-----Original Message----- From: information_technology-admin@private [mailto:information_technology-admin@private] On Behalf Of InfraGard Sent: Thursday, October 02, 2003 11:53 AM To: Information Technology Subject: [Information_technology] Daily News 10/02/03 October 01, Federal Computer Week - Federal government gives $44 million for rural broadband. The Agriculture Department last week announced nearly $44 million in grants to develop broadband Internet access, telemedicine services and distance-learning opportunities in rural areas. About $23.5 million will go to 57 distance-education projects, $11.3 million will help 34 communities nationwide get high-speed Internet access, and $8.9 million will fund 27 telemedicine projects. The education projects will enable 556 schools to provide students with better tools. About 190 medical service facilities will improve their services for residents. "Information technology is critical to rural Americans," said Thomas Dorr, Agriculture's undersecretary for rural development, in a press release. Under the broadband awards, communities in 20 states were selected based on their lack of high-speed access for police and fire services, hospitals, libraries, and schools. Source: http://www.fcw.com/geb/articles/2003/0929/web-agri1-10-01-03.asp September 30, eWEEK - Pair of flaws found in OpenSSL. A pair of vulnerabilities in the OpenSSL software package are both related to the way the package interacts with ASN.1 (Abstract Syntax Notation One), a low-level language used to describe abstract syntax. One flaws concerns the way that OpenSSL "deallocates" memory that is used to store ASN.1 structures. The vulnerability can be used to cause a denial of service condition in vulnerable systems, according to an advisory published Tuesday, September 30, by the CERT Coordination Center. This flaw may be exploited to run code on vulnerable machines as well, under certain circumstances. The second weakness is related to the way that ASN.1 tags are handled by OpenSSL. An unusual tag value could produce a denial of service in affected machines. All versions of OpenSSL prior to 0.9.7c or 0.9.7k are vulnerable to these issues, as are all versions of SSLeay. The OpenSSL Project has produced a new version of the toolkit which addresses these flaws. Source: http://www.eweek.com/article2/0,4149,1305344,00.asp AlertCon: 1 out of 4 https://gtoc.iss.net Security Focus ThreatCon: 2 out of 4 http://analyzer.securityfocus.com/ Current Virus and Port Attacks Virus: #1 Virus in the United States: WORM_SWEN.A Source: http://wtc.trendmicro.com/wtc/wmap.html, Trend World Micro Virus Tracking Center [Infected Computers, North America, Past 24 hours, #1 in United States] Top 10 Target Ports 135 (epmap), 137 (netbios?ns), 445 (microsoft?ds), 1434 (ms?sql?m), 80 (www), 1433 (ms?sql?s), 4662 (eDonkey2000), 139 (netbios?ssn), 25 (smtp), 2234 (directplay) Source: http://isc.incidents.org/top10.html; Internet Storm Center _______________________________________________ Information_technology mailing list Information_technology@listserv
This archive was generated by hypermail 2b30 : Thu Oct 02 2003 - 14:18:54 PDT