ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Application development Toolkit

Flaw weakens Linux security software

Stephen Shankland, CNET News.com CNet

Published: 01 Mar 2002 11:08 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Programmers have found a vulnerability in Linux that could allow protective firewall software to grant malicious computer users access to protected networks.

The flaw, which affects versions 2.4.14 through 2.4.18-pre9 of the Linux kernel, is in a component of the Netfilter firewall software. The component is involved when two computer users chat directly with each other using the Internet Relay Chat (IRC) system.

Information sent across the Internet is broken up into tiny "packets", each with "from" and "to" addresses, indicating who's sent the information and where it's intended to go. So-called firewall software transmits or screens out these packets based on the address of the sender.

Netfilter, among the new aspects of the 2.4 version of the Linux kernel, is software that runs within the kernel to filter out unwanted packets. But its IRC helper component configures firewall settings too broadly, potentially allowing communication from IP (Internet Protocol) addresses that should be blocked.

Programmers working on the Netfilter firewall software project reported the problem on Monday.

Versions 7.1 and 7.2 of leading Linux seller Red Hat's product are vulnerable. The Durham, North Carolina-based company issued a patch on Thursday that corrects the problem. The flawed software isn't installed by default on the Red Hat versions, the company said, but some users may have added it.

Security is a nagging concern for the computer industry, which must juggle new features with the risk that they open up new problems. While the firewall problem the Netfilter programmers discovered is limited to a few versions of Linux, a more serious problem emerged earlier this month affecting numerous operating systems using standard network management software.

For all your GNU/Linux and open source news, from the latest kernel releases to the newest distributions, see ZDNet UK's Linux Lounge.

Have your say instantly, and see what others have said. Go to the Linux forum.

Let the editors know what you think in the Mailroom.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
57 out of 116 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Application development



Company/Topic Alerts

Create a new alert from the list below:










Related Jobs

UNIX Redhat & Windows Senior Administrator 35k Warrington

Skills required include: - Desirable skills include experience of Red Hat Linux, Windows Server 2003 and exposure to ISO and ITIL - Knowledge of ...

Unix Systems Admin 6 months x 2

Various Flavours of Unix Red Hat IBM My client is a market leader looking for two contractors to take on a 6 month contract. You will be involved in ...

Unix Systems Administrator - Financial Services - Herts

The role will involve maintaining and developing their Red Hat Linux Servers and SAN infrastructure to ensure continuous availability and efficient ...

Discussions

pearce_jj pearce_jj

Defragging: Merits?

Thursday 24 July 2008, 2:19 PM

13 posts
David Long David Long

Defragging: Merits?

Thursday 24 July 2008, 10:30 AM

13 posts
David Long David Long

The App store spells death to Jailbrea...

Thursday 24 July 2008, 9:26 AM

12 comments
ator1940 ator1940

Open source 'lacks enterprise-grade se...

Thursday 24 July 2008, 7:54 AM

3 comments

View All

Featured Talkback

The fact is: Software developers today are really designers and not coders. The reason that business anlaysts exist today to model solutions is because they understand the value of designing software before writing it. All too often developers create code that has little value because they do not understand that business classes interact with other classes within the confines of a working model or pattern.

By: 1000165269

Read full story:
Making sense of agile modelling