The SANS Institute is now offering a regularly updated "experts'
consensus" list titled "How To Eliminate The Ten Most Critical
Internet Security Threats":
http://www.sans.org/topten.htm
Among the security vulnerabilities currently identified by this
list are those affecting:
- Web servers:
- CGI programs and scripts
- Microsoft Internet Information Server (IIS)
- E-mail services:
- IMAP and POP servers
- sendmail
In addition to vulnerabilities affecting servers, this list also
highlights some common vulnerabilities on the desktop. Among these:
- File sharing on the Windows, Unix/Linux, and Mac OS platforms
- Scripting holes in Microsoft Internet Explorer and Office 2000
for Windows
The latter include mechanisms by which Windows users can trigger
worms or viruses simply by reading e-mail, without explicitly opening
file attachments.
Aron Roberts
Workstation Software Support Group
(The usual apologies to those of you who have received multiple
copies of this message by virtue of your membership on various lists.)
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about Micronet, its meetings and events, and its
mailing list, including information on subscribing and unsubscribing,
see the Micronet Web site at <URL:http://wss-www.berkeley.edu/micronet/>.
This archive was generated by hypermail 2b29 : Fri Jun 02 2000 - 12:22:16 PDT