Author: tlr

Her Majesty’s Government has presented a document on the repsonsibility for the september 11 terrorist attacks. It’s right now temporarily available from the 10, Downing Street site due to high demand. A local copy is available here.

There’s a noteworthy paper on Global Routing Instabilities during Code Red II and Nimda Worm Propagation. From the summary: In this online note, we summarize our preliminary analysis of the surprisingly strong impact of the Internet propagation of…

The folks at project honeynet have published the results of their scan of the month for September 2001.

Another description Microsoft on the Javascript code seen on their web site.

According to messages to the bugtraq and incidents lists, Nimda-generated Javascript code was available earlier tonight at http://www.microsoft.com/frontpage/.

In a message to incidents, Barislav Kucan points to another collection of Nimda news at his site.

For a good summary on nimda, see this page at incidents.org. Also, according to a message to the incidents and focus-virus mailing lists at SecurityFocus, a disassembly of the beast is under way.

Sieuwert van Otterloo has published A Security Analysis of Pretty Good Privacy. The paper includes a (new) “Multiple user ID attack”. NAI has an advisory about this.

It seems someone from the netherlands has found a new bug in PGP. Apparently, details are to appear later today here.

Lance Spitzner of the Honeynet Project writes: The Honenet Project is excited to announce the results to July/August’s Scan of the Month. The challenge was to analyze one month’s worth of firewall and IDS logs captured in the wild. We have also re…