Get the LinuxSecurity news you want faster with RSS
Powered By
Linux Security Week: July 21st, 2008
Source: LinuxSecurity.com Contributors - Posted by Benjamin D. Thomas
This week, perhaps the most interesting articles include 'Principle of Least Privilege Prevails, Says Red Hat Security Expert,' 'Security System Auditing Tool for UNIX/Linux,' and "Relay Server Attack Tactic Dupes Auto-reporting.'
Linux+DVD
Magazine Our magazine is read by professional network and database administrators,
system programmers, webmasters and all those who believe in the power of Open
Source software. The majority of our readers is between 15 and 40 years old.
They are interested in current news from the Linux world, upcoming projects
etc.
In each issue you can find information concerning typical use of Linux: safety,
databases, multimedia, scientific tools, entertainment, programming, e-mail,
news and desktop environments.
LinuxSecurity.com
Feature Extras:
Security Features of Firefox 3.0 - Lets take a look at the security features of the newly released Firefox 3.0. Since it's release on Tuesday I have been testing it out to see how the new security enhancements work and help in increase user browsing security. One of the exciting improvements for me was how Firefox handles SSL secured web sites while browsing the Internet. There are also many other security features that this article will look at. For example, improved plugin and addon security.
Read on for more security features of Firefox 3.0.
Review: The Book of Wireless - "The Book of Wireless" by John Ross is an answer to the problem of learning about wireless networking. With the wide spread use of Wireless networks today anyone with a computer should at least know the basics of wireless. Also, with the wireless networking, users need to know how to protect themselves from wireless networking attacks.
Thank you for reading the LinuxSecurity.com
weekly security newsletter. The purpose of this document is to provide our readers
with a quick summary of each week's most relevant Linux security headline.
EnGarde Secure Community 3.0.19 Now Available! (Apr 15)
Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.19 (Version 3.0, Release 19). This release includes many updated packages and bug fixes and some feature enhancements to the EnGarde Secure Linux Installer and the SELinux policy.
Openwall-Announce: John the Ripper Pro 1.7.3+ for Linux (Jul 18)
This is likely the last announcement posting for today, and maybe for this month. It is to announce availability of John the Ripper 1.7.3 Pro for Linux (stable release) and 1.7.3.1 Pro for Mac OS X (currently in public beta).I'd like to thank Alain Espinosa for the optimized NTLM code, and for kindly placing it in the public domain. This release of JtR Pro includes Alain's code with slight modifications, as well as replacement code for the password file loader; I am going to roll these into the next revision of the jumbo patch.
Have you heard John the Ripper 1.7.3 Pro for Linux was just release? Test it out for yourself and let us know what you think about this release.
Openwall-Announce: Mod_auth_mysql with Support for phpass (Jul 18)
This is to announce several assorted items at once. I intend to post another announcement shortly, focusing on new JtR releases, so I have left those out of this one. A patched version of mod_auth_mysql with support for our PHP password hashing framework's (phpass) portable hashes has been added to the contributed resources list on the phpass homepage: http://www.openwall.com/phpass/
Do you use mod_auth_mysql? The openwall project released a interesting patch that adds support for PHP password hashing framework's.
In an announcement for the 2.6.25.10 stable kernel, Greg KH noted, "it contains a number of assorted bugfixes all over the tree. And once again, any users of the 2.6.25 kernel series are STRONGLY encouraged to upgrade to this release." The emphasis on the word strongly led to a lengthy discussion about how security fixes are handled in the Linux Kernel. Linus Torvalds replied, "I personally consider security bugs to be just 'normal bugs'. I don't cover them up, but I also don't have any reason what-so-ever to think it's a good idea to track them and announce them as something special." Later in the thread he went on to explain, "one reason I refuse to bother with the whole security circus is that I think it glorifies - and thus encourages - the wrong behavior.
This article looks at the how the Linux kernel developers handles security fixes. What do you think about how the kernel team releases security updates? Is there a better way or model?
Principle of Least Privilege Prevails, Says Red Hat Security Expert (Jul 16)
Linux security may seem daunting, but there are a host of best practices to simplify the maze. Recently, Steve Grubb of Red Hat Inc. outlined some important security principles, including minimizing admin access, the increasing sophistication of SELinux and the importance of auditing systems.
Like many when I think about least privileges, I think about SELinux. What do you think about? This article is a interview with a Red Hat expert that answers questions about SELinux and least privileges.
Lynis - Security & System Auditing Tool for UNIX/Linux (Jul 16)
Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.This is a tool that might be useful for both penetration testers performing white box tests and system admins trying to secure their own systems.
Have you ever heard about the Linux security program called Lynis. This was the first time I have read an article about it. What do you think about this project? Should Linux user test it out?
Fedora 9, released last month, included the first release of FreeIPA, a new free/open source project that comes out of Red Hat with the goal of becoming a complete and integrated security information management solution. In this article we take a look at exactly what FreeIPA is, both what it can do now and what its developers hope it will be capable of in the future. It seems destined to become a key feature of Red Hat Enterprise Linux 6, and with Fedora 9 released and FreeIPA tightly integrated, now seems to be the perfect time to explore this new technology.
From reading this article what do you think about this security project that Redhat introduced? I found it interesting that they used MIT Kerberos for authentication.
Relay Server Attack Tactic Dupes Auto-reporting (Jul 14)
Sysadmins have begun noticing a coordinated attack on servers with open SSH ports that tries to stay under the radar by only attempting to guess a password three times from any compromised machine. Instead of mounting an attack form a single compromised host, hackers have worked out a means to relay a brute force attack between multiple assault machines.
Do you have SSH open on your Linux machine? If so make sure that all your user's passwords are strong. Check out your system logs and see if attackers are trying to guess your passwords.
Latest VLC Patches Security Vulnerability, Fixes Other Bugs (Jul 14)
Users of the open source VLC media player should download version 0.8.6i to avoid a serious vulnerability in previous releases. According to a security advisory released by the VideoLAN project, a maliciously crafted WAV file could either crash VLC or cause the execution of arbitrary code. In common with so many vulnerabilities that can be exploited through media files, this is another buffer overflow problem.
I use VLC because it supports so many different formats but, why did this security vulnerability got so much attention in the news?
