General Esm W900
Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Review: The Official Ubuntu Book - If you haven't used Linux before, are new to Ubuntu, or would like a quick update on the latest in open source advancements for the desktop, then The Official Ubuntu Book is a great place to start. Authored by a group of some of the most experienced open source administrators and developers, this 400-page user guide details everything you need to know about how to make the most of your Ubuntu, Kubuntu (Ubuntu with KDE), and Xubuntu (Ubuntu with Xfce) computer.

Review: Zabbix 1.8 Network Monitoring - If you have anything more than a small home network, you need to be monitoring the status of your systems to ensure they are providing the services they were designed to provide. Rihards Olups has created a comprehensive reference and usability guide for the latest version of Zabbix that anyone being tasked with implementing should have by their side.

Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.22 (Version 3.0, Release 22). This release includes many updated packages and bug fixes and some feature enhancements to the EnGarde Secure Linux Installer and the SELinux policy.
How to set up a Linux OpenVPN client (Nov 15)

In a previous tip, we looked at setting up an OpenVPN server. Now, I'll take you through the setup of a Linux OpenVPN client. The Linux client will be based on CentOS 5 using OpenVPN 2.0.9.
Whitehat cracks notorious rootkit wide open (Nov 18)

A malware analyst has deconstructed a highly advanced piece of crimeware believed to be the work of the notorious Russian Business Network. The step-by-step instructions for reverse engineering the stealthy ZeroAccess rootkit is a blow to its developers, who took great care to make sure it couldn't be forensically analyzed.
(Nov 17)

A German hacker claims to have used cloud computing to crack passwords stored in an algorithm that was developed by the NSA.
(Nov 16)

The Firesheep plug-in for Firefox has done an admirable job of illustrating the insecurity of public Wi-Fi, just as its creators intended. Now that it's out there in the wild, however, the question for users is how to protect their sensitive information.
SANS issues IPv6 security warning (Nov 16)

IT security teams must start preparing now for the increased security risks that may arise from implementation of the forthcoming IPv6 protocol, warned security training and research organisation the SANS Institute.
(Nov 16)

Chrome was the application with the most number of high severity vulnerabilities that impacted end users this year, followed by Safari, Microsoft Office, Adobe Reader and Acrobat and Firefox, according to a list to be released today.
How to Crack Passwords in the Cloud with Amazon's Cluster GPU Instances (Nov 16)

As we reported earlier today, Amazon is now offering a Cluster GPU Instance. Security blogger Thomas Roth decided to find out how quickly the system could be used to crack SHA1 hashes. He was able to crack 14 hashes with passwords ranging in length from one to six characters in 49 minutes. "This just shows one more time that SHA1 is deprecated," he writes.
Deconstructing BlackHat SEO attacks and preventing them (Nov 15)

For the past few weeks The Tech Herald has been tracking an interesting BlackHat SEO campaign. It targeted trending keywords and topics related to the midterm elections, Halloween, Veterans Day and more, snaring an untold number of victims in the process. So what are these attacks? How do they work? What can you do as a webmaster to avoid them or avoid falling victim to them?
(Nov 18)

After over 10 years of active participation in the honeypot community, I was surprised not to have heard of MicroSolved's HoneyPoint Security Server before I started planning this roundup. HoneyPoint runs on Windows, Linux, and Mac OS X, and offers some useful features -- such as "defensive fuzzing" and the ability to track alert status -- that KFSensor and Honeyd don't.
Sophos bypasses Firesheep (Nov 15)

Insecurity experts at Sophos have released a Linux-based do-it-yourself defence against the HTTP hijacker known as Firesheep and said people can use it in order to browse the web safely over unencrypted WiFi.
Google Android security exploit made fully public by ITsec researcher (Nov 15)

An IT security researcher has reportedly released the source code that could allow a hacker to gain remote access to a Google Android smartphone across the internet.
(Nov 17)

Intrusion detection is a complex business. Whether you deploy an intrusion detection system (IDS), or you collect and analyze the computer and device logs on your network, identifying malicious traffic in a sea of legitimate activity can be both difficult and time consuming.