“A problem has been discovered in the Apache httpd distributed with
the Immunix Linux distribution, a distribution based off the RedHat Linux
distribution. Apache programs htdigest and htpasswd are used to offer
advanced features to users of the web server. However, these two
helper programs insecurely create files in the /tmp directory, which
could allow for /tmp file guessing. This makes it possible for a user with
malicious motives to symblink attack files writable by the UID of the
Apache process.” Discussion and patches at SecurityFocus.

“At its Cadillac luxury display, the automaker features a Palm handheld computer that beams informational leaflets into consumers’ compatible devices. Show-goers receive the material–16K of data ranging from specifications on the 2001 Cadillac DeVille to the newest onboard navigation systems–in an application for handhelds.” From CNET News.com.

Anonymous Reader writes “Tip Of The Week: Finding open files with ‘lsof.’ Have you ever tried to unmount a filesystem and received that annoying “umount: /dir: device is busy” error message? Need to know who’s accessing the files so you can boot ’em off? hehe. Well, in this week’s tip, we’ll talk about the very helpful utility ‘lsof’, which should help alleviate your stress. Read the fill tip at http://www.linuxlookup.com/html/main/totw.html“

Newsweek via MSNBC reports on recent relaxation of government encryption regulations after a long, uphill fight by privacy activists and crypto advocates. “On one side of the battle were relative nobodies: computer hackers, academics and wonky civil libertarians. On the other were some of the most powerful people in the world: spies, generals and even presidents. Guess who won.”

From CNET News.com: “What do NASA, the Communications Workers of America and Palminfocenter.com have in common? Their Web sites were all defaced at different times last year by a hacker using a security weakness in Windows NT, the precursor to
Microsoft’s Windows 2000 server software.”

From MaximumLinux: “Microsoft’s biggest competitor isn’t Oracle, Sun, Palm, Yahoo! or AOL. Instead, Microsoft CEO Steve Ballmer
explained, it’s the lil OS that could (and does), Linux.”

At LinuxWorld: “Searching for an easy way to speed up huge compilations or scale up your Internet services? Take a look at
MOSIX, an open source clustering project from Hebrew University that features power without a price.”

CNET News.com reports that Universal Music Group isn’t about to settle its lawsuit with Napter, the online MP3-trading service. Universal’s CEO believes the company may be able to cut a better deal with Napster if the court rules in Universal’s favor.

Help Net Security has the details of a security issue that Lotus has named the “Domino Server Directory Traversal Vulnerability.”

GNOME developer Helix Code has changed its name to Ximian. Read all about the change in a letter from Ximian CEO Nat Friedman, and get more information from the name change FAQ.