HNS Newsletter
Issue 143 - 06.01.2003.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It 
covers weekly roundups of security events that were in the 
news the past week. Visit Help Net Security for the latest 
security news - http://net-security.org.


-----------------------------------------------------------------
SECURITY INCIDENT ALERT
-----------------------------------------------------------------
Check your Web servers, FTP servers, Mail servers , DNS servers,
firewalls, IDS systems, switchers and routers for over 900 up to 
date vulnerabilities. Secure your critical assets today!

FREE System Security Test and Detailed Report
http://www.net-security.org/lm/ads/ads.pl?banner=scannerx1
-----------------------------------------------------------------


Table of contents:
 
1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Security world
6) Security software
7) Virus news


[ General security news ]

 
----------------------------------------------------------------

BOOK REVIEW: SQL SERVER SECURITY DISTILLED
Securing SQL Server is one of the most important responsibilities 
of the SQL Server professional.
>> http://www.net-security.org/news.php?id=1707


YEAR IN PRIVACY: CITIZENS LOSE
Each year, governments chip away at citizens' civil liberties. It's 
a tactic the United States condemned during the Cold War but 
now uses in the war on terror.
>> http://www.net-security.org/news.php?id=1708


IDENTITY THIEVES CATCH THE UNWARY
Authorities are struggling to combat a computer-based crime 
wave, writes Peter Huck.
>> http://www.net-security.org/news.php?id=1709


SECT MEMBERS JAILED IN STATION TAKEOVER
Eight members of Falun Gong were sentenced to as many as 13 
years in prison for taking over local television and radio signals 
in eastern China's Anhui Province.
>> http://www.net-security.org/news.php?id=1710


SO MANY HOLES, SO FEW HACKS
Hole after hole, breach after breach, flaw after flaw is found - 
and most of the time, it's in a Windows system. Yet hackers 
generally don't exploit them. Why is that?
>> http://www.net-security.org/news.php?id=1711


CRYPTOSYSTEMS: CONFIGURING IPSEC
The author is demonstrating a tunnel between two FreeBSD 
machines acting as VPN gateways.
>> http://www.net-security.org/news.php?id=1712


THE YEAR AHEAD: THE FUTURE OF VIRUSES
In 2002, users and companies got a respite from the disruptive 
viruses of 2001. But a more sophisticated generation of worms 
is on the way.
>> http://www.net-security.org/news.php?id=1714


TOWARD A MORE SECURE 2003
The challenges to info-tech security will surely be daunting, and 
companies' efforts to stay safe will have to keep increasing.
>> http://www.net-security.org/news.php?id=1715


SIX TOP SECURITY ISSUES FOR EXECUTIVES
To succeed, you must know your enemy as well as your own 
strengths and weaknesses. The following are six issues of 
which executives should be aware to protect their systems.
>> http://www.net-security.org/news.php?id=1716


THE SPAM PROBLEM: MOVING BEYOND RBLS
Alternatives to Realtime Blackhole Lists (RBLs) should be actively 
deployed because of serious well-known problems with the RBL 
spam filtering technique.
>> http://www.net-security.org/news.php?id=1717


WI-FI: THE NATIONAL SECURITY THREAT
Some in the Department of Defense say Wi-Fi can interfere 
with military radar.
>> http://www.net-security.org/news.php?id=1718


FIGHTING SPAM: LEGISLATION WON'T WORK
Passing anti-spam legislation, while perhaps well intended, is like 
passing a law against rain. Words on paper won't stop it.
>> http://www.net-security.org/news.php?id=1719


SECURITY SCARE
Gartner’s security experts say if your organisation doesn’t use a 
multi-layered security strategy, it does not have a commercial 
future.
>> http://www.net-security.org/news.php?id=1720


THE YEAR THE CRIMINALS TOOK OVER
This year brought real criminals who have discovered how user
friendly the Internet is. Millions of dollars are being stolen now 
from innocent and naive Net users by con artists of every flavor.
>> http://www.net-security.org/news.php?id=1721


WINDOWS FORENSICS: A CASE STUDY, PART 1
This article offers a brief overview of the detection and analysis 
of attack an attack incident.
>> http://www.net-security.org/news.php?id=1722


THE BRISCOE SYNDROME
Fear of terrorism and a desire to cooperate with law enforcement 
has lead many corporate insiders to pony up sensitive information 
on their customers to anyone with a badge... with no court order 
required.
>> http://www.net-security.org/news.php?id=1723


ONLINE PRIVACY IS DEAD - WHAT NOW?
Time after time, consumers have told researchers they worry 
about what happens to personal data provided to online merchants. 
But shoppers are not worried enough to close their wallets.
>> http://www.net-security.org/news.php?id=1724


IDENTITY SCANNERS RAISE PRIVACY CONCERNS
The frenzy for anything security-related has created markets for 
purveyors of all sorts of technology. Take Imaging Automation, 
for example.
>> http://www.net-security.org/news.php?id=1726


SECURITY 2002: FOR BETTER OR WORSE?
Driven by terrorist attacks as well as by persistent computer 
viruses, security became a top priority for companies and the 
U.S. government in 2002. 
>> http://www.net-security.org/news.php?id=1727


CONFIGURING JAGUAR'S FIREWALL
Jaguar, Mac OS X 10.2, comes with a built-in firewall. Here's an 
article that will help you with the configuration.
>> http://www.net-security.org/news.php?id=1728


BUSH'S YEAR OF U.S. SURVEILLANCE
The Bush administration's efforts in 2002 to poke into the private 
lives of American citizens prompt one privacy advocate to draw 
comparisons to Sauron, the all-seeing dark wizard in The Lord 
of the Rings.
>> http://www.net-security.org/news.php?id=1729


10 TIPS FOR MOBILE SECURITY
As the number of mobile workers increases, security challenges 
become more important.
>> http://www.net-security.org/news.php?id=1734


FOUR ACCUSED IN ID THEFTS AT H&R BLOCK
More than two dozen customers who went to H&R Block for tax
preparation help had their personal information stolen as part of 
an identity theft scam, according to a federal complaint.
>> http://www.net-security.org/news.php?id=1735


TRUSTWORTHY COMPUTING IN 2002
In 2002 Microsoft was spreading Fear, Uncertainty and Doubt in 
an effort to turn people away from Linux and Open Source. Their 
focus on increased security didn't get them anywhere.
>> http://www.net-security.org/news.php?id=1736


STUDENT ARRESTED FOR SECURITY SECRETS
The FBI has arrested a Russian college student who was accused 
of stealing and distributing hundreds of secret documents about 
new anti-piracy technology from DirecTV.
>> http://www.net-security.org/news.php?id=1737


WHY KEVIN MITNICK WORRIES ME
The solution to the ever-growing army of intruders is to beef up 
our cybercrime-fighting forces - exponentially. The FBI created a 
new cybercrime unit in late 2001, but it doesn't appear to be enough.
>> http://www.net-security.org/news.php?id=1738


WHAT'S UP FOR THE INTERNET IN 2003?
Faster, more-mobile services and gadgets, hot spots everywhere, 
and maybe an end to spam, say predictions.
>> http://www.net-security.org/news.php?id=1739


EXCHANGE 2000 IN THE ENTERPRISE: TIPS AND TRICKS PART ONE
This two-part article discusses an alternate configuration which is 
flexible enough to be used in smaller installations that do not use 
a DMZ, or as part of the DMZ configuration itself.
>> http://www.net-security.org/news.php?id=1740

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/archive_vuln.php


----------------------------------------------------------------

SkyStream Admin Shell Privilege Escalation Vulnerability
>> http://www.net-security.org/vuln.php?id=2336


Gallery v1.3.2 Allows Remote Exploit
>> http://www.net-security.org/vuln.php?id=2335


Spotting Filtering Devices
>> http://www.net-security.org/vuln.php?id=2334


Potential Denial of Service Attack with Web-CyrAdm
>> http://www.net-security.org/vuln.php?id=2333

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

Bugzilla Security Advisory - remote database password disclosure
>> http://www.net-security.org/advisory.php?id=1450


Gentoo Linux Security Announcement - xpdf
>> http://www.net-security.org/advisory.php?id=1449


Debian Security Advisory - New squirrelmail packages fix cross 
site scripting problem
>> http://www.net-security.org/advisory.php?id=1448


SuSE Security Announcement - mysql
>> http://www.net-security.org/advisory.php?id=1447


Gentoo Linux Security Announcement - leafnode
>> http://www.net-security.org/advisory.php?id=1446


SuSE Security Announcement - cups
>> http://www.net-security.org/advisory.php?id=1445


SuSE Security Announcement - fetchmail
>> http://www.net-security.org/advisory.php?id=1444


Debian Security Advisory - New bugzilla packages fix 
cross site scripting problem
>> http://www.net-security.org/advisory.php?id=1443


Gentoo Linux Security Announcement - cups
>> http://www.net-security.org/advisory.php?id=1442

----------------------------------------------------------------




[ Featured articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to staff@net-security.org


----------------------------------------------------------------

NEW YEAR'S RESOLUTIONS TO SECURE CORPORATE EMAIL
Secure email service provider 800onemail, recommends businesses 
toughen their email security in 2003 by making these resolutions...
>> http://www.net-security.org/article.php?id=329


ALADDIN KNOWLEDGE SYSTEMS GET MICROSOFT CERTIFICATION
The drivers for Aladdin Knowledge Systems' eToken family of USB 
authentication tokens were awarded Windows Hardware Quality 
Labs (WHQL) certification.
>> http://www.net-security.org/article.php?id=330

----------------------------------------------------------------




[ Security world ]


All press releases are located at:
http://www.net-security.org/press_main.php


----------------------------------------------------------------

Norman Warns Of A New Variant Of Fast Spreading Email Worm
>> http://www.net-security.org/press.php?id=1179

----------------------------------------------------------------




[ Security Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2


----------------------------------------------------------------

QNMAP 0.5
QNmap a K nmap frontend. It can be run as a non-root user with 
some functionality. It will eventually incorporate all of nmap's 
documented features and will be updated to reflect newer versions.
>> http://www.net-security.org/software.php?id=420


APD V1
APD is a single packet promiscuous node detection tool which uses 
malformed ARP packets which should normally be discarded by the 
hardware filter of NIC's in a normal (non-promiscuous) state, but 
will not be discarded by a NIC in a promiscuous state.
>> http://www.net-security.org/software.php?id=421


BITDEFENDER ANTI YAHAA
Protect yourself from the Yahaa virus. This easy to use tool 
detects and removes the Yahaa virus (Win32.Yahaa.K@mm) 
from your system.
>> http://www.net-security.org/software.php?id=422


SOPHOS RM YAHA
The W32/Yaha family are worms which spread via email. The worms 
have their own SMTP client software and use either an SMTP server 
found by examining the Windows registry or one from a list 
contained within the worm itself.
>> http://www.net-security.org/software.php?id=423

----------------------------------------------------------------




[ Virus News ] 


All virus news are located at: 
http://www.net-security.org/viruses.php 


----------------------------------------------------------------

Central Command: Top 12 Viruses For December 2002
>> http://www.net-security.org/virus_news.php?id=152


Sophos: Top 10 Viruses and Hoaxes in December 2002
>> http://www.net-security.org/virus_news.php?id=151


The Ten Most Dangerous Viruses of 2002
>> http://www.net-security.org/virus_news.php?id=150


Malware Predictions for Early 2003
>> http://www.net-security.org/virus_news.php?id=149

----------------------------------------------------------------

Questions, contributions, comments or ideas go to:
 
Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Subscribe to this weekly digest on:
http://www.net-security.org/subscribe.php

Unsubscribe by sending your e-mail address to:
info@net-security.org with UNSUBSCRIBE in the message body.

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php


-----------------------------------------------------------------
SECURITY INCIDENT ALERT
-----------------------------------------------------------------
Check your Web servers, FTP servers, Mail servers , DNS servers,
firewalls, IDS systems, switchers and routers for over 900 up to 
date vulnerabilities. Secure your critical assets today!

FREE System Security Test and Detailed Report
http://www.net-security.org/lm/ads/ads.pl?banner=scannerx1
-----------------------------------------------------------------