[Prev][Next][Index][Thread]

CERT Summary CS-96.03 (fwd)




---------- Forwarded message ----------
Date: Wed, 22 May 1996 16:52:03 -0400
From: CERT Advisory <cert-advisory@cert.org>
To: cert-advisory@cert.org
Subject: CERT Summary CS-96.03

CERT(sm) Summary CS-96.03
May 22, 1996

The CERT Coordination Center periodically issues the CERT Summary to
draw attention to the types of attacks currently being reported to our
Incident Response Team. The summary includes pointers to sources of
information for dealing with the problems. We also list new or updated
files that are available for anonymous FTP from
     ftp://info.cert.org/pub/

[a few pages snipped out]

2. Linux machines

We have seen an increase in break-ins and root compromises of Linux
machines. In some cases, the intruders are installing packet sniffers
on Linux machines. If you are use Linux on your machines,
we recommend that you keep up to date with patches and security
workarounds. We also recommend that you review

ftp://info.cert.org/pub/cert_advisories/CA-94:01.ongoing.network.monitoring.attacks
ftp://info.cert.org/pub/cert_advisories/CA-94:01.README

The advisory describes sniffers and suggests approaches for
addressing the problem; the README file contains updated information.

We also recommend that you monitor the Linux newsgroups and mailing
lists for security patches and workarounds. Additionally, a World Wide
Web page that some sites reference is

http://bach.cis.temple.edu/linux/linux-security

Note that this reference should not be construed as a formal
endorsement of the page or its contents. We are simply including it in
this summary so that our readers are aware of its existence; you may
evaluate it as appropriate to your situation.

[snip a lot of more stuff (Interesting too!)]

To be added to our mailing list for CERT advisories and bulletins, send your
email address to
        cert-advisory-request@cert.org

CERT advisories and bulletins are posted on the USENET news group
         comp.security.announce

CERT publications, information about FIRST representatives, and other
security-related information are available for anonymous FTP from
        http://www.cert.org/
        ftp://info.cert.org/pub/

If you wish to send sensitive incident or vulnerability information to CERT
staff by electronic mail, we strongly advise you to encrypt your message.
We can support a shared DES key or PGP. Contact the CERT staff for more
information.

Location of CERT PGP key
         ftp://info.cert.org/pub/CERT_PGP.key