Date: 18 Jul 1994 14:02:35 -0400 From: Pete Hammes Subject: ASSIST 94-26 To: assist-bulletin@assist.ims.disa.MIL -----BEGIN PRIVACY-ENHANCED MESSAGE----- Proc-Type: 4,MIC-CLEAR Content-Domain: RFC822 Originator-Certificate: MIICozCCAgwCAREwDQYJKoZIhvcNAQECBQAwgYYxC zAJBgNVBAYTAlVTMSswKQYDVQQKEyJEZWZlbnNlIEluZm9ybWF0aW9uIFN5c3Rlb XMgQWdlbmN5MTAwLgYDVQQLEydDZW50ZXIgZm9yIEluZm9ybWF0aW9uIFN5c3Rlb XMgU2VjdXJpdHkxGDAWBgNVBAsTD0NvdW50ZXJtZWFzdXJlczAeFw05MzEyMDkxO DU5MTZaFw05NTEyMDkxODU5MTZaMIGxMQswCQYDVQQGEwJVUzErMCkGA1UEChMiR GVmZW5zZSBJbmZvcm1hdGlvbiBTeXN0ZW1zIEFnZW5jeTEwMC4GA1UECxMnQ2Vud GVyIGZvciBJbmZvcm1hdGlvbiBTeXN0ZW1zIFNlY3VyaXR5MRgwFgYDVQQLEw9Db 3VudGVybWVhc3VyZXMxEzARBgNVBAsTCk9wZXJhdGlvbnMxFDASBgNVBAMTC1Bld GUgSGFtbWVzMIGaMAoGBFUIAQECAgQAA4GLADCBhwKBgQDFFJkcaDOuS+6Ai2vmT bwY6JRbhdzPsl6X60hnXruOw2WvrAhc8BTFB+id75m3M55i+Th6MxWH20QHyQq5u yVghOu/s37OxIrj7irNPjtUdPv8b2m4hNGEW53QH6GmXkxLmgLzOhookpoYPC+uw 2MzibDnleVI50d2m//XsWs7hwIBAzANBgkqhkiG9w0BAQIFAAOBgQDHH6CmBoyWU zPlqVnEWYKIBsifqdTJzkKfnoST7NDRIakUP49FP86Cyy1+2AKpUCWaxjq+wGHCH RCNFCCrOwdC9z8XwJal/c69ml6eLRhOoX77ANndpU9E5+eHxP+6Ute6lc63K7+Lz 5xOULjmgaMmKDkTXveVcQO6R2CTY37vcA== Issuer-Certificate: MIICNTCCAZ4CASIwDQYJKoZIhvcNAQECBQAwRDELMAkGA 1UEBhMCVVMxCzAJBgNVBAgTAk1EMSgwJgYDVQQKEx9UcnVzdGVkIEluZm9ybWF0a W9uIFN5c3RlbXMgUENBMB4XDTk0MDIyNTE0NDkxMloXDTk0MDMwNzE0NDkxMlowg YYxCzAJBgNVBAYTAlVTMSswKQYDVQQKEyJEZWZlbnNlIEluZm9ybWF0aW9uIFN5c 3RlbXMgQWdlbmN5MTAwLgYDVQQLEydDZW50ZXIgZm9yIEluZm9ybWF0aW9uIFN5c 3RlbXMgU2VjdXJpdHkxGDAWBgNVBAsTD0NvdW50ZXJtZWFzdXJlczCBmjAKBgRVC AEBAgIEAAOBiwAwgYcCgYEA19l6BN7iTGYEU61qJETIjBh3iAeHzoL8sZ5KwFRZD S/a1KnYlD1zJHR/KeQCOBWW2HzX43TFLCNGU7UD9i6m8AymLe5IJf/bGh0Rne7Jd Q1GAOLw7/J4hE57IMbGETZpzeU1D9IYxiERRNio/oa422lUlS9JZHLA5jaPNcUrX P8CAQMwDQYJKoZIhvcNAQECBQADgYEApkliqAdudoOxvOFmQkOZbSgtlpn61VcNC R7azDNJa2ulevaebptwSTs2OvMeuR/J0Ez4TC7XrJXLVjI5huRAqc+EWGRpZYRMa CARZyE7gGYjUqS7DIQazfskeWiB8zheyW5tCVn+jnB09AZXtgbM6qRjyqrmSdCpg CtfgazIKqI= Issuer-Certificate: MIIB8jCCAVsCAQEwDQYJKoZIhvcNAQECBQAwRDELMAkGA 1UEBhMCVVMxCzAJBgNVBAgTAk1EMSgwJgYDVQQKEx9UcnVzdGVkIEluZm9ybWF0a W9uIFN5c3RlbXMgUENBMB4XDTkzMDUyODE3MTEyN1oXDTk1MDUyODE3MTEyN1owR DELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAk1EMSgwJgYDVQQKEx9UcnVzdGVkIEluZ m9ybWF0aW9uIFN5c3RlbXMgUENBMIGaMAoGBFUIAQECAgQAA4GLADCBhwKBgQDbL xaRlS3u54yyRgVDI5dcE9nlasL8fJqOGlyo7xH2FZnr3kUfsFj7OGiYsr6UbvqwK nyfMIRUrXDUa64leGmft3SK27psDUHOynRSCc40d/HrDf810U5tnTamBKUIMqivK 4GoL0tMRA1eX6hALAvLLgK1HbnwZAo6GqQGW8CIJQIBAzANBgkqhkiG9w0BAQIFA AOBgQDBp5aC6oV6IuFi8JCctq57bew604HHNllgjjp7zdXafq6jctRg2g91k/yFW h19bJC/tNrb0WVwuZOs5L/FToPMNIIHzaW/YSROBmyhTDYaKHZGj0P1+iNjMbHt9 dm1QEHGIfKgBwFidItnOa74DfkXdijlPRnr/+E2Ib6PM+hEfQ== MIC-Info: RSA-MD5,RSA,fTM1Q7CA1n8LCz2K9l0MQjlSgcRgdGE9IUJguVgMyhq HYNHh1Jciuf8jd/CCnaAx+K9RobG+kijLtTvyitxVOoTRA/rij5OJNds/NuzI2Ch LXMjP6pm7Gw9w2JPM/fblPxOnJeaeMiQ7TRdJbH2NvRTuCGDgvIS6vM3JEhCMwJY = <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Automated Systems Security Incident Support Team _____ ___ ___ _____ ___ _____ | / /\ / \ / \ | / \ | | / Integritas / \ \___ \___ | \___ | | < et /____\ \ \ | \ | | \ Celeritas / \ \___/ \___/ __|__ \___/ | |_____\ <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Bulletin 94-26 Release date: 18 July 1994, 2:00 PM EDT Subject: ASSIST Information Resources. To facilitate the timely distribution of security-relevant information to DoD sites worldwide, ASSIST provides an electronic bulletin board system (BBS) and an anonymous File Transfer Protocal (FTP) system for use by DoD-affiliated personnel. This ASSIST bulletin provides information about connecting to the ASSIST BBS and FTP systems. These services are available to all DoD and DoD interest users. The ASSIST BBS is a dial-up system that can be reached via modem at 703-756-7993/1154, DSN 289. Please call the ASSIST Response Center (ARC) 1-800-357-4231 when encountering any difficulty and the security analysts on duty will work to resolve your problem. The BBS is an open system, and users will be prompted through set up of an account during the initial call to the system. The vast majority of the files are available for unrestricted viewing and download by any user of the BBS. The IBM Antivirus (IBMAV) file area is restricted to access by users who have been verified as being DoD affiliated personnel. The verification process is required to fulfill terms of the licensing agreement with IBM for use of the IBMAV software. ASSIST verifies DoD affiliation by performing a call back to a DSN phone number provided by the person making the request, receiving an e-mail from a .mil address, or through some other arrangement. Once verified, access is granted to the IBMAV file area by an ASSIST BBS system administrator. Users who have questions or problems while on the BBS should go to the "Message Menu" and leave a message for "sysop". To login to the ASSIST BBS you will need: * Personal Computer (PC). * Modem (baud rates up to 9600 are supported). * Communications software such as Procomm, Procomm+, Smartcom II or III, Crosstalk, etc. * Communication software settings should be: - Data bits: 8 - Stop bits: 1 - Parity: None - Duplex: Full - Terminal emulation: ANSI, VT series or IBM PC are the most common. * File download/upload protocols supported include xmodem, zmodem, ymodem, and ASCII. After you connect to the BBS the first time, the software will prompt you for the necessary input to set up an account. The following is a list of the BBS file areas and a description of content. A detailed listing of file names and descriptions can be viewed by performing a "List Files" from the "File Section Menu" on the BBS. File area A - ASSIST Bulletins. ASSIST Bulletins issued to date. File area B - Security Tools. Security tools for various hardware/software platforms. File area C - General Security Information. Information files related to security on various hardware/software platforms, networks, and other topics. File area D - DISSPatch Newsletters. DISSPatch Newsletters. File area E - Publications, Policies, Regulations. This file area contains security related publications, regulations, policies, standards, and guidelines. File area F - CHIPS. CHIPS - Navy computer security newsletters. File area G - Rainbow Series The National Computer Security Center Rainbow Series. File area H - IBM Anti-Virus IBM Anti-Virus software and documentation. File area I - File uploads. File area for uploads to ASSIST, accessible by BBS admin personnel only. All files are reviewed by ASSIST before being made available to BBS users. File area J - Security Products Information from the CISS Security Products Directorate. File area K - MD5 The MD5 checksum utility and related documentation. File area L - Multi-Level Security Information from the CISS Multi-Level Security Directorate. ASSIST has an anonymous FTP system that is available to every DoD system registered with the Defense Data Network (DDN) Network Information Center (NIC), or local Domain Name Service (DNS). The FTP file system is identical to that of the BBS with a few minor exceptions. Messages cannot be left for ASSIST using FTP, but Milnet e-mail can be sent to assist@assist.ims.disa.mil. Milnet users can access the system by FTPing to Milnet address 137.130.234.30 (assist.ims.disa.mil), and entering anonymous as the user ID and their e-mail address as the password. If the user sees the message "Connection refused by remote host", assist.ims.disa.mil did not resolve the incoming address as a .mil. If the user sees the message "Connection timed out", assist.ims.disa.mil could not determine whether or not the incoming address was a .mil in the allotted time. assist.ims.disa.mil will first attempt to resolve the incoming FTP address with the NIC, and failing there will then try DNS. If a search has to be performed on DNS, slow networks or failure to immediately locate the address can result in a timeout of the connection before the address is resolved. The best way to avoid FTP connection problems is to register DoD systems with the NIC. For NIC registration information, call 800-365-DNIC, 703-802-4535, e-mail to to nic@nic.ddn.mil, or contact the DDN Project Management Office for your DoD element. In all cases, please call the ASSIST Response Center (ARC) 1-800-357-4231, when encountering any difficulty and the security analysts on duty will work with you in resolving the problem. To access the ASSIST anonymous FTP system: * ftp to 137.130.234.30 from a DNS-registered system with Milnet connectivity. * A successful connection will display the following on your terminal: ftp assist Connected to assist. 220 assist FTP server (Version wu-2.1c(6) Tue Mar 22 15:06:15 EST 1994) ready. Name (assist:): anonymous * System will then display: 331 Guest login ok, send your complete e-mail address as password. Password: * The anonymous FTP resource is a Unix system. Use "ls -l" to list the files in a directory, and "cd " to change from the current directory to another directory called directory-name. To download a file, type: get The default file type is ASCII. If you are downloading a binary file (i.e. an executable or encrypted), change to binary mode first by typing: binary To change back to ASCII, type: ascii The following are directories and files available on 137.130.234.30 via anonymous FTP. Each directory has an INDEX file that contains file names and descriptions. drwxr-sr-x 6 root 2560 Jun 15 20:46 ASSIST.bulletins drwxr-sr-x 2 root 512 Jan 7 1994 CHIPS drwxr-sr-x 2 root 512 Jun 29 07:56 CSL drwxr-sr-x 2 root 512 Jan 7 1994 DISSPATCH drwxr-sr-x 2 root 1024 Jun 16 18:19 IBMAV - -rw-r--r-- 1 root 694 Jun 29 09:08 INDEX drwxr-sr-x 2 root 512 Jun 29 09:34 MLS drwxr-sr-x 2 root 2048 Jun 29 12:48 general.info drwxr-sr-x 3 root 512 Mar 31 12:04 patches drwxr-sr-x 2 root 1536 Jun 29 14:51 pubs.policy.regs drwxr-sr-x 2 root 1024 Jan 7 1994 rainbow.series drwxr-sr-x 2 root 512 Mar 14 10:10 security.products drwxr-sr-x 5 root 1024 Jul 5 14:54 tools Directory /pub/ASSIST.bulletins/ASSIST91 ASSIST Bulletins issued in 1991. Directory /pub/ASSIST.bulletins/ASSIST92 ASSIST Bulletins issued in 1992. Directory /pub/ASSIST.bulletins/ASSIST93 ASSIST Bulletins issued in 1993. Directory /pub/ASSIST.bulletins/ASSIST94 ASSIST Bulletins issued in 1994. Directory /pub/CHIPS CHIPS Navy computer security newletters. Directory /pub/CSL NIST Computer Systems Labs (CSL) Bulletins. Directory /pub/DISSPATCH DISSPatch newsletters. Directory /pub/IBMAV IBM Anti-Virus software and documentation. Directory /pub/MLS Information from the Center for Information Systems Security (CISS) Multi-Level Security Directorate. Directory /pub/general.info Information files related to security on various hardware/software platforms, networks, and other topics. Directory /pub/patches System security patches and related documentation. Directory /pub/patches/sendmail System security patches for the sendmail vulnerability. Directory /pub/pubs.policy.regs Security related publications, regulations, policies, standards, and guidelines. Directory /pub/rainbow.series The National Computer Security Center Rainbow Series. Directory /pub/security.products Information from the CISS Security Products Directorate. Directory /pub/tools Security tools for various hardware/software platforms. ASSIST is an element of the Defense Information Systems Agency (DISA), Center for Information Systems Security (CISS), that provides service to the entire DoD community. If you are a constituent of the DoD and have any questions about ASSIST or computer security issues, contact ASSIST using one of the methods listed below. If your organization/institution is non-DoD, contact your Forum of Incident Response and Security Teams (FIRST) representative. You can obtain a list of FIRST member organizations and their constituencies by sending email to docserver@first.org with an empty "subject" line and a message body containing the line "send first-contacts". ASSIST INFORMATION RESOURCES: If you would like to be included in the distribution list for these bulletins, send your Milnet (Internet) e-mail address to assist-request@assist.ims.disa.mil. Back issues of ASSIST bulletins, and other security related information, are available from the ASSIST BBS at 703-756-7993/ 1154 DSN 289, and through anonymous FTP from assist.ims.disa.mil (IP address 137.130.234.30). Note: assist.ims.disa.mil will only accept anonymous FTP connections from Milnet addresses that are registered with the NIC or DNS. ASSIST contact information: PHONE: 1-800-357-4231, DSN 289-7974, duty hours are 06:00 to 22:30 EST Monday through Friday. During off duty hours, weekends, and holidays, ASSIST can be reached via pager at 800-SKY-PAGE (800-759-7243) PIN 2133937. Your page will be answered within 30 minutes, however if a quicker response is required, prefix your phone number with "999". ELECTRONIC MAIL: Send to assist@assist.ims.disa.mil. ASSIST BBS: Leave a message for the "sysop". Privacy Enhanced Mail (PEM): ASSIST uses PEM, a public key encryption tool, to digitally sign all bulletins that are distributed through e-mail. The section of seemingly random characters between the "BEGIN PRIVACY-ENHANCED MESSAGE" and "BEGIN ASSIST BULLETIN" contains machine-readable digital signature information generated by PEM, not corrupted data. PEM software for UNIX systems is available from Trusted Information Systems (TIS) at no cost, and can be obtained via anonymous FTP from ftp.tis.com (IP 192.94.214.96). Note: This is not an endorsement by ASSIST of TIS or it's products. The TIS software is just one of several implementations of PEM currently available and additional versions are likely to be offered from other sources in the near future. Reference herein to any specific commercial products, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favoring by ASSIST. The views and opinions of authors expressed herein shall not be used for advertising or product endorsement purposes. -----END PRIVACY-ENHANCED MESSAGE-----