the studies are correct. Despite the apparent contradictions between the various studies, I think there is a plausible theory that can explain them all -- a Grand Unified Theory of Filesharing.
Link
2.  H is for Hentai: Jlist founder talks about Japan pop culture. (Some links in post not worksafe.) In today's Wired News, I interview Peter Payne, founder of J-list. They sell products for all ages, but in their adults-only section you'll find everything from "Cup o' Pussy" sex toys to "Poop Aid" and "Kanji Quiz" toilet paper to adult computer games to porn DVDs that combine the time-honored themes of bukkake and car-racing (cover snapshot below). Along the way, Payne offers some insights on why Japanese pop culture is so delightfully wacky. Oh, and he schools us on the history of bukkake. Hint: It's all Macarthur's fault. Snip:
It's hard for non-Japanese to understand why something becomes popular, or is perceived as delightful or funny in Japan. In the Japanese language, describing the color green -- a green stoplight for instance -- they say "blue." Looking around this country through the eyes of a gaijin -- a foreigner -- things are just different.

Take the bad words, for instance -- even the letter "h" is loaded. If a guy grabs a girl's breasts in a Japanese porn video, she might say "H!" with a Japanese accent -- like, ACH-ay. That's because H is for hentai, sexually explicit comics. It's like saying, "Pervert!" So, "H-suru" in Japanese means "to have sex." You don't want to actually say "have sex," so it's like saying, "do it."

Link

3.  Hot pepper spray reverses "permanent" loss of smell. The cold remedy Zicam (which I swear by) has been under attack for possibly causing permanent anosmia (loss of the sense of smell). But a new product on the market called sinus Buster, made from capsaicin (the ingredient that makes chili peppers hot) might reverse anosmia when you squirt it up your nose.
"When my husband ordered the sinus buster over the internet I was skeptical. But I said okay I’ll give it a try. As soon as we got it I used it that night and the next day I noticed I could smell certain odors. I couldn't believe it. The first thing I smelled was my daughter coming home after a night of partying, and I could smell cigarette smoke all over her. I had to bring her coat out to the garage because the smoke odor was so strong. Then my daughter told me that’s how she always smells after going out, but I never smelled the smoke before. It's absolutely amazing," Anderson added.
I've always had a pretty bad sense of smell. Maybe I should give this stuff a try. Link

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
4.  Canon shoots at Chinese pirates. Although the printing and imaging giant is enjoying booming sales growth in the country, counterfeit goods are costing it millions. It's taking aim with several new initiatives.
5.  FTC to explore RFID consumer implications. The Federal Trade Commission will host a workshop on June 21 that will include privacy and security issues around consumer uses of radio frequency identification technology that have riled privacy advocates.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Verari Sets Sights on 'Ultimate Blade System' (Ziff Davis). Ziff Davis - The company formerly known as RackSaver addresses cooling and management issues of dense servers.
7.  'Far Cry' Game Challenging, Gorgeous (AP). AP - "Far Cry" is a challenging, gorgeous new video game that should please first-person shooter fans — provided you have a powerful computer and a stomach for cliched science fiction.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
8.  Son of SATAN? Weighing Security Software's Risks
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
9.  BugTraq: Monit <= 4.2 Remote Root Exploit. Sender: Eye on Security India [eos-india at linuxmail dot org]
10.  BugTraq: Possible DoS on Linux kernel 2.4 and 2.6 using sigqueue overflow.. Sender: Nikita V dot Youshchenko [yoush at cs dot msu dot su]
11.  Vulns: Crackalaka IRC Server Remote Denial of Service Vulnerability. Crackalaka is an IRC server written in C.

A denial of service vulnerability has been identified in the server that may allow remote attacker to cause the server to crash...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
12.  LCDProc Multiple System Compromise Vulnerabilities
13.  Survey: Companies diversifying security spending
14.  Remote Root Exploit for Monit
15.  Sortie de la version 1.2-2 de Free-EOS
16.  IIS6 sécurisé par défaut ?
17.  No-Regrets Microsoft May Restore Security, but Not Trust
18.  A Need for Greater Cybersecurity
19.  Qi Systems Supplies Technology for Cale Systems Payment Terminals
20.  Virus Makers' War Bombs Businesses
21.  Dot-com Bust Isn't Over For Workers
22.  New Intel Chips Ensure Better Security
23.  Microsoft pays $440 million to settle InterTrust patent suit
24.  Software industry had uneven recovery
25.  Fastest Rising: 80 www
26.  AzDGDatingLite Cross Site Scripting Vulnerability
27.  NukeCalendar Multiple Vulnerabilities
28.  Crackalaka 1.0.8 Denial of Service Vulnerability
29.  X-Micro WLAN 11b Broadband Router Backdoor Vulnerability

4:14:26 PM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Xeni on NPR: US government crackdown on P2P. Today on the NPR program "Day to Day," I talk with host Alex Chadwick about recent actions in Congress and the Department of Justice to crack down on filesharers, and new studies that show a rise in P2P popularity. Link for today's show, scroll down for online audio of "Peer-to-Peer File Sharing On the Rise"
2.  Sex and gravestones. Online photo gallery exploring the sensual female form in cemetary memorial markers.

Link (Via MeFi)

3.  Persian blogger Hoder on how to build a blogosphere. Hossein Derakhshan publishes this insightful post on how to foster the development of "a local blogosphere in a community, based on the experience of Iranians." Link
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
4.  Concern grows over browser security. Computer viruses and worms still top the list of corporate security threats, but browser-based attacks could be the next big issue.
5.  Citibank to absorb Indian outsourcing firm. The U.S. banking giant plans to pay about $126 million to take over e-Serve International, whose services include providing call centers.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Cell Phones Alter National Park Landscape (AP). AP - When Sean Morrissey scaled California's 14,491-foot Mount Whitney for the first time a few years ago, he couldn't wait to take in the view. A woman who made the climb at the same time couldn't wait to dial her cell phone.
7.  Whether laser or inkjet, technology behind printers was pioneered by HP (SiliconValley.com). SiliconValley.com - We take it for granted: Click an icon on your desktop computer and a document is printed in seconds. Yet there's an enormous amount of engineering and miniaturization behind today's laser and inkjet printing, much of it pioneered by Hewlett-Packard.
8.  Senior Execs Must Tackle Cyber-Security, U.S. Report Says (Reuters). Reuters - Corporate chieftains must take responsibility for their computer networks to secure them from viruses, worms and other online attacks, an industry task force said on Monday.
9.  Music Sales Strong Despite Digital Piracy (AP). AP - Online file-sharing and other digital piracy persist, but a gradual turnaround in U.S. music sales that began last fall picked up in the first quarter of this year, resulting in the industry's best domestic sales in years.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
10.  Interview With Trolltech's CEO and CTO Eirik Eng
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
11.  Columnists: Chat, Copy, Paste, Prison. When a New Hampshire judge threw out chat-log evidence against an accused pedophile, he illustrated just how jumbled and confused Internet privacy law can be.
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
12.  Vulns: IBM HTTP Server PQ86671 and PQ85834 Fixes Released - Multiple Vulnerabilities Fixed. IBM has announced the release of PQ86671 and PQ85834 cumulative fixes to address various issues in IBM HTTP Server.

PQ86671 has been released to address an unspecified d...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
13.  A Need for Greater Cybersecurity
14.  A Need for Greater Cybersecurity
15.  Lack of privacy may be a project-killer
16.  Infocus: Forensic Analysis of a Live Linux System, Pt. 2

3:14:03 PM    comment []

----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
1.  Patent popourri. Microsoft cuts another big check, this time to InterTrust, while AMD settles with Integraph. Patent disputes have become so commonplace that there are even firms that specialize in licensing intellectual property for the sole purpose of litigation. By Eric Bangeman.
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
2.  New book from House Industries. House Industries BookHouse Industries, the world's greatest typeface designers, have published a 240-page book chronicling their work. I haven't seen the book itself, but the sample spreads shown here are stunning. The $69 book has a 32-page section on House's design process and it comes with four fonts.
Link
3.  Killer mutant staph infection on the rise. Scary Business Week article about an anti-biotic resistant strain of staph.
For the past 30 years, hospitals have been battling a mutant form called methicillin-resistant S. aureus (MRSA) that is resistant to penicillin-related antibiotics and is especially lethal. Now this drug-defying strain is showing up in the general population. It can be deadly if it enters the blood stream, heart, or lungs, killing anywhere from 25% to 43% of its victims.

For years, the best treatment for MRSA was the powerful antibiotic vancomycin. But even this weapon has failed against new strains of staph that have emerged. Some infectious-disease experts predict that by 2010, 40% of staph infections will be vancomycin-resistant.

Link (Thanks, Scott!)
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
4.  Sun plots Java comeback. With the free release of Java Application Server Platform Edition 8, Sun launches a strategy to gain ground in the Java software market it created.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
5.  Mobile Phone Tracking Success Story for Locate Mobiles.com and Trace A Mobile.com (featureXpress). featureXpress - Mobile Phone Tracking sites Locate Mobiles.com and Trace A Mobile.com report huge increase in subscriptions
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
6.  Testing Frameworks in Python
7.  Hugo Nominations Announced
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
8.  Vulns: Apache Web Server Multiple Module Local Buffer Overflow Vulnerability. A vulnerability has been reported to exist in Apache that may allow a local attacker to gain unauthorized access by executing arbitrary code on a vulnerable system. The c...
9.  Vulns: Apache Connection Blocking Denial Of Service Vulnerability. Apache is prone to an issue that may permit remote attackers to cause a denial of service issue via a listening socket on a rarely accessed port. The issue is caused by ...
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
10.  Microsoft Unrepentant About System Security?
11.  Free e-mail address for every Belgian
12.  NGO's call for a halt to biometric passports
13.  Report about safe Internet conference in Warsaw
14.  Irish e-voting system under scrutiny
15.  Dutch spammer bevelander fined 25.000 US dollar
16.  French senate to vote on controversial digital economy law
17.  EU project on privacy and identity management
18.  EU document - "GENETIC DATA"
19.  Google seeks consensus on privacy issues
20.  A question of rights, safety: Symposium tackles privacy
21.  Privacy concerns surface at CeBIT RFID debate
22.  Panel: Industry, government must cooperate on privacy
23.  [Swedish] Ny skrift från Datainspektionen: Vi skyddar ditt privatliv i IT-samhället
24.  [Swedish] Datainspektionen publicerar: Magazin DIrekt 1/04 - Kampen mot skräpmejlen skärps
25.  LCDProc Multiple System Compromise Vulnerabilities
26.  Top Port: ftp 21

2:13:42 PM    comment []

----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
1.  Intel debuts new CPUs for handhelds. Battery technology has not been keeping up with the demand for more powerful devices. Intel creates a new line of CPU designed exclusively for low-power devices. By Matt Woodward.
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
2.  Tracking campaign contributions online. Great piece by Joanna Glasner in today's Wired News about a number of websites that help you track campaign contribution history of US politicians. Link
3.  Canned beverage chiller. This infomercial-ish device uses water an ice to quickly chill a can of beer (or soda). It works by spinning the can in a bath of very cold water. The can also wobbles slightly, to push the layer of warmed water away from the can. Link (via ZZZ)
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
4.  Gateway offers fast support, for a fee. Under the PC maker's new Priority Access program, small businesses will pay at least $39 per user for a year of expedited support.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
5.  Configuresoft Targets Mobile Safekeeping (Ziff Davis). Ziff Davis - The new release of Enterprise Configuration Manager includes a mobile client that can initiate contact with the ECM Server whenever the mobile workstation is connected to the network.
6.  Daum Communications Sues Microsoft (AP). AP - A South Korean Internet portal filed an antitrust lawsuit Monday against Microsoft Corp., alleging the U.S. computer software giant violated trade regulations by tying instant messenger software to its Windows operating system.
7.  Mobile Phone Tracking Success Story for Locate Mobiles.com and Trace A Mobile.com (featureXpress). featureXpress - Mobile Phone Tracking sites Locate Mobiles.com and Trace A Mobile.com report huge increase in subscriptions
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
8.  What Should a Documentary Filmmaker Ask About Offshoring?
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
9.  Intergraph, AMD reach Clipper patent settlement. Having settled its patent dispute with Intel Corp., Intergraph Corp. announced Monday it has also settled a patent lawsuit with Intel rival Advanced Micro Devices Inc. (AMD) for a one-time licensing fee of $10 million plus additional payments.
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
10.  The Linux Threat
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
11.  Infocus: Forensic Analysis of a Live Linux System, Pt. 2. This article is the second of a two-part series that provides step-by-step instructions for forensics of a live Linux system that has been recently compromised.
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
12.  Vulns: 1st Class Internet Solutions 1st Class Mail Server Multiple Input Validation Vulnerabilities. 1st Class Mail Server is an email/web mail server solution developed and maintained by 1st Class Internet Solutions.

Multiple vulnerabilities have been identified in the...

13.  Vulns: Racoon IKE Daemon Unauthorized X.509 Certificate Connection Vulnerability. racoon is an IKE (Internet Key Exchange) daemon included in KAME's IPsec utilities and the Linux 2.6 Kernel port IPsec-Tools.

The racoon IKE daemon is prone to a securit...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
14.  Hosting Issues and the Price/Security Trade-Off
15.  Books Look at Security Inside and Out
16.  Courion App Eases User Authentication
17.  Microsoft's Security Dilemma
18.  NetScreen Unleashes Brawny, Multifunction Security Appliance
19.  Senior Execs Must Tackle Cyber-Security, U.S. Report Says (Reuters)

1:13:24 PM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Classifying blobs as faces. magritte MIT researchers report in the journal Science that the brain relies on context to compensate for images that are noisy or degraded. For example, if you look at a person from very far away, their face may look like a blurry blob with no discernible features at all. Still, thanks to the contextual cues (in this case, the attached body), you still can classify the blob as a face. That seems obvious, of course. What's novel about this work is that the researchers used functional magnetic resonance imaging to actually show that "the specific brain region known to be activated by clear images of faces is also strongly activated by very blurred images, just so long as surrounding contextual cues are present." Of course, surrealist artists like Rene Magritte have known this for years. Link
2.  New book from House Industries. House Industries BookHouse Industries, the world's greatest typeface designers, have published a 240-page book chronicling their work. I haven't seen the book itself, but the sample spreads shown here are stunning. The $69 book has a 32-page section on House's design process and it comes with four fonts. Link
3.  Kevin Sites in Iraq -- "Toppled". Blogger and MSNBC combat correspondent Kevin Sites has returned to assignment in Iraq after a short break home in the US. A year ago last Friday, the famous statue of Saddam Hussein in Baghdad was toppled; Kevin has posted a new essay about the state of Iraq since then. But in light of the multiple hostage situations in Iraq right now, I want to mention one thing that he does not. This also marks the one year anniversary of his capture and subsequent release by Iraqi Fedayeen soldiers. We're glad that this story ended with Kevin free and unharmed. Snip from his latest post:

How did things turn so bad so quickly--in which a scattered insurgency gains broader support and the coalition Shiite alliance begins to crack? Some critics say it's a combination of a year of mismanagement by the Coalition Provisional Authority in which the lives of most Iraqis have not improved much since the reign of Saddam Hussein and the hardball tactics of occupation military forces that are alienating the people they were intending to help.

One member of a Ramadi-based Sunni insurgent cell who calls himself "Continuous Jihad" says the Coalition hasn't delivered on anything. "They break into houses in the middle of the night and arrest innocent people," he says, "and they've given us less then we had under Saddam. People are jobless, they distort our religion, and they're taking our oil and living in Saddam's palaces. Nothing has changed. They've become like him, yet they pretend they're here to help us."

Link to "Toppled", blog post from Iraq by Kevin Sites, Link to discussion forum.
4.  Prehistoric cat people. Archaeologists have found 9,500-year-old cat bones on the island of Cyprus, where felines are not native. The cat was buried beside a human skeleton, suggesting that it was a pet. Previously, historians though that the Egyptians were the first to domesticate cats about 4,000 years ago. According to the researchers, the eight-month-old cat may have been put to sleep so it could be buried with its caretaker. Poor kitty. Link

5.  Trip Hawkins starts a game company for mobile phones. Here's an article I wrote about Electronic Arts and 3D0 founder Trip Hawkin's new mobile games company, Digital Chocolate. Link
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
6.  Microsoft, InterTrust iron out lawsuit. The software giant ends another outstanding lawsuit, announcing a $440 million settlement and licensing deal with the digital rights management company.
7.  AMD settles Intergraph patent claims. The chipmaker will pay Intergraph a maximum of $25 million over the next four years.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
8.  Mobile Phone Tracking Success Story for Locate Mobiles.com and Trace A Mobile.com (featureXpress). featureXpress - Mobile Phone Tracking sites Locate Mobiles.com and Trace A Mobile.com report huge increase in subscriptions
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
9.  Quantum Cryptography Leaving the Lab
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
10.  Microsoft settles patents case. Microsoft pays $440m to end a tussle over patents with InterTrust, a media software firm.
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
11.  E-mail provider tries message fingerprinting. Everyone.net to unveil protection service that can stop bounced e-mail messages
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
12.  Infocus: Forensic Analysis of a Live Linux System, Part Two. This article is the second of a two-part series that provides step-by-step instructions for forensics of a live Linux system that has been recently compromised.
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
13.  Vulns: Open WebMail Arbitrary Directory Creation Vulnerability. Open WebMail is an open-source web mail package written in Perl.

A vulnerability has been identified in the application that may allow remote attackers to create arbitra...

14.  Vulns: Sun Cluster Global File System Denial of Service Vulnerability. Sun Cluster is the high-availability software package maintained and distributed by Sun Microsystems. It is available for the Unix platform.

A vulnerability has been id...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
15.  Fastest Rising: 1025 blackjack
16.  More rss feeds from SecurityFocus
17.  Elsewhere: Cyber Terrorism : The new kind of Terrorism
18.  Elsewhere: Canon fire fails to stop pirates
19.  TREND MICRO's free online virus scanner
20.  WORM_SDBOT.N
21.  BKDR_AGOBOT.HL
22.  WORM_SDBOT.SM

12:13:02 PM    comment []

----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
1.  Science Monday. In a slightly-delayed edition of Science Sunday, zAmboni covers cicadas, a 3D ultrasound system, the rat genome, and even a Jade Science Moment By Eric Bangeman.
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
2.  Mysterious power outage KOs casinos in Vegas. Our pals at Gawker forward this tip from reader Audrey Bath about a bizarre power outage affecting casinos and hotels in Las Vegas for the past couple of days -- sounds uncannily like a scene from a recent movie filmed at the affected property:

I thought you might be amused to learn that Las Vegas' premiere hotel, the 5-star Bellagio Hotel, lost all power at 2:30am Sunday (Easter) and power has not yet been restored. As of right now, there is no access to their website, and no updated information. It is THE big story in Las Vegas.

No definitive word yet on why no power, but it appears a truck hit a transformer behind the hotel, on the new Frank Sinatra Drive. The hotel is said to have been 2/3 full (2,000 guests) and thousands of employees have not been able to go to work. All of the hotels' restaurants are closed, every gaming table and slot machine is dark, even the fountains are not operating. There are no elevators, no escalators, no Cirque du Soleil. Only the Bellagio Hotel is affected by the outage, and generators have not kicked in. (It's eerily like "Ocean's Eleven" which was filmed in part at the hotel 3 years ago.)

Some guests have insisted on remaining at the dark hotel; all others have been transferred to the "sister properties" like the Mirage, Treasure Island and MGM Grand. My husband is a chef at Picasso, the top restaurant in Las Vegas, located at the Bellagio, and he was told not to return to work tomorrow because power will not be back on. Power is not expected to be restored until possibly late Monday night. It's a very weird scene.

Link to story in Las Vegas Review-Journal
3.  Wax museum of country music stars on eBay.

BoingBoing reader kowgurl says, "About 50 wax figures--all your favorite country and western stars. I saw it this weekend--they are creepy as hell. The sets are not 'museum quality' by any stretch. I would love to bid on it!"
Link

4.  H is for Hentai: Wired Interview with Jlist.com founder. In today's edition of Wired News, I interview Peter Payne -- founder of J-list. The San Diego-born expat has been running this online business with his Japan-born wife since 1996 -- they sell everything from "Cup o' Pussy" sex toys to "Poop Aid" and "Kanji Quiz" toilet paper to adult anime. Along the way, Payne offers some insights on why Japanese pop culture is so delightfully wacky. In the interview, Payne also schools us on the history of bukkake.
It's hard for non-Japanese to understand why something becomes popular, or is perceived as delightful or funny in Japan. In the Japanese language, describing the color green -- a green stoplight for instance -- they say "blue." Looking around this country through the eyes of a gaijin -- a foreigner -- things are just different.

Take the bad words, for instance -- even the letter "h" is loaded. If a guy grabs a girl's breasts in a Japanese porn video, she might say "H!" with a Japanese accent -- like, ACH-ay. That's because H is for hentai, sexually explicit comics. It's like saying, "Pervert!" So, "H-suru" in Japanese means "to have sex." You don't want to actually say "have sex," so it's like saying, "do it."

Link
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
5.  BEA, Veritas to tune tools in utility alliance. The alliance calls for the two companies' engineering groups to help products such as BEA's WebLogic and Veritas' OpForce work better together in corporate data centers.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Sun's Solaris Takes Security Mainstream (Ziff Davis). Ziff Davis - The upcoming release of Solaris 10 is the latest sign that crucial security features are making their way to mass-market platforms.
7.  Microsoft Settles Another Legal Dispute (PC World). PC World - Software giant will pay $440 million to end InterTrust case.
8.  Sun Openly Ambivalent (Ziff Davis). Ziff Davis - The company needs to develop a focused open-source plan.
9.  Mobile Phone Tracking Success Story for Locate Mobiles.com and Trace A Mobile.com (featureXpress). featureXpress - Mobile Phone Tracking sites Locate Mobiles.com and Trace A Mobile.com report huge increase in subscriptions
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
10.  A Need for Greater Cybersecurity
11.  Two Takes on the Java Dilemma
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
12.  Judge rejects Enron plea bargain. The wife of ex-Enron executive Andrew Fastow faces trial in June after a judge rejects her plea bargain.
13.  Microsoft settles patents case. Microsoft pays $440m to end a tussle over patents with InterTrust, a California software firm specialising in digital media systems.
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
14.  Survey: Companies diversifying security spending
----------------------------------------------------------------------
[O.S.S.R]
----------------------------------------------------------------------
15.  Linux a 'Threat' to US National Security?
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
16.  Elsewhere: Cyber Terrorism : The new kind of Terrorism. Computers and the internet are becoming an essential part of our daily life. They are being used by individuals and societies to make their life easier. They use them for...
17.  Elsewhere: Canon fire fails to stop pirates. SHANGHAI, China--China is Canon's fastest-growing market worldwide. At the same time, the country is posing the biggest piracy problem for the company.

Excluding Japan,...

----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
18.  Vulns: Scorched 3D Server Memory Corruption Vulnerabilities. Scorched 3D is a multiplayer game for Linux/Unix variants and Microsoft Windows operating systems.

The Scorched 3D server component has been reported prone to multiple m...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
19.  Â èíåò ïîä ÷óæèì àêêàóíòîì - óãîëîâùèíà

11:12:43 AM    comment []

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  Mobile Phone Tracking Success Story for Locate Mobiles.com and Trace A Mobile.com (featureXpress). featureXpress - Mobile Phone Tracking sites Locate Mobiles.com and Trace A Mobile.com report huge increase in subscriptions
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
2.  UML Fever
3.  The 'Pervasive Computing' Community
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
4.  Microsoft settles patents case. Microsoft pays $440m to settle patents legal cases with InterTrust, a California software firm dealing with digital media payments.
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
5.  SiteScape updates collaboration offering. SiteScape on Monday rolled out an updated version of its Web-based collaboration product dubbed Enterprise Forum 7.1.
6.  E-mail fingerprinting attacks bounce storms. E-mail provider Everyone.net is trying to head off one type of spam with an encryption technology designed to create a unique signature for each outbound e-mail message.
7.  Microsoft to settle with InterTrust for $440M. Less than two weeks after settling its legal disputes with Sun Microsystems Inc., Microsoft Corp. said on Monday that it reached an agreement with InterTrust Technologies Corp. to settle a long-running case over InterTrust's digital rights management software.
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
8.  Vulns: Multiple Vendor H.323 Protocol Implementation Vulnerabilities. The H.323 protocol is used in various telephony and multimedia products in IP networks. It may be used in hardware products supporting multimedia conferencing as well as...
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
9.  University of Texas Police Post Warning re: Bogus ATM Devices
10.  OS X MP3Concept: Misplaced Fear?
11.  Cisco Wireless Solution Promotes Enhanced Patient Care at UCSF Medical Center
12.  Cisco Systems Security Summit 2004 Focuses on Self-Defence
13.  Re: IPv4 fragmentation --> The Rose Attack
14.  Re: IPv4 fragmentation --> The Rose Attack
15.  New Intel Chips Ensure Better Security (AP)

10:12:22 AM    comment []

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  Macworld Expo Boston exhibitor list first look (MacCentral). MacCentral - IDG World Expo on Monday offered a first look at some of the companies that will be exhibiting at this summer's Macworld Conference & Expo, which is returning to Boston, Mass. from July 12 - 15, 2004 at the new Boston Convention & Exhibition Center.
2.  Toshiba Investing in Digital Products (AP). AP - Japanese electronics maker Toshiba Corp. plans to invest 1 trillion yen ($9.4 billion) over the next three years to develop digital products and electronic devices.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
3.  Creative Commons Audiobooks
4.  The Importance of Collaborative Development
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
5.  Intel launches next-generation XScale processor. Intel Corp. updated its XScale processor family Monday with the launch of the PXA270 series, formerly known by its Bulverde code name, at the Intel Developer Forum in Taipei.
6.  E-mail provider tries message fingerprinting. E-mail provider Everyone.net Inc. says it has a new program to protect e-mail users from one by-product of the plague of unsolicited commercial ("spam") e-mail: bounced e-mail messages.
7.  BEA, Sun advance their Java app servers. BEA Systems Inc. and Sun Microsystems Inc. each advanced their Java application servers Monday. BEA offered customers a path to utility computing through a partnership with Veritas Software Corp., while Sun released a low-end version of its application server that supports the latest enterprise Java standard.
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
8.  BugTraq: Re: IPv4 fragmentation --> The Rose Attack. Sender: [gandalf at digital dot net]
9.  Vulns: Linux IPRoute Spoofed Kernel Messages Denial Of Service Vulnerability. iproute is a freely available, open source network suite for the Linux platform.

A problem has been discovered in iproute when handling messages from the kernel. Becaus...

----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
10.  AMD gives up processor profits to Intergraph. Patent payout By Ashlee Vance .
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
11.  An antitrust antidote for software security
12.  Security focus or not, can an unrepentant Microsoft be trusted?
13.  OS X Trojan horse is a nag
14.  Cybersecurity task force sparks debate
15.  Syllabus: A Balancing Act? Openess and Security on Campus "MIT's network manager and security st...
16.  TROJ_TOPGER.AG
17.  MAC_MP3CONCEPT.A
18.  HTML_NETSKY.P
19.  VBS_STARTPAGE.K
20.  WORM_RANDEX.IR
21.  WORM_AGOBOT.ED
22.  VBS_INOR.AF
23.  WORM_SDBOT.SN

9:12:02 AM    comment []

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  Microsoft settles with Intertrust for 440 million dollars (AFP). AFP - Microsoft announced that it would pay InterTrust Technologies 440 million dollars to license the company's patent portfolio, settling InterTrust's lawsuit against the software giant.
2.  AOL Offering Non-Subscribers Some Content (AP). AP - A behind-the-scenes technical change at America Online will allow the company to offer some of its content to non-subscribers in an attempt to broaden AOL's audience beyond its members-only "walled garden."
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
3.  US music bounces back from slump. Music sales in the US rise by 9% in the first three months of 2004, signalling an end to a four-year dip.
4.  Workers find voice on the net. Trade union activists in London have turned to the internet to broadcast news about workers' rights.
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
5.  An antitrust antidote for software security
6.  Security focus or not, can an unrepentant Microsoft be trusted?
7.  OS X Trojan horse is a nag
8.  Cybersecurity task force sparks debate
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
9.  Security Focus: Vulns - Opera Web Browser Remote IFRAME Denial Of Service Vulnerability "may exp...
10.  Australian IT: Intel builds in security "hard-wired security features that can enforce copy prot...
11.  Information Week: Prove Security Is Worth It "IT professionals will soon be challenged to prove,...
12.  News: Intel unveils processor with hard-wired security

8:11:43 AM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  MSFT pays $440MM to settle DRM patent dispute. Microsoft has settled its patent dispute with Sony/Philips, who acquired a company called Intertrust solely for its patent on DRM, which conflicted with the patent that Microsoft got when it took a controlling interest in another company called ContentGuard.

Microsoft is paying $440m to settle its long-running digital rights management (DRM) patent infringement dispute with Intertrust. The one-off pay-out means that Microsoft customers can use their software "as they are intended to be used without requiring a license from InterTrust".

Link

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
2.  Happy spamiversary. Ten years after the Internet first woke up to unsolicited marketing attacks, outrage has been replaced by growing resignation. But the war rages on.
3.  Microsoft: Not enough XPerienced PCs. Many companies aren't buying Windows XP--or they're buying the licenses but not installing the software. Microsoft's marketing machine is looking to change that as the Service Pack 2 update rolls out.
4.  Is Google the future of e-mail?. Not necessarily, says CNET News.com's Declan McCullagh, who notes that there are more privacy-protecting alternatives to Google's controversial new service.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
5.  Paul McCartney unleashes more animal magnetism (USATODAY.com). USATODAY.com - Pop's renaissance man is back with a DVD, a children's book, a tour, an album and a possible movie. First up: Tuesday's DVD release of Paul McCartney: The Music and Animation Collection.
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
6.  Linux Security Week - April 12th 2004
7.  Expert releases Cisco wireless hacking tool
8.  Software Warfare
9.  Linux Security Week - April 12th 2004
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
10.  Vulns: Heimdal Kerberos Cross-Realm Trust Impersonation Vulnerability. Heimdal is a free implementation of the Kerberos 5 network authentication protocol. It is freely available for Unix and Unix variants.

It has been reported that an issu...

----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
11.  "OFF THE HOOK" DVD-R NOW AVAILABLE
12.  InfoSec Writers: Crafting Symlinks for Fun and Profit "Due to the recent hype of the more in-you...
13.  ADV: Check out the Ziff Davis Channel Zone!

7:11:22 AM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Remembering gopher. Lore "Brunching Shuttlecocks" Sjöberg has turned in a lyrical reminiscence about the glory days of gopher, the Web's predecessor. My first net-job (after the CDROM crash in the early 90s) was as a commerical gopher developer, and it turns out that were are lots of gopher sites still online:

Despite its relative obscurity, gopherspace is accessible to many more Web users than people realize. Gopher support is built into Mozilla-based browsers including Firefox, most versions of Netscape and Internet Explorer up to version 5, although the degree of support varies. People who want to stick with the familiarity of http can use the public gopher proxy at Floodgap.com, which translates gopher pages into HTML.

Visitors to gopherspace will find a piece of the Internet's history, some of which, Goerzen says, isn't available anywhere else. They will also find The Gopher Manifesto, a document praising gopher's simplicity and elegance.

The Gopher Manifesto describes gopher as "a hypertext Eden" that existed before the clutter and commercialization of the Web. "Is it time for a new Renaissance on the Internet, to bring back the promise of the early years?" it asks.

Link

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  South Korean Internet portal files anti-trust suit against Microsoft (AFP). AFP - South Korea's top Internet portal filed an anti-trust suit against US software giant Microsoft, alleging it broke fair trade rules by bundling its instant messenger service with its Windows XP platform.
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
3.  Microsoft squares Intertrust DRM suit for $440m. Peace of mind By Drew Cullen .
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
4.  Electronic Tax Filing Sets Record. Tax collectors are seeing a spike in electronically filed tax returns. Most are from home computers and many are using the free IRS software, indicating growing trust in IRS online security.
5.  Answering Call for Phone Tickets. An Alberta company will set up shop in the United States using wireless technology to allow customers to log on to a venue's website with their mobile phones to book tickets for impromptu events.
6.  Less Is More: Stylin' PCs. Computer makers are finally sizing down desktop PCs and jazzing up conventional design, incorporating media centers and saving space. New players in the market are causing big-rig makers to take notice.
7.  NASA Considers Space Visitors. The Russian Space Agency wants to make room for paying customers to travel to the international space station. NASA is considering the proposal, which would mean lengthening the time astronauts stay on the station to a year.
8.  American Released Passenger Data. The third U.S. airline to acknowledge releasing passenger records to the government, American Airlines has drawn the wrath of privacy advocates. The handover of 1.2 million itineraries was in 2002.
9.  Fix for Japan Pop-Culture Addicts. Finding more than hentai, anime DVDs and headbands on J-List.com, visitors can get some insight about why Japanese pop culture is so delightfully wacky. Wired News interviews J-List proprieter Peter Payne. By Xeni Jardin.
10.  Following the Money Made Easier. The intersection of money and politics has gotten simpler to navigate in the 2004 presidential election, thanks to a host of websites that track donations and put them in a searchable format. By Joanna Glasner.
11.  Gopher: Underground Technology. More than a decade ago, gopher took the Net by storm. The Web stole its thunder soon after, but enthusiasts are still keeping it alive -- and bringing it into the future. By Lore Sjöberg.
12.  Making Wireless Roaming Fun. Games exploiting mobile phones' GPS capabilities are becoming popular in Japan and Europe, and Mogi -- a virtual treasure hunt -- has players teaming up to cover Tokyo. By Daniel Terdiman.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
13.  Top 10 Web services threats
14.  Securing XML
15.  TSA smart card program makes headway
16.  Little progress on clearance overload
17.  Security clearances: The hottest ticket in town
18.  University Security Problems and Another CHM exploit in the Wild

6:11:03 AM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Big name VC gets into microfinancing. Amazing NYT piece on Vinod Khosla, a partner at Kleiner Perkins and co-founder of Sun Microsystems, who is now devoting part of his time to trekking rural India, making micro-loans to entrepreneurs starting home-based businesses.

"I was completely blown as I listened to the stories of these tenacious women," Mr. Khosla said. "I started crying." In his view, the microfinance initiatives he visited in India and Bangladesh in February ran more efficiently than most Silicon Valley organizations. "They have sophisticated credit algorithms," he said. "Does the woman own a buffalo? Some chickens? Does she have a toilet in her home? What kind of roofing material does her home have? Does she bring a shawl to the village meeting?"

In India, microloans are usually disbursed to poor women whose total family assets are less than 20,000 rupees ($459) and whose monthly income is smaller than 350 rupees. Yet microfinance initiatives have a phenomenal repayment rate averaging more than 95 percent, better than the best commercial banks in the world. Many of the programs are highly profitable, Mr. Khosla said, adding that "microfinance is one of the most important economic phenomena in the world in the last 50 years."

Link

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Dell Sees Rise in Corporate Spending (NewsFactor). NewsFactor - Dell (Nasdaq: DELL) says corporate spending on I.T. products is beginning to strengthen. The company announced that it is shipping more personal computers and other devices in the quarter than it previously forecasted.
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
3.  USTR Critical Of Japanese TD-CDMA Licensing
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
4.  TROJ_TOPGER.AG
5.  HTML_NETSKY.P
6.  VBS_STARTPAGE.K
7.  WORM_RANDEX.IR
8.  WORM_AGOBOT.ED
9.  VBS_INOR.AF

5:10:42 AM    comment []

----------------------------------------------------------------------
Dilbert
----------------------------------------------------------------------
1.  Dilbert for 12 Apr 2004.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Microsoft Settles InterTrust Suit (Reuters). Reuters - Microsoft Corp. will pay InterTrust Technologies Corp. $440 million to license the software pioneer's anti-piracy patents and settle litigation between the two, the companies said on Monday.
3.  Intel unveils new chip for high-end cell phones (AFP). AFP - Intel Corp., the world's biggest semiconductor firm, has unveiled faster low-power microprocessors for high-end mobile phones and personal digital assistants.
4.  Test Case for Tech Stocks (washingtonpost.com). washingtonpost.com - During its short, seven year existence, Blackboard Inc. has winked and nodded at speculation that it would attempt to become publicly traded company until last month, when the online learning software maker filed to raise up to $75 million in an initial stock offering.
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
5.  UK gamers stumble in top match. The UK's top gaming clan Four-Kings has been beaten during an exhibition match organised by Intel.
6.  Broadband prepares to take off. The German airline Lufthansa is to offer high-speed net access on flights by the end of the month.

4:10:23 AM    comment []

----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
1.  South Korean firm files anti-trust suit against Microsoft (AFP). AFP - South Korea's top Internet portal has filed an anti-trust suit against US software giant Microsoft, alleging it broke fair trade rules by bundling its instant messenger service with its Windows XP platform.
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
2.  News: Intel unveils processor with hard-wired security. The Associated Press By Matthew Fordahl
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
3.  Intel launches Bulverde, Marathon. Next-gen XScale details emerge By Tony Smith .
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
4.  Mercury News | 04/11/2004 | Radio tags may give consumers more power
5.  More Security Holes News...
6.  Cisco warns of wireless security hole
7.  Intego issues Mac OS X Trojan Horse warning
8.  Slow down the security patch cycle
9.  Expert releases Cisco wireless hacking tool
10.  FDIC warns of scam targeting consumers' bank accounts
11.  Intel Unveils Next Generation Processor (AP)

3:10:03 AM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Would you erase me?. I just saw Eternal Sunshine of the Spotless Mind, and liked it rather a lot. If you are a geek, there's a high probability you will too. It's Michel Gondry's second feature-length film, and it's been out for about a month. Here's what Elvis Mitchell says about it in the New York Times. Check out the trailer here.
Link
2.  New Viridian Design contest -- Aromatizer. Mr. Bruce Sterling just dreamed up a new Viridian Design contest. Here's what it isn't:
"Smell- o-vision" has already been suggested. Smell-o-vision is a dead medium, however, and the addition of smell to computer games seems corny and too limited.

Here's what it is: Link

----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
3.  New Intel chips bring notebook muscle to phones. The chipmaker's latest mobile processors bring its notebook technologies to cell phones.
----------------------------------------------------------------------
New York Times: Technology
----------------------------------------------------------------------
4.  Microsoft Settles InterTrust Suit for $440 Million. Microsoft plans to announce that it has reached a $440 million legal settlement and licensing deal with a pioneer in software to protect digital music and movies from piracy. By Steve Lohr.
5.  Concerns That Nanotech Label Is Overused. What exactly is nanotechnology? The definition is no longer academic as more investors become attracted to anything that carries a nanotech label. By Barnaby J. Feder.
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
6.  Intel Unveils Next Generation Processor (AP). AP - The next generation of Intel Corp. microprocessors for cell phones and handheld computers will, for the first time, include hard-wired security features that can enforce copy protection and help prevent hackers from wreaking havoc on wireless networks.
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
7.  OS X flaw may leave Macs open to virus attacks
8.  A Need for Greater Cybersecurity (washingtonpost.com)
9.  More Security News...

2:09:42 AM    comment []

----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
1.  Netsky Worm Variant Attacks P2P Services
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
2.  Une nouvelle faille touche Oracle 9iAs

1:09:23 AM    comment []

----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
1.  Museum of Unworkable Devices. Water Kiss FountainNice site covering a bunch of inventions that won't work because they go against one or more laws of physics. It also looks at impractical, but interesting inventions, like this water fountain that squirts water out of a replica of a woman's head. Link
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
2.  Turner -- TW/AOL 'Disaster' Could Have Been Avoided (Reuters). Reuters - If only Time Warner chairman Gerald Levin had listened to major shareholder Ted Turner, in the mid-1990s and bought CBS or NBC, Time Warner's disastrous merger with America Online probably never would have happened.
----------------------------------------------------------------------
The Register
----------------------------------------------------------------------
3.  Intel puts 'Britney Spears silicon' in new X-Scale chip. Mr. Bulverde at the door By Ashlee Vance .
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
4.  Customize this feed. Add more items, descriptions, time stamps, select your version of RSS, aggregate several feeds... Check out NewsIsFree's premium syndication services! (16)
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
5.  Blog :: Linux used by terrorists...
6.  OS X flaw may leave Macs open to virus attacks
7.  Heads up VoIP -- regulation incoming
8.  Cisco bug could put hackers in the driver's seat
9.  Kansas University Reports Hacking Incident to FBI
10.  Man goes ballistic, says Linux is a security threat
11.  Microsoft to pay millions more to Sun?

12:25:12 AM    comment []


Click here to visit the Radio UserLand website. © Copyright 2004 Gregg Doherty.
Last update: 5/3/2004; 12:26:43 AM.
This theme is based on the SoundWaves (blue) Manila theme.
April 2004
Sun Mon Tue Wed Thu Fri Sat
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30  
Mar   May