Two new articles have been posted, of particular interest to incident handler folks might be Tim Mullen's column, as it dove-tails with previous discussions on this list, and by him, regarding appropariate global worm response. 1. Detecting SQL Injection in Oracle (Infocus - Unix) By Pete Finnigan Jul 22, 2003 This paper takes the subject of SQL injection further and investigates the possibilities for the Oracle Database Administrator to detect SQL injection in the wild. http://www.securityfocus.com/infocus/1714 2. Waiting for the Worms (Microsoft column) By Tim Mullen Jul 21 2003 The hole's been announced, the patch has been released. Now there's nothing to do but wait for the worm to come and wreak its ugly havoc. http://www.securityfocus.com/columnists/174 --------------------------------------------------------------------------- ----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Tue Jul 22 2003 - 14:56:21 PDT