|
|
Monday, May 03, 2004
|
|
| |
11:24:29 PM 
|
|
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 1. |
New Virus Snarls Thousands of Computers (AP). AP - A pesky computer worm snarled hundreds of thousands of machines worldwide Monday in the latest virus-like outbreak to take advantage of a known flaw with the Windows operating system. |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 2. |
IRC_FLOOD.AN |
10:24:07 PM
|
|
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 1. |
Intel, AMD market shares remain stable. Chipmakers Intel and Advanced Micro Devices both enjoy somewhat strong sales in the first half of the fiscal quarter, but their respective market shares stay about the same. |
| 2. |
Sasser worm gets to work. The latest Internet threat debuted over the weekend at a leisurely pace, in part because it was poorly written. But as the work week begins, the business world is seeing signs of trouble. |
| 3. |
Sasser's toll likely stands at 500,000 infections. Estimates based on Internet traffic analysis indicate that the worm and its variations have likely spread to 500,000 computers. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 4. |
E-Voting Oversight Overwhelms U.S. Agency (AP). AP - As alarm mounts over the integrity of the ATM-like voting machines 50 million Americans will use in the November election, a new federal agency has begun scrutinizing how to safeguard electronic polling from fraud, hackers and faulty software. |
| 5. |
Broadcom Simplifies Wi-Fi Security (PC World). PC World - SecureEZSetup software wizard helps consumers, small businesses ensure wireless security. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 6. |
Sprint Routers Stolen; NYC Internet Outage Ensues |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 7. |
3COMdos.txt |
| 8. |
dsa-498.txt |
| 9. |
SSLPCT.txt |
| 10. |
SMCwhoops.txt |
| 11. |
Sasser Worm Strikes PCs, Spurs Hoax 'Fix' (Reuters) |
| 12. |
New Virus Snarls Thousands of Computers (AP) |
| 13. |
E-Voting Oversight Overwhelms U.S. Agency (AP) |
| 14. |
RE: Will the Sasser worm become the next Blaster? |
| 15. |
[slackware-security]rsync update (SSA:2004-124-01) |
| 16. |
[slackware-security]xine-lib update (SSA:2004-124-03) |
| 17. |
[slackware-security]sysklogd update (SSA:2004-124-02) |
| 18. |
Re: After Ms patches last Wed ... |
| 19. |
[slackware-security]libpng update (SSA:2004-124-04) |
| 20. |
Linux has its own security holes |
| 21. |
Linux Security Week - May 3rd 2004 |
| 22. |
Charges filed in 'Deceptive Duo' hacks |
| 23. |
Red Hat road map leads to SE Linux |
| 24. |
Hack Your Way to Hollywood |
| 25. |
Don't Strangle Businesses Before They're Born |
9:23:50 PM
|
|
8:23:28 PM
|
|
----------------------------------------------------------------------
Penny Arcade!
----------------------------------------------------------------------
|
| 1. |
Parsley, Sage, Rosemary and Time.  |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 2. |
Gateway nabs Best Buy exec. Scott Bauhofer will become senior vice president at Gateway and oversee the company's direct sales business. Bauhofer comes from Best Buy, where he served as senior vice president of online stores. |
| 3. |
IBM shifts CFO, head of services. IBM juggles positions in its executive suite after its top sales exec leaves to go to Siebel Systems. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 4. |
Tom Siebel Steps Down As CEO of Company (AP). AP - With a traumatic sales slump and a nasty shareholder fight behind him, Tom Siebel is stepping down as CEO of the business software maker that bears his name and turning the reins over to IBM Corp.'s former head of sales. |
| 5. |
E-Voting Oversight Overwhelms U.S. Agency (AP). AP - As alarm mounts over the integrity of the ATM-like voting machines 50 million Americans will use in the November election, a new federal agency has begun scrutinizing how to safeguard electronic polling from fraud, hackers and faulty software. |
| 6. |
Broadcom Simplifies Wi-Fi Security (PC World). PC World - SecureEZSetup software wizard helps consumers, small businesses ensure wireless security. |
| 7. |
Diller's InterActiveCorp in Profit, Margins Lower (Reuters). Reuters - Internet business conglomerate
InterActiveCorp (IACI.O) on Monday posted better-than-expected
quarterly earnings, but said that profit margins in its travel
unit shrank due to higher marketing costs. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 8. |
What Happens To Your Data When You Die? |
| 9. |
U.S. Gov Agency Blunders With Keyword Blacklist |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 10. |
Model N launches revenue management suite. Taking a cue from major enterprise software vendors such as SAP and Siebel, who are hyping their integration platforms, revenue management vendor Model N will unveil the Model N Technology Platform and Revenue Management Suite that features preintegrated applications. |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 11. |
Vulns: Coppermine Photo Gallery Multiple Input Validation Vulnerabilities. Coppermine Photo Gallery is a web based image gallery application. Starting from versions 1.2.0 it is a stand-alone application that may be used as a PHP-Nuke module, pr... |
| 12. |
Vulns: ReciPants SQL Injection and Cross-Site Scripting Vulnerabilities. ReciPants is a web-based recipe management application written in Perl.
X-NAS-Bayes: #0: 2.72562E-099; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 328
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
It has been reported that ReciPants is vulnerable to SQL injection and cross-site scripting vulne... |
| 13. |
Vulns: DameWare Mini Remote Control Server Weak Key Agreement Vulnerability. DameWare Mini Remote Control Server is a remote administration tool distributed and maintained by DameWare Development. It is available for the Microsoft Windows platform... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 14. |
Gov't IT: Security Clearance Needed |
| 15. |
Network Card Theft Causes Internet Outage |
| 16. |
Kattoon: May 3, 2004 |
| 17. |
Internet worm brings havoc to systems worldwide (AFP) |
| 18. |
Newest Sasser worm a greater danger |
| 19. |
Le nouveau ver Netsky se fait passer pour un ‘nettoyeur’ de Sasser |
7:23:08 PM
|
|
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 1. |
Senator Franken?. Al Franken is thinking about running for the Senate:
X-NAS-Bayes: #0: 0; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 327
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
As Al Franken considers challenging Sen. Norm Coleman, R-Minn., for re-election in 2008, the comedian and liberal radio host is looking to his hometown senator for advice: Hillary Rodham Clinton.
"I asked Hillary, 'Can you give me some suggestions about running for Senate in a state you haven't lived for in a while, or in your case, ever?' " Franken recalled, laughing heartily. "And she said, 'This will be a long conversation,' so we agreed to have a long conversation about it."
Link |
| 2. |
History of Chillout. 
"Moments In Love" is a wonderful aural history of chillout and ambient music, hosted by Chris Coco. The hour-long BBC Radio 2 documentary covers a tremendous amount of material, from Erik Satie to Brian Eno to Air.
"Chillout is a state of mind. It's making space in your head to enjoy the setting and the sounds. It's a long drink on a long sunny day. It's a moment taken to appreciate the beauty of the simplest things. And it's even better with a decent soundtrack."
The link on the "Moments In Love" page to the archived program is incorrect, but here's the correct one. Link (Thanks, Morris!)
|
| 3. |
Chank fonts made of twigs, for the taking. 
Fontmeister and designer Chank took a load of studnets out into the forest and had them recreate some of his nicer fonts from found objects -- twigs, leaves, and so forth. The results were phtoographed, fonotofied, and released on the net as free TrueType downloads.
Link
(Thanks, Francis!)
|
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 4. |
Briefly: Mozilla updates e-mail program. Plus: Former banker convicted of obstruction...Time Warner, Comcast complete cable shuffle...Voice preferred medium for wiretapping...Microsoft plugs new DVR. |
| 5. |
Siebel Systems CEO relinquishes post. Tom Siebel steps down as chief executive of the company he founded in the 1990s and made synonymous with the multibillion-dollar market for software that manages customer relationships. |
| 6. |
Liberate files for Chapter 11. Liberate Technologies, a formerly high-flying maker of software for set-top boxes, files for reorganization under U.S. bankruptcy laws. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 7. |
Free software project undaunted despite Apple threats (MacCentral). MacCentral - The PlayFair free software project is likely to come online again soon, despite efforts by Apple Computer Inc. to close it down. |
| 8. |
IBM's Joyce Moves to Services (Reuters). Reuters - IBM said on Monday that Chief
Financial Officer John Joyce would head its services division,
where growth has been slowing, as part of an executive
reshuffling spurred by the departure of its sales head to run
Siebel Systems Inc. (SEBL.O). |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 9. |
Microsoft's Janus DRM Software Officially Unveiled |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 10. |
Update: PayPal reaches out to enterprise developers via APIs. MIAMI - PayPal, a provider of online payment services, is providing application programming interfaces (APIs) to let third-party developers and merchants build applications that integrate with the PayPal system, the company announced Monday. |
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
|
| 11. |
Don't Strangle Businesses Before They're Born |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 12. |
BugTraq: [slackware-security] xine-lib update (SSA:2004-124-03). Sender: Slackware Security Team [security at slackware dot com] |
| 13. |
BugTraq: [slackware-security] libpng update (SSA:2004-124-04). Sender: Slackware Security Team [security at slackware dot com] |
| 14. |
BugTraq: Re: After Ms patches last Wed .... Sender: James Riden [j dot riden at massey dot ac dot nz] |
| 15. |
BugTraq: X-Chat[v1.8.0-v2.0.8]: socks-5 remote buffer overflow exploit.. Sender: Vade 79 [v9 at fakehalo dot deadpig dot org] |
| 16. |
Vulns: LibPNG Broken PNG Out Of Bounds Access Denial Of Service Vulnerability. The libpng graphics library is reported to be prone to a denial of service vulnerability when handling certain types of broken images. Specifically, the issue presents it... |
| 17. |
Vulns: ProFTPD CIDR Access Control Rule Bypass Vulnerability. ProFTPD is an FTP server implementation that is available for Unix and Linux platforms.
ProFTPD has been reported prone to an access control rule bypass vulnerability. T... |
| 18. |
Vulns: Neon WebDAV Client Library Format String Vulnerabilities. Neon is a client side library supporting HTTP and WebDAV interfaces. It is freely available under the GNU Public License for Unix and Unix variants.
It has been reporte... |
| 19. |
Vulns: SquirrelMail Folder Name Cross-Site Scripting Vulnerability. SquirrelMail is a feature rich web mail program implemented in the PHP4 scripting language. It is available for Linux and Unix based operating systems.
It has been repor... |
| 20. |
Vulns: Midnight Commander Multiple Unspecified Vulnerabilities. Midnight Commander is a popular file management tool for Unix systems. Among other features, Midnight Commander is provided with a code layer to access the file system; t... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 21. |
On-Demand Ramps up in IBM's POWER5 |
| 22. |
Experts weigh Sasser - Netsky worm connection |
| 23. |
Microsoft pursuing Sasser author |
| 24. |
TROJ_WINDRIV.A |
| 25. |
Millions of computers worldwide may be infected by Sasser worm (AFP) |
| 26. |
New Virus Snarls Thousands of Computers (AP) |
| 27. |
Sasser Worm Spreads (NewsFactor) |
| 28. |
Search Engine Journal: Sasser Worm Crippling Internet Businesses "According to global reports, t... |
| 29. |
FCW: Linux has its own security holes "experts warn that Linux is no more bulletproof than any o... |
| 30. |
ZDNet: Check Point back in browser-based VPN security "Check Point Software is taking another sh... |
| 31. |
ZDNet: PayPal offers developers a peek at its code "PayPal on Monday made available a set of Web... |
6:22:48 PM
|
|
----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
|
| 1. |
Science.Ars. The newly-renamed Science.Ars returns with news on cloning, unpublished drug study data, meteorite forensics, private space launches, and more. By Eric Bangeman. |
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 2. |
MP3 interview with security expert Bruce Schneier. Amazing interview (available as a text transcript or audio file) with security guru Bruce Schneier, who really should be hired to run Homeland Security.
X-NAS-Bayes: #0: 2.77573E-267; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 319
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
Doug Kaye: Now a recurring concept in your book is probably typified by this example: “A terrorist who wants to create havoc will not be deterred by airline security; he will simply switch to another attack and bomb a shopping mall.”
Bruce Schneier: This is, I think, really important. I just did a hearing two days ago on Capitol Hill about CAPS II, about airline profiling, and one of the things I’m always struck with is how good we are at defending against what the terrorists did last year. We’re spending a lot of money shoring up our airlines, we’re now talking about shoring up trains. And money that we spend that simply causes the bad guys to change their tactics is money wasted.
You have a red and a blue door, and the terrorists go through the red door, and you say, “We must secure the red door,” so they go through the blue door the next time. What did you actually buy? Link |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 3. |
Mozilla updates e-mail program. Open-source software group the Mozilla Foundation releases a new version of its Thunderbird e-mail and newsgroup client. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 4. |
Report: Hard Drives Stalling Next-Gen Mobile (NewsFactor). NewsFactor - It is clear that mobile phones are morphing into multi-use computing and communications devices for consumers -- or at least for those obsessed with owning the latest tech gadget. |
| 5. |
Product Review: Fujitsu LifeBook S7000 Series (NewsFactor). NewsFactor - Fujitsu's new LifeBook S7000 notebook computer features stylish good looks, reduced weight and respectable battery life. Its design gives users numerous options to match the notebook's configuration to specific application requirements. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 6. |
India's Secret Army Of Online Ad 'Clickers' |
| 7. |
Who's Behind the Shower Curtain? |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 8. |
Study: AMD tops Intel in retail desktops in late April. BOSTON - Desktop PCs with processors from Advanced Micro Devices Inc. (AMD) outsold desktops based on processors from Intel Corp. for the week ending April 24, according to research released late last week from Current Analysis Inc. |
| 9. |
IBM moves CFO Joyce to services division. NEW YORK - IBM Corp. shuffled its executive suite Monday, moving Chief Financial Officer (CFO) John Joyce to the head of its services group and naming global financial manager Mark Loughridge as his successor. |
| 10. |
OASIS approves XML business documents specification. OASIS has approved Universal Business Language (UBL) 1.0 as a Committee Draft, meaning the XML business documents specification is ready for implementation in commercial and open source efforts. |
| 11. |
Siebel hands CEO duties over to former IBM exec. NEW YORK - Siebel Systems Inc. said Monday that founder Tom Siebel will step down as the company's chief executive and be replaced by IBM Corp. sales and distribution head Mike Lawrie. Siebel will remain the company's chairman. |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 12. |
Vulns: Moodle Cross Site Scripting Vulnerability. Moodle is an open source course management system (CMS) designed for online courseware and e-learning.
It has been reported that Moodle is vulnerable to a cross-site scr... |
| 13. |
Vulns: UTempter Multiple Local Vulnerabilities. The utempter utility is designed to allow non-privileged applications to update the utmp and wtmp files; utmp and wtmp store current user information on Unix and Unix var... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 14. |
Mitnick busts bomb hoaxer |
| 15. |
Terrorism at all-time low, US gov says |
| 16. |
Blog :: When will they learn software protection is useless? |
| 17. |
Virus/Ver « Sasser », déjà trois versions sur la toile |
| 18. |
European restrictions make U.S. look like Wild West |
| 19. |
When you rent a car, does the company secretly track you? |
| 20. |
EPIC Files Gmail FOIA Requests |
| 21. |
American Airlines Admits Disclosing Passenger Data |
| 22. |
EPIC publishes nanotechnology privacy page |
| 23. |
U.K. passport agency begins trial on biometric IDs |
| 24. |
A Better Way To Squelch Spam? |
| 25. |
Electronic Data misuse in UK Government departments: a significant problem? |
| 26. |
Companies becoming more complacent about security |
| 27. |
Clear Commerce And The Battle Against Cyber Fraud |
| 28. |
CAPPS - Passenger profiling |
| 29. |
Check-in times to US may hit five hours |
| 30. |
How to Build Privacy Into Customer Authentication |
| 31. |
Passenger data row escalates to Court of Justice |
| 32. |
Sasser Worm Spreads |
| 33. |
Sasser Worm Spreads |
| 34. |
Sasser Worm Spreads |
| 35. |
BKDR_VB.PJ |
| 36. |
'Sasser' Worm Strikes Hundreds of Thousands of PCs (washingtonpost.com) |
| 37. |
UDP Remote Controls |
| 38. |
[SECURITY] [DSA 500-1] New flim packages fix insecure temporary file creation |
| 39. |
W32/Sasser a and b SNORT Sigs |
| 40. |
[SECURITY] [DSA 499-1] New rsync packages fix directory traversal bug |
| 41. |
PaX Linux Kernel 2.6 Patches DoS Advisory |
| 42. |
EEYE: Apple QuickTime (QuickTime.qts) Heap Overflow |
| 43. |
Re: New LSASS-based worm finally here (Sasser) |
| 44. |
Re: Will the Sasser worm become the next Blaster? |
| 45. |
[waraxe-2004-SA#026 - Multiple vulnerabilities in Coppermine Photo Gallery for PhpNuke] |
| 46. |
X-Chat[v1.8.0-v2.0.8]: socks-5 remote buffer overflow exploit. |
| 47. |
Serv-U LIST -l Parameter Buffer Overflow |
| 48. |
RE: After Ms patches last Wed ... |
| 49. |
Crystal Reports Vulnerabilities |
| 50. |
Vulnerability in YaBB forum (Perl version without SQL) |
| 51. |
Multible Vulnerabilites in Aldos Webserver |
| 52. |
Neuer Netsky-Wurm gibt sich als Heilmittel gegen Sasser aus |
5:22:28 PM
|
|
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 1. |
Usage patterns in White House search engine. Brian Dear has been tracking the frequency that various keywords appear in the White House search engine over time:
X-NAS-Bayes: #0: 9.05838E-168; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 318
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
2003 2004
----- -----
iraq..................... 480 2556
bin Laden................ 233 355
enron.................... 56 66
halliburton.............. 12 28
Link |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 2. |
Quantum encryption inches closer to reality. A team of researchers sets a new speed record for a type of quantum encryption, a sign that the theoretically uncrackable system for encrypting documents could find a home commercially. |
| 3. |
UPS, Yahoo target small-business shipping. The global parcel giant is offer shipping services to 30,000 smaller business clients registered with Yahoo. |
| 4. |
AT&T to offer new IP-only service. The company plans to offer Internet Protocol purists a service that allows them to connect different offices over a single IP network. |
| 5. |
PayPal offers developers a peek at its code. The company is hoping to persuade third-party programmers to create tools that will work with PayPal's e-payment service--and is offering as bait not only code but access to an online sandbox. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 6. |
'Sasser' Worm Strikes Hundreds of Thousands of PCs (washingtonpost.com). washingtonpost.com - A new Internet worm that infected hundreds of thousands of computers over the weekend picked up speed as people returned to work on Monday and turned on their infected PCs, security experts said. |
| 7. |
Global Chip Sales Recovery Accelerates in March (Reuters). Reuters - Global sales of chips continued to
accelerate in March, rising 32.3 percent year-on-year, as
producers of communication devices and computers fueled demand
for semiconductors, a European trade association said on
Monday. |
| 8. |
LG Electronics to Invest $578 Million in Plasma TVs (Reuters). Reuters - South Korea's LG Electronics Inc said on
Monday it planned to invest 666 billion won ($578 million) in
plasma displays by the second quarter of next year to meet
growing demand for flat television screens. |
| 9. |
Motorola to Sell WorldGate Video Phone (Reuters). Reuters - Motorola Inc. (MOT.N) on Monday said
it would distribute WorldGate Communications' (WGAT.O) video
phone targeted at high-speed Internet customers, causing
WorldGate's shares to more than double. |
| 10. |
Sasser Worm Hits Countless PCs Worldwide (Reuters). Reuters - The fast-spreading "Sasser"
computer worm has infected hundreds of thousands of PCs
globally and the number could rise sharply, a top computer
security official said on Monday. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 11. |
Core CSS (2nd ed.) |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 12. |
Siemens, Microsoft cross-license patent holdings. DÜSSELDORF, GERMANY - German electronics and engineering company Siemens AG and Microsoft Corp. have agreed to a broad cross-licensing deal allowing expanded access to the patents of each company. |
| 13. |
Experts weigh Sasser - Netsky worm connection. A message buried in a new version of the Netsky e-mail worm is claiming responsibility for the Sasser Internet worm, and computer security experts say that there is evidence that the claim is legitimate. |
| 14. |
PeopleSoft revamps World with small-business focus. PeopleSoft Inc. is preparing a major sales push and technology update for the World software it inherited in its July acquisition of J.D. Edwards & Co. The company will soon release PeopleSoft World Express, a small business-aimed repackaging of the World software, with new features tailoring the suite for customers in four industrial markets, it said Monday. |
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
|
| 15. |
Experts weigh Sasser - Netsky worm connection. A message buried in a new version of the Netsky e-mail worm is claiming responsibility for the Sasser Internet worm, and computer security experts say that there is evidence that the claim is legitimate. |
| 16. |
Microsoft pursuing Sasser author. Microsoft is working with law enforcement to find the author of the Sasser worm, which first appeared on Friday and targets machines running the company's Windows operating system. |
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
|
| 17. |
Hack Your Way to Hollywood |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 18. |
Vulns: Rosiello Security Sphiro HTTPD Remote Heap Buffer Overflow Vulnerability. Sphiro HTTPD is an HTTP daemon server designed to run on Unix and Unix variant operating systems.
It has been reported that Sphiro HTTPD is prone to a remote heap based ... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 19. |
Experts Probe Sasser, Netsky Link (PC World) |
| 20. |
Microsoft Pursues Sasser Author (PC World) |
| 21. |
Net Worm Snarls Thousands of Computers (AP) |
| 22. |
Sasser Worm Hits Countless PCs Worldwide (Reuters) |
| 23. |
OpenSSH (may be) vulnerable - update(1) |
4:22:09 PM
|
|
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 1. |
1650 signatures on Apple Powerbook petition. There are currently 1650 signatories to this petition to Apple to do something about the widespread manufacturing defects with its 15" Rev A Aluminium Powerbooks:
X-NAS-Bayes: #0: 7.4393E-248; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 317
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
We, the undersigned, demand that Apple Computers immediately acknowledge and address the manufacturing defect on the LCD screens of its Powerbook G4 laptops. The LCD screens of these laptops are susceptible to random “White Spots” appearing on the display. These spots are very distracting and are an obvious manufacturing defect.
Powerbook owners around the world have been complaining of this problem. Evidence of this can be seen on Apple’s own discussion group website located at http://discussions.info.apple.com and on various message board discussion groups on the Internet. Due to the extremely large number of Powerbook owners that have been sending their newly purchased laptops for repair under warranty, it is OBVIOUS that Apple is aware of this defect. However, most customers have been noticing this problem reoccur within hours or days of their Powerbook being repaired under warranty. This is completely unacceptable.
Link |
| 2. |
Amazon helps with number portability. Amazon's phone-sales business unit has added a HOWTO on number-portability, and a service to help you keep your number when you change mobile carriers.
Transferring your cell phone number is easy when you order from Amazon.com. You won't have to wait in line at a store while your number is transferred from your previous carrier to your new one. And, in some cases, you will be assigned a temporary phone number for your new phone so that you can use it until your transfer is completed (you can even forward your calls from your current phone to your new phone in the interim). Best of all, when you buy a cell phone from Amazon.com and transfer your number, you will still qualify for all of our great rebates and discounts.
Link
(via MobileWhack) |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 3. |
Voice preferred medium for wiretapping. Only 4 percent of wiretaps not related to terrorism were targeted at computers and electronic devices last year, a government report shows. |
| 4. |
Time Warner, Comcast complete cable shuffle. The two companies close a deal to restructure their joint ownership of cable systems in Kansas City, Mo., and Texas. |
| 5. |
Briefly: EU warns music-licensing companies. Plus: Voice preferred medium for wiretapping...Microsoft plugs new DVR...EU warns music-licensing companies. |
| 6. |
The old school treatment for AOL. Time Warner's Don Logan wasn't originally thrilled about the megamerger with America Online. But now that the online service is under his wing, he's finding ways to make things work. |
| 7. |
IBM shifts CFO, head of services. In a major leadership change, John Joyce goes from CFO to head of IBM's services unit, according to published reports. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 8. |
IBM Changes CFO, Other Exec Positions (AP). AP - IBM Corp. shook up its executive lineup Monday, replacing its chief financial officer and head of global sales, but a spokesman said the moves were part of a longstanding company strategy. |
| 9. |
Microsoft Pursues Sasser Author (PC World). PC World - Software giant works with local law enforcement, FBI to track down the virus writer. |
| 10. |
CNET to Launch Digital Music Services Guide (Reuters). Reuters - CNET Networks Inc. (CNET.O), which
runs a technology news and commentary site and helps users
comparison shop for a broad range of products, on Monday said
it would extend its online clearinghouse approach to digital
music. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 11. |
Bill Gates Fined $800,000 Over Stock Purchases |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 12. |
PayPal reaches out to enterprise developers via APIs. PayPal Inc., a provider of online payment services, is providing application programming interfaces (APIs) to let third-party developers and merchants build applications that integrate with the PayPal system, the company announced Monday. |
| 13. |
Free software project undaunted despite Apple threats. The PlayFair free software project is likely to come online again soon, despite efforts by Apple Computer Inc. to close it down. |
| 14. |
Microsoft pursuing Sasser author. Microsoft is working with law enforcement to find the author of the Sasser worm, which first appeared on Friday and targets machines running the company's Windows operating system. |
| 15. |
Embarcadero focuses on metadata in data life cycle tools. Embarcadero Technologies on Monday is announcing a June ship date for its ER/Studio 6.5 and ER/Studio Repository 3.0 data life cycle management tools, which are focused on enterprise metadata and dimensional modeling analysis. |
| 16. |
Gates to pay $800,000 stock-trading fine. Microsoft Chairman and Chief Software Architect Bill Gates has agreed to pay a $800,000 civil penalty to settle charges that he violated stock-buying requirements in 2002, the U.S. Department of Justice (DOJ) announced Monday. |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 17. |
Sandial Stakes Claim to First Intelligent Network Services Platform |
| 18. |
Phishing Scams Get Savvier |
| 19. |
Broadcom's SecureEZSetup Guards Consumer WLANs |
| 20. |
Spyware: Already Illegal |
| 21. |
Is There Life Left for Sniffer? |
| 22. |
Security Experts Tracking New Sasser Variant |
| 23. |
Database Expert Sees Info As Protection |
| 24. |
Ingram targets SMEs in pan-Europe push |
| 25. |
IDS 'will struggle as standalone industry' |
| 26. |
LHa Local Stack Overflow Proof of Concept |
| 27. |
Apple QuickTime (QuickTime.qts) Heap Overflow |
3:21:50 PM
|
|
----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
|
| 1. |
Could Sasser be the MSBlast of 2004?. Patch your systems: Sasser.D is on the loose and there will undoubtedly be more variants soon. Designed to exploit a critical security hole patched by Microsoft on April 13, 2004, some believe this could be the MSBlast of 2004 By Eric Bangeman. |
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 2. |
Will Apple own up to manufacturing problems with 15" Powerbooks?. There's an enormous thread of PowerBook G4 15" owners on Apple's discussion boards, going into detail on the "white spots" and "uneven illumination" problem with this model. I bought mine last fall, and had to return it twice (first one was DOA, the second had the white-spots so bad that strangers on airplanes would come up to me and say, "Jesus Christ, what the hell is wrong with your screen?"). Now I'm on my third unit, and it's got the same problem: screen at about 50 percent brightness, big white splotch in the middle of the it.
It's still under warranty, but that doesn't do me any good: There's no way I can part with my machine for 3-7 days while Apple fixes it. Normally, I own two PowerBooks, the current one and a slightly older one (so that I have a working unit during repairs), but when I moved to Europe, I divested myself of all but a single CPU, so now I'm pretty scr0d.
The scoop appears to be that Apple is replacing these lemons with the new 1.5GHz models (which may or may not have the same problem), but I doubt that they'll ship me the replacement, let me transfer my data and then send back the old 'un. I'm just going to have to work off the world's shittiest display until I can scrape up the dough to buy another machine. Bummer.
X-NAS-Bayes: #0: 0; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 316
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
Recently it has worsened to the point where I took it in today to the Apple store in Old Orchard. The attending Genius immediately noticed the uneven illumination of my display and suggested that it be sent in to the depot for repair. He also mentioned that this was the first time he had ever seen or heard of this problem before, and that there are no reports in the knowledge base that described this issue. When I mentioned to him that he might take a look at this thread in the Apple Support discussions, he wanted no part of it. He said that he rarely reads these forums, and dismissed it as "Oh well, people posting to discussion groups are mostly complainers" (those were not his exact words, but it was implied). Then I told him that people are posting actual photos of this problem and that all of the symptoms look identical for each person, which could indicate a manufacturing defect. His response was that "for those people, I suppose perception is reality".
Link |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 3. |
Florida paves way for VoIP taxation. State lawmakers refuse to postpone enforcement of a law that could levy taxes on companies and individuals using VoIP to bypass a regular phone network. |
| 4. |
Gates settles antitrust violation for $800,000. Failure to notify regulators of the extent of his holdings in a company, for the second time, led the Federal Trade Commission to pursue the fine. |
| 5. |
Newest Sasser worm a greater danger. The Sasser.B worm, which appeared on the Internet 24 hours after the original, has spread much more quickly, infecting at least 10,000 computers over the weekend, Symantec says. |
| 6. |
Microsoft plugs new DVR. Microsoft TV Foundation Edition 1.7 includes features to support advanced digital recording and high-definition television. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 7. |
IBM's Joyce to Services, Loughridge CFO (Reuters). Reuters - International Business Machines Corp.
(IBM.N) on Monday said Chief Financial Officer John Joyce would
head its services division and named global financing chief
Mark Loughridge to replace him, effective immediately. |
| 8. |
Software Drives Quality for Auto Suppliers (Ziff Davis). Ziff Davis - APQP software helps carmakers document how suppliers design and deliver parts. |
| 9. |
Va. Mobile Phones Can Be Added to Registry (AP). AP - In the world of telemarketing, mobile phones have been fair game. |
| 10. |
UPS Builds Online Shipping Tool Presence (AP). AP - UPS is increasing the presence of its online shipping tools with an agreement it has reached with Internet company Yahoo! Inc. |
| 11. |
Spyware: Already Illegal (Ziff Davis). Ziff Davis - Education—not new laws—is the best way to battle spyware. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 12. |
BBC to Try TV On Demand |
| 13. |
Mitnick Helps Bust Bomb Hoaxer |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 14. |
BugTraq: Multible Vulnerabilites in Aldos Webserver. Sender: [oliver at greyhat dot de] |
| 15. |
BugTraq: Serv-U LIST -l Parameter Buffer Overflow. Sender: Aviram Jenik [aviram at beyondsecurity dot com] |
| 16. |
BugTraq: RE: After Ms patches last Wed .... Sender: [InfoSec at seba dot com] |
| 17. |
Vulns: Microsoft Internet Explorer Meta Data Foreign Domain Spoofing Vulnerability. A vulnerability has been reported in Microsoft Internet Explorer that may facilitate certificate spoofing. This issue could aid in attacks which falsify web content to v... |
| 18. |
Vulns: HP Web Jetadmin Multiple Vulnerabilities. HP Web Jetadmin is a web-based interface for remote management of network peripheral devices. It is available for Microsoft Windows and Linux-based platforms.
Multiple ... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 19. |
Open Source Monoculture |
| 20. |
Millions of computers worldwide may be infected by Sasser worm (AFP) |
| 21. |
New Virus Snarls Thousands of Computers (AP) |
| 22. |
Sasser Worm Hits Numerous PCs Worldwide (Reuters) |
| 23. |
ISA Server 2004 set for May launch |
| 24. |
Sasser worm expected to hit hard on Monday |
| 25. |
Aventail improves cleanup, client security |
| 26. |
Sasser spawns children, headaches |
| 27. |
Microsoft premiers DRM technology |
| 28. |
Microsoft unterstützt IT-Sicherheit des Bund |
| 29. |
Kreditkartenbetrug steigt an |
| 30. |
new Sasser blog |
| 31. |
3 May W32/Sasser-D |
2:21:28 PM
|
|
----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
|
| 1. |
Microsoft releases content protection details. Microsoft has finally released the details on its new rights management system, originally code-named Janus. While originally targetted for the music download market, it will likely have a brighter future with other media. By Eric Bangeman. |
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 2. |
Star Wars Galaxies economy laid bare. Raph Koster, Supreme Dictator of the Star Wars Galaxies online game, has posted detailed stats about the SWG monetary supply and flow. Ted Castronova, the leading MMO economist in the (very small) field, says "So rather than say that something is wrong from an economic policy point of view - I don't know that, hell, an army of Stanford Nobel laureates can't know that, not yet - all I can say is that something in these numbers makes me uncomfortable."
X-NAS-Bayes: #0: 1.27228E-288; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 315
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
SWG uses what is called a faucet-drain economy. You can visualize a spigot of cash coming into the game, a big ol' sink where the money sloshes around, and a set of drains where the money goes out the bottom. When money comes in from the faucet, it's actually being "minted" - it's being created by the game system. The sink is basically the whole game. It's the bank accounts, the player inventories, all the money that is used for trades and transactions among players, etc. When money goes out the bottom, it's deleted from the system, rather than circulating back to a central bank.
(Credits aren't the only thing that is generated, of course - a significant faucet into the game economy actually comes in the form of resource mining. Since the amount of money and the amount of resources coming into the game at a time both vary, you get small fluctuations in the price of resources as the value of both the resources and the currency changes. Plus, you also get different qualities of resources that affect the price. But we're not really talking about commodities pricing today, much as just about the value of a credit).
Link
(via Terra Nova) |
| 3. |
Kevin Sites blog from Iraq: Road to Nowhere. Blogging live from Iraq, MSNBC combat correspondent Kevin Sites posts a new entry today. Last week, he and the the military unit with which he was traveling near Ramadi were hit by an IED, also known as a "roadside bomb."
We will take four humvees on this trip, including a gun truck or technical with a mounted 240 SAW, squad assault weapon and about 20 marines carrying M-16 and M4 assault rifles. As the captain speaks, the marines pass out smoke grenades that could be used to obscure a disabled vehicle from enemy fire. They also pass out fragmentation grenades, olive green orbs with strips of red duct tape wrapped around the handles to keep them from exploding in case the pin is pulled inadvertently.
The captain (who doesn't wanted to be identified by name) reads off a checklist that covers everything from the military grid coordinates for our travel to recent intel on enemy forces in the area, radio frequencies and procedures if we come under attack. "I'm not reading this for my own amusement," he says gruffly, "if something happens to me or Gunny you want to know how to get back so you better be fucking writing it down."
Link, discuss |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 4. |
Microsoft signs security pact with Germany. CEO Steve Ballmer settles a security agreement with the federal government of Germany, which has become one of the most prominent of Linux supporters. |
| 5. |
Google's $2.7 billion ambition. The Internet's leading search engine files plans to raise $2.7 billion in an unusual auction-style public offering of stock. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 6. |
Google Takes a Walk Down the Street (washingtonpost.com). washingtonpost.com - Google has the distinction of being king of the search engine world and a verb in the English lexicon. But why stop there? |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 7. |
Coming Soon to a Wireless Hotspot Near You: Ads |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 8. |
BugTraq: [waraxe-2004-SA#026 - Multiple vulnerabilities in Coppermine Photo Gallery for PhpNuke]. Sender: Janek Vind [come2waraxe at yahoo dot com] |
| 9. |
BugTraq: Re: Will the Sasser worm become the next Blaster?. Sender: Damian Menscher [menscher at uiuc dot edu] |
| 10. |
BugTraq: Re: New LSASS-based worm finally here (Sasser). Sender: Javier Fernandez-Sanguino [jfernandez at germinus dot com] |
| 11. |
Vulns: Citrix MetaFrame XP Client Drive Access Vulnerability. MetaFrame is a remote desktop software package distributed by Citrix.
Citrix MetaFrame XP has been reported prone to an access validation vulnerability. It is reported t... |
| 12. |
Vulns: PHP-Nuke Multiple Video Gallery Module SQL Injection Vulnerabilities. PHP-Nuke is a freely available, open source web content management system. It is maintained by Francisco Burzi, and available for the Unix, Linux, and Microsoft Operating... |
| 13. |
Vulns: SMC Broadband Routers 7008ABR and 7004VBR Unauthorized Access Vulnerability. SMC 7008ABR and 7004VBR are broadband routers and print servers designed for home and small business use.
It has been reported that the administrative web interface is e... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 14. |
L'application de correctifs logiciels sur les firewalls en entreprise |
| 15. |
Les PDA en entreprise : dangereux ou inoffensifs ? |
| 16. |
L'escroquerie en ligne a sensiblement baissé en 2003 |
| 17. |
Sasser Worm Strikes Hundreds of Thousands of PCs (Reuters) |
| 18. |
Passport Safety, Privacy Face Off |
| 19. |
Tech Industry Begs for Oversight |
| 20. |
Sasser-Wurm treibt sein Unwesen |
| 21. |
WORM_SASSER.D |
1:21:10 PM
|
|
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 1. |
Musicians don't understand copyright, but they don't like the RIAA suing their fans. The Pew Internet and American Life project has just concluded a survey of 2,700+ musicians, measuring their attitude to the lawsuits the record labels have brought against their fans in their name:
X-NAS-Bayes: #0: 0; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 314
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
When asked what impact free downloading on the Internet has had on their careers as musicians, 37% say free downloading has not really made a difference, 35% say it has helped and 8% say it has both helped and hurt their career. Only 5% say free downloading has exclusively hurt their career and 15% of the respondents say they don't know...
67% say artists should have complete control over material they copyright and they say copyright laws do a good job of protecting artists...
Some 60% of those in the sample say they do not think the Recording Industry Association of America's suits against online music swappers will benefit musicians and songwriters. Those who earn the majority of their income from music are more inclined than "starving musicians" to back the RIAA, but even those very committed musicians do not believe the RIAA campaign will help them. Some 42% of those who earn most of their income from their music do not think the RIAA legal efforts will help them, while 35% think those legal challenges will ultimately benefit them.
220K PDF Link
(Thanks, Wendy!) |
| 2. |
Cool Voice of America censor-buster b0rked by idiotic anti-pr0n measure. The US International Broadcasting Bureau (Voice of America, basically), created a proxy service to allow Chinese, Iranians and other oppressed people to circumvent their national firewalls, relaying forbidden pages behind the silicon curtains. However, the IBB decided to kowtow to unknown bluenoses and install a filter that would block foreigners from gaining access to pr0n: to do this, they came up with the bright idea of blocking any URL that contained naughty words. This is a stupid, stupid idea:
IBB's list includes "ass" (which inadvertently bans usembassy.state.gov), "breast" (breastcancer.com), "hot" (hotmail.com and hotels.com), "pic" (epic.noaa.gov) and "teen" (teens.drugabuse.gov).
Link |
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 3. |
Briefly: EU warns music-licensing companies. Plus: Calif. Senate passes RFID measure...Gator, L.L. Bean dispute to be reheard...Senate to mull copyright, piracy measures. |
| 4. |
IBM switches on Power5 servers. Big Blue unveils its new high-powered server line, which features the company's latest 64-bit processor and is seen as a possible threat to Intel, Sun and HP. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 5. |
Microsoft premiers DRM technology (MacCentral). MacCentral - With an eye to capturing a larger share of the budding market for online music and movie distribution software, Microsoft Corp. announced Monday a new version of its copyright protection software that will allow users to play rented content on portable devices, such as mobile phones, and networked devices within the home. |
| 6. |
Founder of Internet travel site wounded in vacation car crash (AFP). AFP - Martha Lane Fox, co-founder of Lastminute.com, one of the Internet's most durable travel start-up companies, was seriously wounded in a car accident while travelling in the south of Morrocco. |
| 7. |
Wyo. House Candidates Collect Cash Online (AP). AP - Internet fund-raising for political campaigns has made its debut in Wyoming with two U.S. House candidates establishing online donations and others considering it. |
| 8. |
EU Worried About Music Licensing Systems (AP). AP - The European Union launched a probe Monday into 16 national organizations that collect royalties for composers and songwriters, charging that their system for licensing music is hampering the rollout of Internet downloading services across Europe. |
| 9. |
New Virus Snarls Thousands of Computers (AP). AP - An Internet worm that takes advantage of a known flaw with the Windows operating system raced around the world Monday, snarling tens of thousands of computers and causing Internet traffic to slow. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 10. |
Growing Teeth with Stem Cell Technology |
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
|
| 11. |
Sasser net worm disruption grows. A Finnish bank and Taiwan's post office are the latest casualties of a virus attacking Microsoft computers. |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 12. |
Sasser spawns children, headaches. At least two new versions of a malicious computer worm that appeared late Friday were circulating on the Internet Monday, according to computer security experts and antivirus software companies. |
----------------------------------------------------------------------
InfoWorld: Security
----------------------------------------------------------------------
|
| 13. |
Aventail improves cleanup, client security. Faced with a rising tide of competition in the market for SSL (Secure Sockets Layer) VPN (Virtual Private Network) products, Aventail Corp. plans to announce a number of updates to its SSL VPN platform, called "ASAP." |
| 14. |
Microsoft premiers DRM technology. With an eye to capturing a larger share of the budding market for online music and movie distribution software, Microsoft Corp. announced Monday a new version of its copyright protection software that will allow users to play rented content on portable devices, such as mobile phones, and networked devices within the home. |
| 15. |
Sasser spawns children, headaches. At least two new versions of a malicious computer worm that appeared late Friday were circulating on the Internet Monday, according to computer security experts and antivirus software companies. |
----------------------------------------------------------------------
SecurityFocus Vulns
----------------------------------------------------------------------
|
| 16. |
BugTraq: [SECURITY] [DSA 500-1] New flim packages fix insecure temporary file creation. Sender: Matt Zimmerman [mdz at debian dot org] |
| 17. |
BugTraq: PaX Linux Kernel 2.6 Patches DoS Advisory. Sender: chris [chris at cr-secure dot net] |
| 18. |
BugTraq: EEYE: Apple QuickTime (QuickTime.qts) Heap Overflow. Sender: Marc Maiffret [mmaiffret at eeye dot com] |
| 19. |
BugTraq: W32/Sasser a and b SNORT Sigs. Sender: Martin Overton [martin at arachnophiliac dot com] |
| 20. |
Vulns: MPlayer/Xine-Lib Multiple RealRTSP Buffer Overrun Vulnerabilities. Multiple buffer overruns were reported in realrtsp code shared between MPlayer and xine-lib. MPlayer and xine both support the Real RTSP (Real-Time STreaming Protocol) f... |
| 21. |
Vulns: Multiple Vendor TCP Sequence Number Approximation Vulnerability. TCP provides stateful communications between hosts across a network. TCP sessions are established by a three-way handshake and use random 32-bit sequence and acknowledg... |
| 22. |
Vulns: Cisco Internet Operating System SNMP Message Processing Denial Of Service Vulnerability. Cisco Internet Operating System (IOS) is run on Cisco networking devices. The Simple Network Management Protocol is a protocol used by the affected devices to allow for r... |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 23. |
Linux has its own security holes |
| 24. |
Intruder alert - preparing for the worst-case scenario |
| 25. |
Steamed about security |
| 26. |
Give it up: info for protection |
| 27. |
HNS Newsletter issue 211 has been released |
| 28. |
HNS learning session: DDoS threats |
| 29. |
Scanning the horizon |
| 30. |
Microsoft unveils new antipiracy tools |
| 31. |
Sasser Worm Strikes Hundreds of Thousands (Reuters) |
| 32. |
Web Wiz Forum SQL Injection and Security Bypass |
| 33. |
FLIM Insecure Temporary File Creation Vulnerability |
| 34. |
Debian update for flim |
| 35. |
Moodle "help.php" Cross-Site Scripting Vulnerability |
| 36. |
Web Wiz Forum SQL Injection and Security Bypass |
| 37. |
Web Wiz Forum SQL Injection and Security Bypass |
| 38. |
FLIM Insecure Temporary File Creation Vulnerability |
| 39. |
FLIM Insecure Temporary File Creation Vulnerability |
| 40. |
Debian update for flim |
| 41. |
Debian update for flim |
| 42. |
Moodle "help.php" Cross-Site Scripting Vulnerability |
| 43. |
Moodle "help.php" Cross-Site Scripting Vulnerability |
| 44. |
Updated: MS04-011 LSASRV Exploit |
| 45. |
Sasser / SasserB / SasserC worm links and information - more MS04-011 exploits |
| 46. |
Sasser verlamt post in Taiwan |
| 47. |
Microsoft gaat Duitsland helpen met beveiliging |
12:20:50 PM
|
|
----------------------------------------------------------------------
Boing Boing
----------------------------------------------------------------------
|
| 1. |
Cool new Mars images. BoingBoing buddy John Parres says:
X-NAS-Bayes: #0: 1.64963E-265; #1: 1
X-NAS-Classification: 0
X-NAS-MessageID: 313
X-NAS-Validation: {E681C936-E9F0-4DDC-9901-74301AF33E67}
The Mars rover Opportunity has arrived at "Endurance Crater" revealing a variety of strata and rock formations and intriguing sand/salt formations at the bottom. At issue now is not whether Opportunity can roll in but whether she can climb back out for further investigations.
The Space.com bulletin boards are giddy at the possibility of investigating 'water seeps' One poster is reporting that a lead JPL scientists is predicting that Opportunity might last another six months. Another suggests that "the plan for Opprtunity is to head South/South West after it's done with Endurance Crater. The objective being the white area which would be an ideal area to look for fossils. If the rover can last as long as hoped though that puts some of the much larger craters within reach too!"
Image here,, and chat here. |
| 2. |
Vintage anti-porn propaganda -- Commie Terrorist Smutmongers!. 
Following up on what's becoming a series of anti-porn propaganda posts, BoingBoing backlon says, "The excellent (and boy do I mean *excellent*) Prelinger Archives has a couple of films that link 'pornography to the Communist conspiracy and the decline of Western civilization.'"
The short film was sponsored by Charles H. Keating, Jr. (the same banker implicated in the savings-and-loan scandals) as part of his decades-long crusade against porn, and reminds us that "Pornography and 'fun' lead to illegitimate children and hefty financial burden on taxpayers." Almost as much of a burden as S&L bailouts! "Perversion for Profit" also exposes the secret ties between adult entertainment and "homosexuality, lesbianism, violent crime, the Communist conspiracy and Satan."
While you're watching, check out the bodacious mid-century furniture on those babes. Is that an original Eames lounge chair she's vamping on? I think I need a cold shower.
Link |
| 3. |
Creationist theme park. BoingBoing reader Michael says:
With all the talk on weird theme parks on Boing Boing lately, I thought readers might enjoy this New York Times article on a dinosaur theme park in Orlando that is run by creationists.Apparenly, it explains that dinosaurs were created on "the 6th day" and the Grand Canyon is evidence of Noah's ark. Amazing quote: "There are a lot of creationists that are really smart and debate the intellectuals, but the kids are bored after five minutes," said Mr. Hovind, who looks boyish at 51 and talks fast. "You're missing 98 percent of the population if you only go the intellectual route." Intellectual route?
Link (NYT, stupid site registration or bugmenot.com workaround required; thanks also to Rose for suggesting this item) |
| 4. |
Telerobots dust for fingerprints with Superglue. Researchers at the University of Calgary have built a tele-operated fingerprinting system for bomb disposal robots. Typically, the only way to grab prints from an explosive device after a 'bot blows it up is to search through the detritus. The new system sprays a jet of superglue fumes at the supsicious package. According to a New Scientist article, "the superglue vapour reacts with the organic fingerprint deposits to form a conspicuous white polymer" that can be photographed using the remote camera before the bomb, and often the robot, are blown to bits.
Link
|
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 5. |
Companies team to provide voice over cable. Net2Phone says that by using Level 3 technology it will be able to offer less-expensive Internet-based phone sevices to cable companies. |
| 6. |
U.S. blunders with keyword blacklist. CNET News.com's Declan McCullagh explains how a U.S. government agency supposedly fighting Internet censorship is quietly doing the same thing itself. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 7. |
IBM xSeries 206 Well-Equipped for Small Businesses (Ziff Davis). Ziff Davis - IBM's entry-level xSeries 206 is built for speed and scalability. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 8. |
Mozilla Thunderbird 0.6 Released |
| 9. |
Comcast Warns Infringing Customers Of Abuse |
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
|
| 10. |
Sasser net worm disruption grows. Disruption caused by a new internet virus is expected to increase on Monday, experts say. |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 11. |
Microsoft premiers DRM technology. With an eye to capturing a larger share of the budding market for online music and movie distribution software, Microsoft Corp. announced Monday a new version of its copyright protection software that will allow users to play rented content on portable devices, such as mobile phones, and networked devices within the home. |
| 12. |
Microsoft and German government agree on security. Microsoft Corp. has agreed to help the German government protect critical IT operations in its vast public sector. |
----------------------------------------------------------------------
LinuxSecurity.com
----------------------------------------------------------------------
|
| 13. |
Charges filed in 'Deceptive Duo' hacks |
| 14. |
Red Hat road map leads to SE Linux |
----------------------------------------------------------------------
Help Net Security
----------------------------------------------------------------------
|
| 15. |
Give it up: info for protection |
| 16. |
HNS Newsletter issue 211 has been released |
| 17. |
HNS learning session: DDoS threats |
| 18. |
Scanning the horizon |
| 19. |
Microsoft unveils new antipiracy tools |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 20. |
Finnish bank closes to ward off Sasser virus (AFP) |
| 21. |
Germany signs computer security agreement with Microsoft (AFP) |
| 22. |
Internet worm paralyzes third of Taiwan's national post office (AFP) |
| 23. |
Pound Format String Flaw in Syslog Processing Lets Remote Users Execute Arbitrary Code |
| 24. |
Security Focus: Mitnick busts bomb hoaxer "Ex-hacker Kevin Mitnick is a hero to the small town o... |
| 25. |
Security Focus: Charges filed in 'Deceptive Duo' hacks "A Florida man has been charged in federa... |
| 26. |
IDS 'will struggle as standalone industry' |
| 27. |
Big Blue targets SMEs with Integralis deal |
| 28. |
NAI rebrands as McAfee |
11:20:29 AM
|
|
10:20:09 AM
|
|
9:19:49 AM
|
|
8:19:30 AM
|
|
7:19:08 AM
|
|
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 1. |
Permira snags Debitel for $767M (TheDeal.com). TheDeal.com - The seller, Swisscom, will provide financing for a leveraged buyout of the German wireless company. |
----------------------------------------------------------------------
InfoWorld: Top News
----------------------------------------------------------------------
|
| 2. |
IBM buzzing about Stinger database beta release. IBM on Monday will begin an open beta phase for the upcoming release of DB2 Universal Database, codenamed Stinger, which features ease of administration through autonomic computing technologies. |
----------------------------------------------------------------------
Wired News
----------------------------------------------------------------------
|
| 3. |
NZ Volcano Scarier Than Mt. Doom. A simmering crater lake on Mt. Ruapehu, neighbor of the New Zealand mountain that starred as The Lord of the Rings' fiery Mount Doom is the volcano scientists fear most in the area. |
| 4. |
Makeovers Dot-Com: Check It Out. The Internet is augmenting the field of plastic surgery by giving hopefuls a chance to see a certain look on their own face, discuss treatments with doctors and dish celebrities who've had procedures done. |
| 5. |
Senate Keeps Web Access Tax-Free. Protecting Internet connections from taxation for four years, the Senate stopped short of a permanent ban on the tax. Telecommunications companies want to expand services; local governments want tax revenue. |
| 6. |
Give It Up: Info for Protection. The head of a huge data-aggregation warehouse regularly mined by companies and the government says the world would be safer if we did more to examine everybody's digital footprints. And he can supply the details. |
| 7. |
The Kingmaker of Personal Tech. Walt Mossberg makes or breaks products from his pundit perch at a little rag called The Wall Street Journal. By Alan Deutschman from Wired magazine. |
| 8. |
Leaky Soyuz Makes Perfect Landing. Three astronauts return safely from space with a bull's-eye touchdown in Kazakhstan. Also: NASA says there's still hope for the Hubble.... A Hollywood stunt pilot successfully tests a daring in-flight capture of the Genesis probe.... and more. By Amit Asaravala. |
| 9. |
Return of the Original Invaders. Space Invaders is the video game that kick-started the industry's meteoric worldwide rise. Now, 25 years later, Space Raiders promises to take the classic gameplay into the 21st century. Clever retro throwback, or a nostalgic misfire? A product review by Chris Kohler. |
| 10. |
Kiwis Cop Stonehenge's Star Buzz. The mysterious ring of megaliths erected on England's Salisbury Plain has enthralled visitors for millennia. Now a group of astronomers in New Zealand is trying to one-up the ancient Brits by erecting a combination solar calendar and star compass. Kim Griggs reports from Wellington. |
| 11. |
Sex Offenders Hounded by the Law. California has not established an online sex-offender registry, and some police have divulged names and addresses of parolees in their areas. Potential victims must be protected, the cops say, but some fear vigilantism. By Julia Scheeres. |
6:18:49 AM
|
|
5:18:29 AM
|
|
----------------------------------------------------------------------
Dilbert
----------------------------------------------------------------------
|
| 1. |
Dilbert for 03 May 2004.  |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 2. |
Online Lotteries: Risky Business? (PC World). PC World - It's easy to play Powerball over the Internet, but its legality remains a gamble. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 3. |
The First-Ever Installfest in Egypt |
----------------------------------------------------------------------
BBC News | Technology | UK Edition
----------------------------------------------------------------------
|
| 4. |
Writers' DVD deal talks continue. Hollywood's screenwriters will continue talks over a new deal with film and TV studios - despite the old one expiring. |
| 5. |
UK call centre growth continues. Jobs will continue to be created in UK call centres, despite work being going overseas, says a new report. |
| 6. |
Wall Street cool on Google plans. Finance experts question whether Google is right to pick an unconventional method for selling its shares. |
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
|
| 7. |
News: Charges filed in 'Deceptive Duo' hacks. Benjamin Stark, a.k.a. "The-Rev," faces a felony conviction for allegedly cracking and defacing government systems for our own good. |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 8. |
Monitore dünsten aus |
| 9. |
Sasser worm spreads at leisurely pace |
| 10. |
Apple issues QuickTime security patch |
| 11. |
MI5 turns takes anti-terror strategy to Web |
4:18:09 AM
|
|
----------------------------------------------------------------------
Ars Technica
----------------------------------------------------------------------
|
| 1. |
Ars Technica review: Hitman: Contracts. Julian Marcone takes a look at the latest in the Hitman series, Hitman: Contacts. Does the third title in the series live up to its predecessors? By Eric Bangeman. |
----------------------------------------------------------------------
SecurityFocus News
----------------------------------------------------------------------
|
| 2. |
News: Mitnick busts bomb hoaxer. The ex-hacker helps a small Michigan town solve the mystery of the high school bomb-threats. |
| 3. |
News: Charges filed in 'Deceptive Duo' hacks. Benjamin Stark, a.k.a. "The-Rev," faces a felony charge of cracking and defacing government systems for our own good. |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 4. |
RED ALERT: WORM_SASSER.B |
3:17:47 AM
|
|
----------------------------------------------------------------------
CNET News.com
----------------------------------------------------------------------
|
| 1. |
Roundup: Google aims to raise $2.7 billion in IPO. The Internet's leading search engine files plans to raise $2.7 billion in an unusual auction-style public offering. |
| 2. |
Google's hard bargain. Wall Street's money machine gives the Web search mavericks rare power to cut their own deal, but business motives may win out in the end. |
----------------------------------------------------------------------
New York Times: Technology
----------------------------------------------------------------------
|
| 3. |
How John Doerr, the Old Prospector, Finally Struck Google. John Doerr, a prominent venture capitalist in Silicon Valley, is as upbeat about the potential of Internet start-ups as ever. By Laura Rich. |
| 4. |
New Internet Site Turns Critical Eyes and Ears to the Right. Journalist David Brock will start a new Internet site this week that will monitor the conservative media and correct erroneous assertions in real time. By Jim Rutenberg. |
| 5. |
Hoping to Attract Callers to the Internet. Some of America's biggest telecommunications companies are meeting to discuss how best to provide phone services to consumers. By Ken Belson and Matt Richtel. |
| 6. |
U.S. Is Losing Its Dominance in the Sciences. Foreign advances in basic science now often rival or even exceed America's, according to federal and private experts. By William J. Broad. |
| 7. |
AOL Expands Role in Saving for College. America Online is expanding its partnership with a service that allows its members to save for their children's college tuition. By Laurie J. Flynn. |
| 8. |
Downloading Again. A survey has found online music downloading is on the rise again. Also: the most popular movies, TV shows, books and software. |
----------------------------------------------------------------------
Yahoo! News - Technology
----------------------------------------------------------------------
|
| 9. |
Sprint Unveils New Billing Plan (AP). AP - Sprint Corp. introduced a plan Monday to address wireless customers' criticisms about how much they're charged for extra time they spend on their cell phones. |
| 10. |
Microsoft Unveils New Copyright Software (AP). AP - Microsoft Corp. is unveiling copyright protection software to allow rented songs or movies to be used on portable players, cellular phones and other devices. |
----------------------------------------------------------------------
Slashdot
----------------------------------------------------------------------
|
| 11. |
A Camaro That Leaves A Wake |
----------------------------------------------------------------------
NewsIsFree: Security
----------------------------------------------------------------------
|
| 12. |
Shortcut To Security Alerts and Bulletins |
| 13. |
Happy April Fool's Day!! |
| 14. |
New Look and Updated Glossary |
| 15. |
5 Steps To Protect Yourself From Spyware |
| 16. |
BKDR_NETHIEF.O |
| 17. |
Worm unleashed that exploits latest Windows security holes, Microsoft warns |
| 18. |
3 May W32/Netsky-AC |
2:17:29 AM
|
|
12:23:59 AM
|
|
|
|
© Copyright
2004
Gregg Doherty.
Last update:
6/1/2004; 12:29:00 AM.
This theme is based on the SoundWaves
(blue) Manila theme. |
|
|
