Why Your Network is Still Vulnerable

Why Your Network is Still Vulnerable: Bibliography

Brian Martin (bmartin@attrition.org)
Copyright 1999
References

Linux Journal
August 1997, Issue 40, pg 77
SATAN: Analyzing Your Network by Rob Havelt

Info Security News
Volume 8, Number 2 - March/April 1997
Auditing the NOS: Solaris by Steve Lodin

Security Advisor
Premiere 1998
7 Steps to Assessing Your Security Risk by Michael Miora

Information Security (An ICSA Publication)
September 1998
Securing the Intranet by Steven Lee

Practical Unix & Internet Security
Garfinkel/Spafford
O'Reilly (April 1996)

UNIX System Administrator's Companion
Ault
Wiley (1996)

Halting the Hacker: A Practical Guide to Computer Security
Pipkin
Prentice Hall (1997)

Internet Besieged: Countering Cyberspace Scofflaws
Denning/Denning
Addison-Wesley (1998)

Protecting Networks with SATAN
Freiss
O'Reilly (May 1998)

http://www.attrition.org/security/advisories/cert/advisory/CA-95:06.satan
CERT(*) Advisory CA-95:06
Original issue date:  April 3, 1995

http://www.attrition.org/security/advisories/ciac/f-fy95/f-19.ciac-HP-UX-satan
Number F-19
Reprint of HP-Alert

http://www.attrition.org/security/advisories/ciac/f-fy95/f-20.ciac-satan
Number F-20
April 5, 1995 1400 PDT

http://www.attrition.org/security/advisories/ciac/f-fy95/f-21.ciac-SUN-OS-satan
Number F-21
Reprint of SMS Advisory

http://www.attrition.org/security/advisories/ciac/f-fy95/f-23.ciac-IBM-AIX-satan
Number F-23
Reprint IBM AIX Advisory

http://www.attrition.org/security/advisories/ciac/f-fy95/f-24.ciac-SGI-satan.asc
Number F-24
Reprint of SGI Advisory

http://www.attrition.org/security/advisories/sms/sms.130a.satan
SMS #00130A
April 5, 1995

http://nasirc.nasa.gov/
1998 Advisory (Not Public)
April 5, 1995

http://www.attrition.org/security/advisories/assist/assist.511
Bulletin  95-11
Release date: 4 April 1995, 2:30 PM EDT (GMT -4)

http://www.attrition.org/security/advisories/assist/assist.519
Bulletin  95-19
Reprint of IBM AIX Advisory

http://www.attrition.org/security/advisories/auscert/AA-95.03.An.overview.of.SATAN
AA-95.03
April 3, 1995

http://www.attrition.org/security/advisories/cert/advisory/CA-95:07a.REVISED.satan.vul
CERT(*) Advisory CA-95:07a
Original issue date:  April 21, 1995
Last revised: September 23, 1997

http://www.attrition.org/security/advisories/ciac/f-fy95/f-22.ciac-satan-password
Number F-22
Unauthorized users may execute commands through SATAN.

http://www.attrition.org/security/advisory/nai/nai.29.ToolTalk
Vulnerable: SunOS, Solaris, HPUX, Irix, AIX

http://www.attrition.org/security/advisory/sms/sms.186.rpc_statd
Vulnerable: Solaris

http://www.attrition.org/security/advisory/sms/sms.188.rpc_cmsd
Vulnerable: SunOS, Solaris

http://www.attrition.org/security/advisory/allaire/
Vulnerable: Windows NT running Cold Fusion

http://www.wired.com/news/news/technology/story/14092.html
Back Orifice a Pain in the..? by James Glave
2:05pm  29.Jul.98.PDT

http://www.performancecomputing.com/columns/web/9904.shtml
Network Security by Kevin Reichard
April 1999

http://wzv.win.tue.nl/satan/
SATAN Home Page
Security Administrator Tool for Analyzing Networks

http://wwdsilx.wwdsi.com/saint/
SAINT Home Page
Security Administrator's Integrated Network Tool