HNS Newsletter
Issue 412 - 31.03.2008
http://www.net-security.org

================================================================
Free Webcast: Proactive Vulnerability Management
http://www.qualys.com/forms/webcasts/forrester-pvm/?lsid=7194
================================================================
Speaker: Dr. Chenxi Wang, Principal Analyst, Security and Risk
Management, Forrester Research, Inc.

In this talk, Dr. Chenxi Wang, Principal Analyst for Security and
Risk Management at Forrester Research, will cover the key aspects
of proactive vulnerability management and more importantly, the steps
via which you can follow to achieve proactive vulnerability management.

More specifically:

* Continuing assessment of network and devices
* Integration with your IT risk management systems
* Effective analysis of assessment results
* Implementation of proactive remediation

http://www.qualys.com/forms/webcasts/forrester-pvm/?lsid=7194
=========================================================

Table of contents:

1) Security news
2) Advisories
3) Articles
4) Software
5) Conferences
6) Security World
7) Virus News


[ Security news ]


----------------------------------------------------------------

SECURITY ERGONOMICS
The security industry tends to develop and implement new protection
strategies in a very linear way (e.g. if the attacker beats
two-factor authentication, introduce another element and make it
three-factor authentication, etc.).
http://www.net-security.org/news.php?id=15823


DEPLOYING WINDOWS SERVER 2008 WITH SYSTEM CENTER
With the release of System Center Configuration Manager 2007, server
administrators can now take advantage of the same operating system
deployment tools that client administrators have been able to use for
several years.
http://www.net-security.org/news.php?id=15824


MONITOR MAINFRAME SESSIONS REMOTELY
Build a simple shell script and view everything a mainframe user is
doing, in real-time.
http://www.net-security.org/news.php?id=15825


BEIJING INVESTIGATES SPAM ATTACK
China is investigating a spam attack after almost half of China's
mobile phone users received unwanted text messages from advertisers.
http://www.net-security.org/news.php?id=15826


EMPIRICAL EXPLOITATION OF LIVE VIRTUAL MACHINE MIGRATION
As virtualization continues to become increasingly popular in
enterprise and organizational networks, operators and administrators
are turning to live migration of virtual machines for the purpose of
workload balancing and management. However, the security of live
virtual machine migration has yet to be analyzed.
http://www.net-security.org/news.php?id=15827


MANAGE MYSQL REMOTELY WITH PHPMYADMIN
phpMyAdmin is open source software tool, written (obviously) in PHP.
It allows you to perform all kinds of MySQL administrative tasks over
the Web by means of an easy graphical interface.
http://www.net-security.org/news.php?id=15828


SECURITY LAPSE EXPOSES FACEBOOK PHOTOS
A security lapse made it possible for unwelcome strangers to peruse
personal photos posted on Facebook Inc.'s popular online hangout,
circumventing a recent upgrade to the Web site's privacy controls.
http://www.net-security.org/news.php?id=15829


HNS PODCAST: VULNERABILITY MANAGEMENT CONSIDERATIONS
In this HNS podcast, Anothony Alves from CORE Security Technologies
discusses briefly vulnerability management. He covers some of the
things you should consider while performing vulnerability management.
http://www.net-security.org/news.php?id=15830


MACBOOK AIR HACKED IN SECURITY CONTEST
A team of security researchers has won $10,000 for hacking a MacBook
Air in two minutes using an undisclosed Safari vulnerability.
http://www.net-security.org/news.php?id=15831

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

SUSE Security Announcement - kernel (SUSE-SA:2008:017)
http://www.net-security.org/advisory.php?id=8710


Debian Security Advisory - exiftags (DSA-1533-1)
http://www.net-security.org/advisory.php?id=8709


Mandriva Linux Security Update Advisory - sarg (MDVSA-2008:079)
http://www.net-security.org/advisory.php?id=8708


Debian Security Advisory - xulrunner (DSA-1532-1 )
http://www.net-security.org/advisory.php?id=8707


US-CERT Technical Cyber Security Alert - Mozilla Updates for Multiple
Vulnerabilities (TA08-087A)
http://www.net-security.org/advisory.php?id=8706


US-CERT Technical Cyber Security Alert - Cisco Updates for Multiple
Vulnerabilities (TA08-087B)
http://www.net-security.org/advisory.php?id=8705


Debian Security Advisory - policyd-weight (DSA-1531-1)
http://www.net-security.org/advisory.php?id=8704


Mandriva Linux Security Update Advisory - openssh (MDVSA-2008:078)
http://www.net-security.org/advisory.php?id=8703


Mandriva Linux Security Update Advisory - perl-Tk (MDVSA-2008:077)
http://www.net-security.org/advisory.php?id=8702


Debian Security Advisory - firebird2 (DSA-1529-1 )
http://www.net-security.org/advisory.php?id=8701


Ubuntu Security Notice - ruby1.8 vulnerabilitie (USN-596-1 )
http://www.net-security.org/advisory.php?id=8700


Ubuntu Security Notice - sdl-image1.2 vulnerabilities (USN-595-1 )
http://www.net-security.org/advisory.php?id=8699


Ubuntu Security Notice - libnet-dns-perl vulnerability (USN-594-1)
http://www.net-security.org/advisory.php?id=8698


Ubuntu Security Notice - dovecot vulnerabilities (USN-593-1)
http://www.net-security.org/advisory.php?id=8697


Mandriva Linux Security Update Advisory - wml (MDVSA-2008:076)
http://www.net-security.org/advisory.php?id=8696


Apple Security Update - Security Update 2008-002 v1.1
(Apple-SA-2008-03-26)
http://www.net-security.org/advisory.php?id=8695


Cisco Security Advisory - Cisco IOS Virtual Private Dial-up Network
Denial of Service Vulnerability (cisco-sa-20080326-pptp)
http://www.net-security.org/advisory.php?id=8694


Cisco Security Advisory - Vulnerability in Cisco IOS with OSPF, MPLS
VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720
(cisco-sa-20080326-queue)
http://www.net-security.org/advisory.php?id=8693


Cisco Security Advisory -  Cisco IOS User Datagram Protocol Delivery
Issue For IPv4/IPv6 Dual-stack Routers (cisco-sa-20080326-IPv4IPv6)
http://www.net-security.org/advisory.php?id=8692


Cisco Security Advisory - Cisco IOS Multicast Virtual Private Network
(MVPN) Data Leak (cisco-sa-20080326-mvpn)
http://www.net-security.org/advisory.php?id=8691


Cisco Security Advisory - Multiple DLSw Denial of Service
Vulnerabilities in Cisco IOS (cisco-sa-20080326-dlsw)
http://www.net-security.org/advisory.php?id=8690


Ubuntu Security Notice - firefox vulnerabilities (USN-592-1)
http://www.net-security.org/advisory.php?id=8689


Debian Security Advisory - cupsys (DSA-1530-1)
http://www.net-security.org/advisory.php?id=8688


Gentoo Linux Security Advisory - Wireshark: Denial of Service (GLSA
200803-32)
http://www.net-security.org/advisory.php?id=8687


Ubuntu Security Notice - bzip2 vulnerability (USN-590-1)
http://www.net-security.org/advisory.php?id=8686


Gentoo Linux Security Advisory - MIT Kerberos 5: Multiple
vulnerabilities (GLSA 200803-31)
http://www.net-security.org/advisory.php?id=8685


Ubuntu Security Notice - icu vulnerabilities (USN-591-1 )
http://www.net-security.org/advisory.php?id=8684


Debian Security Advisory - serendipity (DSA-1528-1)
http://www.net-security.org/advisory.php?id=8683


Debian Security Advisory - debian-goodies (DSA-1527-1)
http://www.net-security.org/advisory.php?id=8682


Mandriva Linux Security Update Advisory - bzip2 (MDVSA-2008:075)
http://www.net-security.org/advisory.php?id=8681

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

HNS PODCAST: INFOSEC WORLD CONFERENCE & EXPO
Jean Hey, Vice President of MIS Trainining Institute talks about
InfoSec World Conference & Expo, event that the Help Net Security
staff attended in early March. In this five minute podcast Jean
discusses the scope of the conference, as well as shares some
insights on the event evolution, growth and target audience.
http://www.net-security.org/article.php?id=1122


HNS PODCAST: VULNERABILITY MANAGEMENT CONSIDERATIONS
In this HNS podcast, Anothony Alves from CORE Security Technologies
discusses briefly vulnerability management. He covers some of the
things you should consider while performing vulnerability management.
http://www.net-security.org/article.php?id=1121


EMPIRICAL EXPLOITATION OF LIVE VIRTUAL MACHINE MIGRATION
As virtualization continues to become increasingly popular in
enterprise and organizational networks, operators and administrators
are turning to live migration of virtual machines for the purpose of
workload balancing and management. However, the security of live
virtual machine migration has yet to be analyzed.
http://www.net-security.org/article.php?id=1120

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3

Mac OS X software is located at:
http://net-security.org/software_main.php?cat=5


----------------------------------------------------------------

ARPALERT 2.0.10 (Linux)
This software listens on a network interface (without using
'promiscuous' mode) and catches all conversations of MAC address to
IP request.
http://www.net-security.org/software.php?id=335


DROPBEAR SSH SERVER 0.51 (Linux)
Dropbear is an SSH 2 server, designed to be usable in small memory
environments.
http://www.net-security.org/software.php?id=490


GNUPG 2.0.8 (Linux)
GnuPG stands for GNU Privacy Guard and is GNU's tool for secure
communication and data storage.
http://www.net-security.org/software.php?id=295


NMAP 4.60 (Linux)
Nmap ("Network Mapper") is an open source utility for network
exploration or security auditing.
http://www.net-security.org/software.php?id=1


NUFW 2.2.13 (Linux)
NuFW is an "authenticating gateway". This means it requires
authentication for any connections to be forwarded through the
gateway.
http://www.net-security.org/software.php?id=526


OUTPOST FIREWALL PRO 6.0.2284.253.0485 (Windows)
This is a comprehensive solution for online protection.
http://www.net-security.org/software.php?id=276


PHPKRM 1.5.0 (Linux)
PHPkrm is a Web-based GNUPG keyring manager.
http://www.net-security.org/software.php?id=347


PROSHIELD 3.8.19 (Linux)
ProShield is a security program for Debian Linux.
http://www.net-security.org/software.php?id=282


SHOREWALL 4.0.10 (Linux)
Shorewall is an iptables based firewall that can be used on a
dedicated firewall system, a multi-function masquerade gateway/server
or on a standalone Linux system.
http://www.net-security.org/software.php?id=40


STUNNEL 4.22 (Linux)
Stunnel is a program that allows you to encrypt arbitrary TCP
connections inside SSL (Secure Sockets Layer).
http://www.net-security.org/software.php?id=271


SUPHP 0.6.3 (Linux)
suPHP is a combination of an Apache module (mod_suphp) and an
executable which provides a wrapper for PHP.
http://www.net-security.org/software.php?id=161

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

RSA Conference 2008
Organized by RSA Security - 7 April-11 April 2008
http://www.net-security.org/conference.php?id=243


HITBSecConf2008
Organized by Hack in the Box - 14 April-17 April 2008
http://www.net-security.org/conference.php?id=246


TRISC 2008
Organized by Texas Chapters of ISSA, ISACA, ASIS International and
Infragard - 21 April-23 April 2008
http://www.net-security.org/conference.php?id=249


Infosecurity 2008
Organized by Reed Exhibitions - 22 April-24 April 2008
http://www.net-security.org/conference.php?id=245


OWASP AppSec Europe 2008 Belgium
Organized by OWASP - 20 May-23 May 2008
http://www.net-security.org/conference.php?id=248


Hacker Halted USA 2008
Organized by EC-Council - 28 May-4 June 2008
http://www.net-security.org/conference.php?id=244


Second International Symposium on Human Aspects of Information
Security & Assurance
Organized by  Information Security & Network Research Group,
University of Plymouth - 8 July-10 July 2008
http://www.net-security.org/conference.php?id=238

----------------------------------------------------------------




[ Security World ]


All security world articles are located at:
http://www.net-security.org/secworld_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

New release of Savant endpoint security solution
http://www.net-security.org/secworld.php?id=5947


Man accused for promoting bogus security software
http://www.net-security.org/secworld.php?id=5946


Patent awarded for secure database key rotation
http://www.net-security.org/secworld.php?id=5945


Altor Networks launches Virtual Firewall and Security Analyzer
http://www.net-security.org/secworld.php?id=5940


cubeByte - new solution for tackling laptop theft
http://www.net-security.org/secworld.php?id=5941


NetSupport manager now offers smart card support
http://www.net-security.org/secworld.php?id=5942


Instant messaging – see no evil, hear no evil
http://www.net-security.org/secworld.php?id=5931


Veracode's application security testing solution for U.S. Government
http://www.net-security.org/secworld.php?id=5938


VPN solution for Symbian OS-based mobile devices
http://www.net-security.org/secworld.php?id=5934


iDetector wireless network capabilities
http://www.net-security.org/secworld.php?id=5943


Integrated product for fighting online fraud and identity theft
http://www.net-security.org/secworld.php?id=5936


New version of ModSecurity open source web application firewall
http://www.net-security.org/secworld.php?id=5935


Book signings at RSA Conference 2008
http://www.net-security.org/secworld.php?id=5937


90% of public websites are vulnerable to attack
http://www.net-security.org/secworld.php?id=5939


Automated system lock down tool for Oracle Enterprise Linux
http://www.net-security.org/secworld.php?id=5933


New Mac OS X software: Norton AntiVirus Dual Protection for Mac
http://www.net-security.org/secworld.php?id=5932


Secure360 conference to focus on key security issues
http://www.net-security.org/secworld.php?id=5930

----------------------------------------------------------------




[ Virus News ]


All virus news are located at:
http://www.net-security.org/viruses.php


----------------------------------------------------------------

Apple Mac trojan horse aims to steal money from Mac users
http://www.net-security.org/virus_news.php?id=928


Euro 2008 football ticket website used to to infect unwary fans
http://www.net-security.org/virus_news.php?id=927

----------------------------------------------------------------





Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php