zenomorph writes: "I first heard of this book on amazon.com on a Monday morning, and read the reviews of people who had purchased this book. I noticed that there were no reviews from any person in the web security community had commented on it, either on Amazon or anywhere else (with the exception of two brief comments on the back of the book, of which one was written by the person who wrote the book's foreword). So I decided to pick it up on Friday after I left work and see what it had to offer. After picking up the book I noticed it was co-authored by three people who all work for Foundstone, a very large security company that deals with everything (including web security). This review will cover some of the topics covered in this book, along with things that could or should have been covered in greater detail." Read on for the rest of zenomorph's review.

randomErr writes "The worms, Slapper.B and Slapper.C, which exploits a known buffer overrun vulnerability in the Secure Sockets Layer 2.0 (SSLv2) handshake process has infected thousands of Web servers worldwide, according to Helsinki-based F-Secure Corp., a computer and network security company. "

An anonymous reader writes "Centrifuge-cameras began exploration of genetic changes at the extremes of high gravity-- in the only animal with a completely sequenced gene library. Students at Harvey Mudd designed the 100G camera, Stanford is doing the gene array and NASA is spinning the 1 millimeter worms that are the model system for how to adapt and survive 100-times your terrestrial weight. Accelerated aging and slowed DNA repair are just two biological consequences of gravity changes. The Japanese (NASDA) are building the space station centrifuge for 2006. What other garden-variety objects can be photographed in that kind of ultra-spindryer?"

dots and loops writes "Today marks one year to the date that the nimda worm began making its way across the Internet." Hey, speaking of hilarious worms, I'm still getting 5-10 klez virus's a day! Yay Security!

An anonymous reader writes "Computerworld is covering in more detail the new Federal 'Cybersecurity Center.' The article explains that unlike some earlier rumors indicated, the center will not try to build a super-carnivore, but instead use voluntary reports. It will be similar to the SANS Institute's Internet Storm Center, which summarizes contributions submitted to DShield.org. This system of voluntary contributors has been shown to be effective in the past by issuing early warning for a number of major Internet worms, like Code Red, Ramen and SQLSnake. Unlike Symantec's 'for pay ' Deep Sight service, which publishes alerts only to paying members, Incidents.org is a free service."

Eddie writes "Just when you thought it was safe to go back into that snakehead fishpond behind the shopping center in Crofton, Md., now comes word of a new threat slithering into our environment - "nuclear worms" from Vietnam carrying cholera and other deadly diseases." There are a bunch of blurbs here and there about these worms - apparently this Washington Post story was the origin of most of them.

Anton Chuvakin submitted this review of Lance Spitzner's Honeypots: Tracking Hackers. Spitzner has previously contributed to a book and many online documents about the Honeynet Project. Chuvakin starts off, "If you liked "Know Your Enemy" by the Honeynet Project, you will undoubtedly like Lance Spitzner's (the Honeynet Project founder) new book "Tracking Hackers" much more. In fact, even if you did not quite like "Know Your Enemy", you will likely be deeply impressed with the new book on honeypots and their use for tracking hackers."

Danse writes "Former Microsoft security chief Howard Schmidt now works for the government as the vice chairman of the Critical Infrastructure Protection Board. According to this article on Security Focus, he has been touring the country, proclaiming the dangers of "zero-day viruses" and "affinity worms" that will create the kind of havoc that nothing else short of a nuclear exchange could cause. "Traffic lights, pacemakers, appliances -- all subject to outages and interruptions because in the future they're controlled via Internet, declares Schmidt. The power grid could fail catastrophically by 2005!" How do you argue with this kind of rhetoric, especially when it's being spread directly by government officials to corporate leaders?"

xenofile writes "A chilling paper has recently been posted analyzing the various threats worms pose to the Internet, and the relative ease of exploiting say the 30,000,000 Kazaa hosts to completely cripple large portions of the net." Lots of good stuff in this paper. It sorta combines many things you've probably read, and demonstrates how the net could be seriously taken by someone who wants it.

Michael Jennings writes: "Here is a review of the Game On exhibition that is on at the Barbican centre in London, and which will tour Japan and the US in 2003." Here are two previous mentions of the exhibit. Below are Michael's detailed impressions of the exhibit.

blankmange writes "CNN is carrying a story on how the big virus scares within the last year or so have been just that: scares, usually hyped by the media with software companies standing by to reap the profits. 'The market for computer security is booming as PC users become more aware of the need to protect themselves from worms and viruses. "Code Red" hit the headlines in July last year, with dire predictions that the PC worm would cripple the Internet. Yet in the end, Code Red didn't even make the year's virus Top 10.' PDAs are the next marketing target, along with cellphones."

Rolf Marvin Bøe Lindgren writes: "For most human endeavors that involve some sort of risk, there are powerful, recognized public interest groups or even government-appointed organizations that investigate and analyze dangers, prescribe guidelines, determine criteria for acceptable risk, etc. This does not seem to be the case for software! I work for a ship classification company. The purpose of such companies are, very simply put, to determine how safe seagoing vessels are, for instance in order that insurance companies can decide insurance premiums. There are, needless to say, numerous conventions and special interest groups to determine safety at sea. That is, as far as I know (and I would very much like to be proven wrong), except the computer systems that the ships use. there are restrictions, laws and regulations involved in just about any object that goes into a ship except the computer system. Everybody seems to know, for instance, that UNIX is safer that Windows, but there are no safety, reliability or security criteria established by any recognized authority that can be used to defend one computer system over another."

Kris_J asks: "My InoculateIT Personal Edition anti-virus scanner will no longer be updated from around mid-March. I've really enjoyed this package, particularly the price (it's free for personal use). The company is complaining that so many new ways are being found for virii/worms/trojans to spread that they can't afford to keep the personal edition updated. Whatever. Does anyone have a recommendation for either a particular anti-virus package/bundle, or a good place for trusted, independant, reviews of anti-virus software, or even products to avoid. (If Zonealarm Pro was bundled with an anti-virus option I'd just get that.)" For those of you who have to deal with operating systems where viruses are a problem, what software do you use to detect them and weed them out? How about software that will scan your entire network?

Murf-Dawg writes: "I found this article about 'ice worms' by linking from some information on a National Geographic Channel site. Seems like an x-files plot almost... Ice Worms that live in glaciers right around (and below apparently) freezing... Anybody know anything about them? I can't believe anything can live that cold . They say the research could help with organ and tissue storage." And on a related note, Egonis writes "In a world first, researchers in Canada have successfully transplanted the frozen ovaries and Fallopian tubes of rats, raising the possibility donor hearts and kidneys could also be preserved in suspended animation for years."

liquidx writes: "Seems like broadband Down Under is getting more and more restrictive. First we had our _unlimited_ plans changed to capped usage plans, then incoming port 80 traffic was blocked (due to Code Red/Nmida worms) and now file-sharing protocol ports are filtered due to 'load balancing issues'! Whirlpool reports that Optus@Home throttled traffic to ports 6700-6702 (ex-Napster ports) without telling its users. Read the letter and article here. Are there any other broadband services, other than the ones in Australia, continually degrading their service to customers? When will this stop?"

Phoenix-D writes: "Qwest.net, my Phoenix-area DSL provider and ISP, recently decided to hand over their ISP buisness to MSN. No huge deal, right? Well, check out this blurb: 'Due to the Microsoft anti-spam initiative, customers are restricted to use their mail services. Therefore, POP3 service is only available when using MSN Explorer, Microsoft Outlook, or Microsoft Outlook Express.'" Awesome. Microsoft's Anti-Spam initiative forces POP users to use the primary sender of mail worms.

DrRobin asks: "For the past couple of years, some of the techie parents in my town (Needham, MA) have been giving talks for parents of local elementary schools about online kid/family safety. I know there are a lot of weighty issues here in general but I want to ask if people here have any specific thoughts about the sub-topic I am supposed to cover: viruses (and worms, trojans, etc.). The parents are pretty sharp in general but not necessarily clued in to the net world. I have been on the net since '83 but my principal expertise is the little bitty wetware viruses that make you ill, rather than the software kind that infect computers. Any pointers people think would be helpful to parents would be appreciated."

James Cowie writes: "Fresh analysis here indicates that worm propagation periods correlate very strongly with global BGP routing instability, as measured by sustained exponential increases in the number of prefix announcements and withdrawals seen in BGP message traces."

jjustice asks: "I am a Software Engineer at a company that makes financial software for the healthcare industry. We got hit hard by Nimda last week and lost a few days of productivity. Some parts of management are now convinced that the Internet is too dangerous to allow us access from our LAN. They've completely the fact that most viruses/trojans/etc come in via email (which they don't plan to block). I don't know how I would do my job without at least Google Groups and Oracle's Technet/Metalink. They're considering an isolated subnetwork or a special 'lab' for Internet access only. I would hate to have to leave my desk to look something up on the Internet. It would totally disrupt my habitual workflow. Am I just being spoiled? Do other companies have similar Internet access policies? How can I convince them that this is excessive paranoia?" Wouldn't better security and virus checking be the more prudent solution in this case?

Sheik Yerboutii asks: "The recent downtime caused by the Code Red and NIMDA worms has prompted my Manager to start considering moving away from IIS to Apache. I've been tasked with finding out just how difficult it will be to move to the new webserver. I've got to find out things like how to install and configure it (relatively easy, it's all documented at www.apache.org) but also, things like what do we de now that we've been working in VBScript ASP for about 6 moths?" We posted a similar question to this one, just over a year ago. Any changes or additions to the advice given in that discussion?