SN#10235 ActivCard Unveils Smart Card Security Middleware for All Major Operating Systems

SN#10235 ActivCard Unveils Smart Card Security Middleware for All Major Operating Systems

Post by John J. McLaughli » Wed, 02 Jul 2003 23:00:28



SYSTEM NEWS FOR SUN USERS
Vol 64 Issue 4 2003-06-23  Article 10235 from section "MarketPlace"

     Compatible with Linux, Mac OS X and Solaris[TM] Operating System

        ActivCard, a provider of IDentity Management (IDM) software, has debuted
        three new versions of its smart card-based authentication and digital
        signature solution: ActivCard Gold for Linux, ActivCard Gold for Mac OS
        X and ActivCard Gold for the Solaris[TM] Operating System (Solaris OS).
        The solutions offer secure smart card technology for secure login,
        secure remote access, secure Web, secure email signing and encryption.

        The solutions allow organizations to confirm and validate user identity
        with the authentication capability of ActivCard Gold from any computing
        system in the enterprise operating on the four most prominent platforms.
        By extending support of its technology to Linux, Mac OS X and Solaris
        OS, ActivCard extends the breadth of supported platforms to address the
        security threats that exist within a heterogeneous enterprise.

        The multi-platform ActivCard Gold capability meets the requirements of
        the U.S. Department of Defense (DoD) and its new Common Access Card
        (CAC), which uses the ActivCard Gold for Windows. The DoD had put forth
        a directive for promptly implementing an integrated public key
        infrastructure solution. The smart card solution the DoD selected, along
        with ActivCard Gold solution, meets the requirements for identity
        management, secure email and CAC smart card functionality that apply
        universally across all desktops and servers.

        http://www.activcard.com


        (510) 574-1708

Details at http://sun.systemnews.com/64/4/marketplace/index.shtml#10235

Have a custom version of 'System News for Sun Users' delivered to you
via email each week in PDF, text or HTML.  Only the sections that you
select will be included in your copy of the news magazine.  Subscribe at
http://sun.systemnews.com/subscribe
(c) 2003 System News, Inc.   http://www.systemnews.com

 
 
 

1. SN#9499 Solaris[TM] Operating Environment Security Alerts: dtsession and lpq Vulnerabilities

SYSTEM NEWS FOR SUN USERS
Vol 62 Issue 2 2003-04-07  Article 9499 from section "Security"

     The NSFOCUS Security Team has found a buffer overflow vulnerability in
     dtsession (NSFOCUS Security Advisory (SA2003-03), Release Date:
     2003-03-31), which is an application in the Solaris[TM] Operating
     Environment (Solaris OE). Local attackers could exploit the vulnerability
     to gain root privilege.

     The security team suggests a workaround that disables suid root bit of
     dtsession temporarily. Users are advised that this workaround might prevent
     them from being able to unlock the screen by the list of keyholders
     (including root):

     # chmod a-s /usr/dt/bin/dtsession

     http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert/52388

     The NSFOCUS Security Team has also found a buffer overflow vulnerability in
     lpq, an application in the Solaris OE (NSFOCUS Security Advisory
     (SA2003-02), Release Date: 2003-3-31) that can be exploited by local
     attackers to gain root privilege. lpq is used to display the contents in
     printing queue. Because Solaris 8 OE and Solaris 9 OE use strlcat() to
     implement string copy, avoiding bufferoverflow, they are not, therefore,
     vulnerable to the issue.

     The security team suggests a workaround to disable suid root attribute of
     lpstat(lpq) temporarily:

     # chmod a-s /usr/bin/lpstat

     http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert/52443

     Sun Alert ID: 50471, originally released January 31, 2003, was modified on
     March 20, 2003. Sun has identified an issue with L2 SRAM parameter settings
     on Sun Fire[TM] 3800/4800/4810/6800 servers, Sun Fire[TM] 12K and Sun
     Fire[TM] 15K servers, Sun Fire[TM] V1280 and Netra[TM] 1280 systems. This
     issue may cause L2 SRAM errors to be produced, which can lead to domain
     panics or hangs.

Details at http://sun.systemnews.com/62/2/sec/index.shtml#9499

Have a custom version of 'System News for Sun Users' delivered to you
via email each week in PDF, text or HTML.  Only the sections that you
select will be included in your copy of the news magazine.  Subscribe at
http://sun.systemnews.com/subscribe
(c) 2003 System News, Inc.   http://www.systemnews.com

2. Cisco problem! $20 Paypal reward if you are the 1st to solve my problem.

3. SN#9569 Security Products: Trusted Solaris[TM] Operating Environment, N1 and More

4. Remote Tools Policy Settings?

5. SN#9245 Security Administrator for the Solaris[TM] 9 Operating Environment

6. A2091 Problems

7. SN#10001 First National Bank Omaha and Oberthur Offer Smart Cards to the Midwest

8. SN#9580 Belgium Begins Smart Card ID Program

9. SN#10246 i2 Transport Management Solution Now Runs on Solaris[TM] Operating System

10. SN#10198 Hong Leong Finance of Singapore Upgrades with the Solaris[TM] Operating System

11. SN#10071 Sun Releases Solaris[TM] 9 Operating System Source Code for Education Market