Linux Stuff from SecurityFocus.com Newsletter

To: TCLUG <tclug-list@mn-linux.org>, SCALUG <linux@scalug.org>
Subject: Linux Stuff from SecurityFocus.com Newsletter
From: Troy Johnson <john1536@tc.umn.edu>
Date: Mon, 06 Dec 1999 11:16:42 -0600
Sender: troy@tc.umn.edu

Security Focus Newsletter #18


III. PATCH UPDATES
9. Vulnerability Patched: Multiple BIND Vulnerabilities (Slackware)
10. Vulnerability Patched: Linux nfsd Remote Buffer Overflow (Slackware)
11. Vulnerability Patched: Linux syslogd DoS (Slackware)

IX. SECURITY FOCUS TOP 6 TOOLS
5. Fragrouter 1.6 (BSDI, FreeBSD, Linux, NetBSD, OpenBSD and Solaris)
6. Snort 1.3.1 (FreeBSD, HP-UX, IRIX, Linux, MacOS, OpenBSD and Solaris)


9. Vendor: Slackware
Product: Linux (Slackware)
Vulnerability Patched: Multiple BIND Vulnerabilities
BugTraq ID: 788
Relevant URLS:
        http://www.securityfocus.com/bid/788
Patch Location:
        ftp.cdrom.com:/pub/linux/slackware-4.0/patches/bind.tgz

10. Vendor: Slackware
Product: Linux (Slackware)
Vulnerability Patched: Linux nfsd Remote Buffer Overflow Vulnerability
BugTraq ID: 782
Relevant URLS:
        http://www.securityfocus.com/bid/782
Patch Location:
        ftp.cdrom.com:/pub/linux/slackware-4.0/patches/nfs-server.tgz

11. Vendor: Slackware
Product: Linux (Slackware)
Vulnerability Patched: Linux syslogd Denial of Service Vulnerability
BugTraq ID: 809
Relevant URLS:
        http://www.securityfocus.com/bid/802
Patch Location:
        ftp.cdrom.com:/pub/linux/slackware-4.0/patches/sysklogd.tgz


5. Fragrouter 1.6
by Dug Song, Anzen Computing
URL: http://www.anzen.com/research/nidsbench/
Platforms: BSDI, FreeBSD, Linux, NetBSD, OpenBSD and Solaris
Number of downloads: 1043

Fragrouter is a network intrusion detection evasion toolkit. It
implements most of the attacks described in the Secure Networks
"Insertion, Evasion, and Denial of Service: Eluding Network Intrusion
Detection" paper of January 1998.

This program was written in the hopes that a more precise testing
methodology might be
applied to the area of network intrusion detection, which is still a
black art at best.

6. Snort UPDATE 1.3.1
by Martin Roesch <roesch@clark.net>
URL: http://www.clark.net/~roesch/security.html#Download
Platforms: FreeBSD, HP-UX, IRIX, Linux, MacOS, OpenBSD and Solaris
Number of downloads: 826

Snort is a libpcap-based packet sniffer/logger which can be used as a
lightweight network
intrusion detection system. It features rules based logging and can
perform protocol
analysis, content searching/matching and can be used to detect a variety
of attacks and
probes, such as buffer overflows, stealth port scans, CGI attacks, SMB
probes, OS
fingerprinting attempts, and much more. Snort has a real-time alerting
capabilty, with alerts being sent to syslog, a seperate "alert" file, or
as a WinPopup message via Samba's smbclient.

Prev by Date: RE: [TCLUG:10864] IP Masquerading
Next by Date: Outputting man.
Prev by thread: RE: [TCLUG:10864] IP Masquerading
Next by thread: Outputting man.
Index(es):
- Date
- Thread