Source: Noel - RootPrompt.org - Posted by Benjamin D. Thomas
Soon after rebuilding the system I started talking to someone on IRC that identified themselves as the person that had cracked our system. He was connecting from the same places that the cracker had been coming from and seemed to know . . .
Federal agencies will have to demonstrate a ``compelling need'' to gather the data, publicly disclose how any collected personal information would be safeguarded and get the authorization of the agency head. For example, using a cookie on a State Department Web . . .
This report examines whether P3P is an effective solution to growing public concerns about online privacy. The report surveys earlier experience with "cookie" technology and notes similarities. The report finds that . . .
Source: RootFest.org [HackerNews] - Posted by Pete O'Hara
"The Midwest's largest computer security convention opens today in St. Paul's RiverCentre. RootFest organizers estimate that as many as 1000 people may attend RootFest this year. It is hoped that the con will be broadcast in both audio and video in . . .
Source: Brian Paxton - Posted by LinuxSecurity.com Team
Brian Paxton writes, "It's an attempt to audit the linux kernel for any security vulnerabilities and/or holes and/or possible vulnerabilities and/or possible holes, and of course without adding more bugs or drawbacks to the existing kernels. The suggested kernels to be audited are 2.0.x kernel series , 2.2.x kernel series, and the 2.3.x/2.4.x kernel series. The group and it's work shall be dealt and worked with via a mailing list."
Source: OpenWall Project - Posted by LinuxSecurity.com Team
Solar's kernel security enhancement patch is now available for the recently-released 2.2.16 Linux kernel. "This patch is a collection of security-related features for the Linux kernel, all configurable via the new 'Security options' configuration section. In addition to the . . .
Source: SecurityFocus - Posted by LinuxSecurity.com Team
This article presents a walkthrough of Bastille Linux, a popular hardening program for Red Hat and Mandrake, available for free from Jon Lasser, Pete Watkins, myself, and the rest of the Bastille Linux project. This walkthrough won't be the kind . . .
Source: Linux.com -- - Posted by LinuxSecurity.com Team
Here is an interview with the authors of Libsafe..."Arash Baratloo and Navjot Singh two of the primary developers for Libsafe, a free software library that protects against security exploits based on buffer overflow vulnerabilities. They work as members of . . .
Source: Federal Computer Week - Posted by LinuxSecurity.com Team
The CIO Council is asking every federal chief information officer to find and fix the lapses that made a top 10 list of critical Internet security threats. The list, released Thursday, includes problems that have solutions, but the solutions have . . .
The System and Network Security group is is meeting with several key players in the information security arena on Friday to discuss and outline the 10 top security threats. "Tomorrow (June 1) the FBI, Justice Department, GSA, the CIAO . . .
