File: 920103-01 From: riordanmr@clvax1.cl.msu.edu (Mark Riordan) Subject: [sci.crypt] Archive of miscellaneous crypto files Source: comp.archives Keywords: archives, cryptography, cbw, cloak, dss, enigma, hagelin, hill, lucifer, md2, md4, md5, merkle, khufu, khafre, o'keefe, rot13, newdes, snefru File: 920106-01 From: polari!brianc@sumax.seattleu.edu Subject: UNIX SECURITY NEWSLETTER Source: alt.security Message-ID: <1992Jan6.050540.20197@polari.uucp> Keywords: newsletter, free File: 920108-01 From: John Sechrest Subject: Re: Modified inetd Source: cert-tools Message-ID: <9201082256.AA11009@tictac.cert.sei.cmu.edu> Keywords: in.gate, inetd, ogi File: 920109-01 From: brown@ocelot.llnl.gov (David Brown) Subject: Re: Modified inetd Source: cert-tools Message-ID: <9201100047.AA13114@tictac.cert.sei.cmu.edu> Keywords: inetd, insrc, CIAC File: 920109-02 From: John Pochmara Subject: in.gate ftp site Source: cert-tools Message-ID: <9201100116.AA13344@tictac.cert.sei.cmu.edu> Keywords: in.gate, ogi, source File: 920113-01 From: ferbrach@ajax.rsre.mod.uk (Dave Ferbrache) Subject: Re: Modified Inetd Source: cert-tools Message-ID: <9201131821.AA19970@tictac.cert.sei.cmu.edu> Keywords: modified inetd File: 920113-02 From: KH3@CU.NIH.GOV Subject: More GAO reports Source: mail Message-ID: <9112132030.AA10386@cunixf.cc.columbia.edu> Keywords: GAO report, "Hackers Penetrate DOD Computer Systems", GAO/T-IMTEC-92-5 File: 920114-01 From: Andrew Macpherson Subject: none Source: cert-tools Message-ID: <9201141610.AA21649@tictac.cert.sei.cmu.edu> Keywords: tcp-log, tcp-switch, in.gate File: 920114-02 From: m19940@mwvm.mitre.org (Emily H. Lonsford) Subject: Re: UNIX viruses, request for information (UNIX) Source: comp.virus Message-ID: <0014.9201151722.AA05005@ubu.cert.sei.cmu.edu> Keywords: UNIX, virus, Computing Systems article, Tom Duff File: 920115-01 From: mkwan@mullauna.cs.mu.OZ.AU (Matthew Kwan) Subject: Biham & Shamir break DES Source: sci.crypt,alt.security Message-ID: Keywords: Biham, Shamir, DES File: 920116-01 From: dick@ccnext.ucsf.edu (Dick Karpinski) Subject: Re: Modified inetd Source: cert-tools Message-ID: <9201161641.AA25280@tictac.cert.sei.cmu.edu> Keywords: inetd, FSF, Roland McGrath File: 920124-01 From: tar@math.ksu.edu (Tim Ramsey) Subject: Re: username 'sync' Source: alt.security Message-ID: Keywords: sync, SunOS, dynamic linking, login File: 920131-01 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: fixing the LD_LIBRARY_PATH problem (source) Source: alt.security,alt.sources,comp.sys.sun.admin Message-ID: <2902@wzv.win.tue.nl> Keywords: SunOS, sync, LD_LIBRARY_PATH, login, passwordless accounts File: 920203-01 From: bsy+@CS.CMU.EDU (Bennet Yee) Subject: Re: Big computer security lax? Source: alt.security Message-ID: <1992Feb03.055758.185541@cs.cmu.edu> Keywords: X11, xhost, xwatchwin File: 920204-01 From: aem@aber.ac.uk (Alec David Muffett) Subject: Re: Setuid shell scripts, Whats the problem? Source: alt.security Message-ID: <1992Feb4.170623.5192@aber.ac.uk> Keywords: setuid shell scripts File: 920204-02 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: Re: An alternative to setuid shell scripts Source: alt.security Message-ID: <2912@wzv.win.tue.nl> Keywords: setuid shell scripts, LD_LIBRARY_PATH, opcom, su-someone, sudo File: 920204-03 From: maart@paramount.nikhefk.nikhef.nl (Maarten Litmaath) Subject: Re: An alternative to setuid shell scripts Source: alt.security Message-ID: <1992Feb4.233731.21754@paramount.nikhefk.nikhef.nl> Keywords: indir File: 920206-01 From: mikel@demax.uucp (Mikel Lechner) Subject: Re: Setuid shell scripts, Whats the problem? Source: alt.security Message-ID: <1992Feb6.162413.6508@demax.uucp> Keywords: setuid shell script, SunOS File: 920207-01 From: rickert@mp.cs.niu.edu (Neil Rickert) Subject: Re: DIY Shadow Passwords (was Re: Crack Modifications I'd Like to See: Comments on two breakins.) Source: alt.security Message-ID: <1992Feb7.125426.7909@mp.cs.niu.edu> Keywords: shadow passwords File: 920210-01 From: prl@iis.ethz.ch (Peter Lamb) Subject: Re: C2 Source: alt.security Message-ID: Keywords: SunOS, C2 File: 920210-02 From: bpowell@olympics.Corp.Sun.COM (Brad Powell ) Subject: Re: C2 Source: alt.security Message-ID: Keywords: SunOS, C2, CS-BSM patch, 100387-02, 100388-02 File: 920210-03 From: alan@frey.newcastle.edu.au (Alan Hargreaves) Subject: Re: C2 Source: alt.security Message-ID: <1992Feb10.040420.4026@frey.newcastle.edu.au> Keywords: SunOS, C2, c2unconv, large passwd file File: 920212-01 From: larryb@mitel.East.Sun.COM (Larry Bowers - System Engineer - Sun Baltimore) Subject: Re: C2 Source: alt.security Message-ID: <5817@southeast.East.Sun.COM> Keywords: SunOS 4.1.1, C2-BSM patch, 100387-02, 100388-02 File: 920213-01 From: cudcv@warwick.ac.uk (Rob McMahon) Subject: Re: Sun pty allocation bug (was: telnet ... logs me out) Source: comp.unix.admin Message-ID: Keywords: SunOS, pty, 100414-01, 100188-01, telnetd, 1070495 100187, tty_pty.o, TIOCCONS, 1008324 File: 920214-01 From: rivest@theory.lcs.mit.edu (Ron Rivest) Subject: Semi-variable passwords for remote login Source: alt.security Message-ID: unknown Keywords: one-time passwords File: 920215-01 From: phil@eecs.nwu.edu (William LeFebvre) Subject: announcing securelib: securing network services under SunOS Source: alt.security,comp.sys.sun.admin Message-ID: <1992Feb15.221236.1698@eecs.nwu.edu> Keywords: SunOS, accept, recvfrom, recvmsg, filter network connections File: 920217-01 From: panos@tigger.Colorado.EDU (Panos Tsirigotis) Subject: Re: announcing securelib: securing network services under SunOS Source: alt.security,comp.sys.sun.admin Message-ID: <1992Feb17.174806.19954@colorado.edu> Keywords: securelib, nfsd File: 920218-01 From: claude@genethon.fr (Claude Scarpelli) Subject: lpr security problem (getlogin(3) is a security violation?) Source: alt.security Message-ID: <1992Feb18.122952@genethon.fr> Keywords: SunOS, lpr, getlogin, utmp File: 920220-01 From: mrl@uai.com (Mark R. Ludwig) Subject: Re: Seek document describing how to create an Internet Firewall Source: comp.unix.admin Message-ID: <1992Feb20.161940.7120@uai.com> Keywords: Internet firewall File: 920222-01 From: john@iastate.edu (John Hascall) Subject: Re: secure telnetd password encryption & authentication techniques Source: alt.security Message-ID: <1992Feb22.033139.21403@news.iastate.edu> Keywords: Macintosh, kerberos File: 920303-01 From: jbuck@forney.berkeley.edu (Joe Buck) Subject: Ownership by "bin" instead of by "root" Source: alt.security Message-ID: Keywords: NFS, root, bin, /etc File: 920314-01 From: harker@harker.com (Robert Harker) Subject: Setting up security on a Sun workstation Source: comp.sys.sun.admin,news.sysadmin,news.admin,comp.unix.admin Message-ID: <1992Mar14.004545.8052@harker.com> Keywords: Sun, 100103-10, 100296-02, 100383-03, 100448, permissions, exports, rdist, OW3.0, NIS/YP, C2, COPS, ttytab, syslog, tcp_wrapper, ftp, securelib File: 920323-01 From: Scientific VAXcluster Administrator Subject: Security software evaluation - Summary Source: info-vax Message-ID: <01GI0MBBO37Y0012K4@VAXF.COLORADO.EDU> Keywords: VAX/VMS File: 920324-01 From: cons@mercury.cern.ch (Lionel Cons) Subject: X Lack of Security Source: alt.security Message-ID: Keywords: X, xhost, xauth File: 920326-01 From: bsy+@CS.CMU.EDU (Bennet Yee) Subject: Re: X Lack of Security Source: alt.security Message-ID: <1992Mar26.005744.108041@cs.cmu.edu> Keywords: X, xhost File: 920327-01 From: bas@phys.uva.nl (Bas de Bakker) Subject: Crack 4.1 Source: alt.security Message-ID: Keywords: Crack, dicts.rules File: 920330-01 From: wswietse@wsbs06.bs.win.tue.nl (Wietse Venema) Subject: Re: "Future" TCP/IP and Security? Source: comp.protocols.tcp-ip Message-ID: <3219@svin02.info.win.tue.nl> Keywords: tcp_wrapper, log_tcp, sendmail, inetd File: 920415-01 From: murphy@symcom.math.uiuc.edu (Michael L. Murphy) Subject: Re: rsh Source: alt.security Message-ID: <1992Apr15.203649.3936@news.cso.uiuc.edu> Keywords: X, xauth File: 920416-01 From: toleszcz@rnd.GBA.NYU.EDU (Tom Oleszczuk) Subject: thanks on security policies Source: alt.security,comp.unix.admin Message-ID: <24269@rnd.GBA.NYU.EDU> Keywords: policy File: 920423-01 From: "(Alain Brossard EPFL-SIC/SII)" Subject: passwd and improved passwords Source: sun-managers Message-ID: <9204231231.AA02241@sasun1.epfl.ch> Keywords: passwd, SunOS 4.1.1, npasswd, verification, source File: 920429-01 From: fuat@ans.net (Fuat C. Baran) Subject: Re: .rhosts and security Source: alt.security Message-ID: <1992Apr29.175118.32432@ans.net> Keywords: .rhosts, check, scan File: 920505-01 From: chip@tct.com (Chip Salzenberg) Subject: Security Hole in Perl for RS/6000 Source: comp.unix.aix,comp.lang.perl Message-ID: <2A05E31B.7DB5@tct.com> Keywords: perl, AIX, RS/6000, setuid File: 920505-02 From: riddle@is.rice.edu (Prentiss Riddle) Subject: Gopher PostScript data type would constitute a security hole Source: alt.gopher,alt.security,comp.lang.postscript Message-ID: <1992May5.161126.11521@rice.edu> Keywords: gopher, postscript, metamail File: 920505-03 From: wollman@UVM.EDU (Garrett Wollman) Subject: Re: Gopher PostScript data type would constitute a security hole Source: alt.gopher,alt.security,comp.lang.postscript Message-ID: <1992May5.185652.6305@uvm.edu> Keywords: postscript, ghostview, ghostscript File: 920505-04 From: jgreely@morganucodon.cis.ohio-state.edu (J Greely) Subject: Re: Gopher PostScript data type would constitute a security hole Source: alt.gopher,alt.security,comp.lang.postscript Message-ID: Keywords: postscript, ghostview, ghostscript, patch File: 920506-01 From: wswietse@bs.win.tue.nl (Wietse Venema) Subject: improving portmap security Source: cert-tools Message-ID: <9205061528.AA03460@tictac.cert.org> Keywords: portmap File: 920507-01 From: nyh@leibniz.WPI.EDU (Nevo Y Hed) Subject: Xterm security patch ... Source: alt.security,alt.sources.patches,alt.sources Message-ID: <1992May7.070930.5399@wpi.WPI.EDU> Keywords: xterm, X11, password stealing/spying, XGrabKeyboard, sxterm File: 920508-01 From: nestey@copper.denver.colorado.edu (Nathan F. Estey) Subject: Re: Fiber optic networks and security Source: alt.security,comp.dcom.lans.fddi Message-ID: <2949@copper.Denver.Colorado.EDU> Keywords: fddi, fiber, tap, bibliography, eavesdropping, spying File: 920509-01 From: bjoerns@stud.cs.uit.no (Bjoern Stabell) Subject: Re: Xterm security patch ... (bypassing XGrabKeyboard()) Source: alt.security,alt.sources.patches,alt.sources Message-ID: <1992May9.014513.1693@news.uit.no> Keywords: xterm, Xauthority File: 920515-01 From: quanbook@world.std.com (Quantum Books) Subject: New Release - UNIX System Security Source: misc.books.technical,wstd.quanbook Message-ID: Keywords: new book, D. Curry. File: 920515-02 From: vince@ghost.dsi.unimi.it (David Vincenzetti) Subject: Available: Anti Tampering Program Source: sci.crypt,alt.security,alt.sources.d Message-ID: <1992May15.135912.24512@ghost.dsi.unimi.it> Keywords: atp, anti tampering, source File: 920519-01 From: wetmore@toadflax.UCDavis.EDU (Brad) Subject: Re: Smart Auditing (was: Auditing on C2..) Source: alt.security Message-ID: <13442@ucdavis.ucdavis.edu> Keywords: distributed intrusion detection, DIDS File: 920519-02 From: barmar@think.com (Barry Margolin) Subject: Re: avast ye, swabs Source: alt.security Message-ID: Keywords: anonymous ftp, umask, writeable directories File: 920522-01 From: kaplan@violet.ccit.arizona.edu (A PR problem for DEMAX) Subject: diary of a security incident Source: alt.security Message-ID: <22MAY199212464623@violet.ccit.arizona.edu> Keywords: vms, checksum File: 920527-01 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: Re: proposal to improve set-uid security Source: comp.unix.programmer,comp.security.misc Message-ID: <3348@wzv.win.tue.nl> Keywords: setuid, environment variables, newenv, source File: 920529-01 From: rob@wzv.win.tue.nl (Rob J. Nauta) Subject: Re: that sun env var thing -- it's the old LD_LIBRARY_PATH thing right? Source: alt.security,comp.security.misc,comp.unix.internals, comp.sys.sun.misc Message-ID: <3362@wzv.win.tue.nl> Keywords: SunOS, LD_LIBRARY_PATH, LD_PRELOAD, CERT advisory File: 920529-02 From: zen@death.corp.sun.com (d) Subject: mail spool dirs [Was: COPS security report question] Source: alt.security,comp.security.misc Message-ID: Keywords: writeable /usr/spool/mail File: 920606-01 From: hedrick@dartagnan.rutgers.edu (Charles Hedrick) Subject: Re: rlogind/telnetd/pty security fixes? Source: comp.security.misc,comp.unix.bsd,comp.bugs.4bsd,alt.security Message-ID: Keywords: ptys, vhangup, Bernstein File: 920612-01 From: wetmore@toadflax.UCDavis.EDU (Brad) Subject: bibliography of intrusion detection Source: alt.security Message-ID: <14446@ucdavis.ucdavis.edu> Keywords: bibliography, intrusion detection, IDES, Haystack, DIDS File: 920621-01 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: new tcp wrappers and related stuff Source: comp.security.misc,alt.security,comp.unix.admin, comp.sys.sun.admin Message-ID: <3424@wzv.win.tue.nl> Keywords: tcp wrapper, log_tcp, logdaemon, portmap File: 920622-01 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: Re: new tcp wrappers and related stuff Source: comp.security.misc,alt.security,comp.unix.admin, comp.sys.sun.admin Message-ID: <3569@svin02.info.win.tue.nl> Keywords: patch, tcp wrapper, log_tcp, logdaemon, portmap File: 920623-01 From: billy@unt.edu (Billy Barron - VAX/UNIX Systems Manager) Subject: Overheads for DIDS Presentation at Summer 92 USENIX Source: comp.org.usenix,alt.security Message-ID: <1992Jun23.203203.2180@mercury.unt.edu> Keywords: Teal, DIDS, slides File: 920625-01 From: "Thomas J. Klotzbach" <0003751365@MCIMAIL.COM> Subject: Hacking video Source: UNINFSEC mailing list Message-ID: ? Keywords: video, 2600, intrusion File: 920630-01 From: spaf@cs.purdue.EDU (Gene Spafford) Subject: Re: Criminalizing unauthorized use Source: alt.security,comp.security.misc Message-ID: Keywords: author identification, software forensics, paper/tech report File: 920707-01 From: henk@cs.vu.nl (Henk Smit) Subject: Re: Looking for a good dictionary of propernames Source: comp.security.misc Message-ID: <15314@star.cs.vu.nl> Keywords: dictionaries, names, Dutch, English, German, French, Italian Norwegian, Swedish, Japanese File: 920710-01 From: trost@reed.edu (Bill Trost) Subject: more security holes Source: decstation-managers mailing list Message-ID: Keywords: mail, informatik File: 920714-01 From: nyh@wpi.WPI.EDU (Nevo Y Hed) Subject: Xterm security patch - for X11R5 and sun3 fix for the X11R4 Source: alt.security,alt.sources.patches Message-ID: <1992Jul14.023303.1397@wpi.WPI.EDU> Keywords: sxterm, X11R4, X11R5 File: 920714-02 From: nyh@joseph.WPI.EDU (Nevo Y Hed) Subject: Xterm security patch - Correction Source: alt.security,alt.sources.patches Message-ID: <1992Jul14.155034.21300@wpi.WPI.EDU> Keywords: sxterm, X11R4, X11R5 File: 920714-03 From: hancock@clada.enet.dec.com (Tomas Hancock) Subject: Re: Looking for UNIX security products like COPS but commerical Source: alt.security Message-ID: <1992Jul14.171303.7690@rdg.dec.com> Keywords: Ultrix, DECinspect Compliance Manager File: 920806-01 From: jonhaug@ifi.uio.no (Jon Haugsand) Subject: My RFI about secure database systems. Source: comp.databases,comp.security.misc,alt.security Message-ID: <1992Aug6.113858.1542@ifi.uio.no> Keywords: database, references, bibliography File: 920811-01 From: amesml@monu1.cc.monash.edu.au (Mark L. Ames) Subject: Re: Risk assessment Source: comp.security.misc Message-ID: <1992Aug11.224923.1913@monu1.cc.monash.edu.au> Keywords: risk assessment, references, bibliography File: 920814-01 From: shirey@mitre.org Subject: NIST Spec Pub 500-189 Source: ipsec Message-ID: <199208141453.AA03870@hoovermac.ans.net> Keywords: NIST Spec Pub 500-189, ISDN File: 920819-01 From: shirey@mitre.org Subject: SDNS Protocol References Source: ipsec Message-ID: <9208192015.AA04679@smiley.mitre.org.stc> Keywords: SDNS, references, bibliography File: 920901-01 From: wietse@wzv.win.tue.nl (Wietse Venema) Subject: log_tcp (tcp wrapper) update Source: comp.unix.admin,comp.sys.sun.admin,comp.security.misc, alt.security Message-ID: <4047@svin09.info.win.tue.nl> Keywords: log_tcp, tcp wrapper, patch 4.3 File: 920902-01 From: rja14@cl.cam.ac.uk (Ross Anderson) Subject: New Journal Source: sci.crypt,alt.security,comp.security.misc Message-ID: <1992Sep2.104115.5003@cl.cam.ac.uk> Keywords: journal, abstracts File: 920908-01 From: Gene Spafford Subject: Beta testers needed for new security tool Source: cert-tools Message-ID: <9209081407.AA12831@tictac.cert.org> Keywords: tripwire, file integrity File: 920910-01 From: zen@death.corp.sun.com (d) Subject: Re: COPS bug? in dev.chk - here's a fix Source: alt.security Message-ID: Keywords: .rhosts, comments File: 920928-01 From: rob@wzv.win.tue.nl (Rob J. Nauta) Subject: Re: Netware Security Inquiry Source: alt.security,comp.sys.novell,comp.security.misc Message-ID: <3923@wzv.win.tue.nl> Keywords: novell netware File: 921013-01 From: vince@ghost.dsi.unimi.it (David Vincenzetti) Subject: ATP available (Was: Re: Beta testers needed for security tool) Source: comp.security.misc Message-ID: <1992Oct13.213854.5042@ghost.dsi.unimi.it> Keywords: ATP, anti tampering, tripwire File: 921015-01 From: "Robert B. Reinhardt" Subject: An Architectural Overview of UNIX Network Security Source: cert-tools Message-ID: <9210151528.AA26932@tictac.cert.org> Keywords: overview, UNIX network security File: 921104-01 From: jkimball@src.honeywell.com (John Kimball) Subject: INTERMIM SUMMARY: SunOS 4.1.3 and recent security patches Source: comp.sys.sun.admin,comp.security.misc Message-ID: <1992Nov4.150824.26312@src.honeywell.com> Keywords: SunOS 4.1.3, patches File: 921118-01 From: glad@daimi.aau.dk (Michael Glad) Subject: Connection Machine password cracker Source: alt.security,comp.security.misc,comp.parallel Message-ID: <1992Nov18.130041.12106@daimi.aau.dk> Keywords: CM, connection machine, password cracker, parallel, crypt