Note: this is an OCR of a scan of a fax, so please excause the errors.

  93-5

  1 . The National Institute of Standards and Technology,  Computer  Security
  Division, has released two documents of interest  (a) "A Guide to the
  Selection of Anti-Virus Tools and Techniques",  Special  Publication  800-5,
  December 2, 1992; and (b)  "Automated Tools for Testing Cumputer System
  Vulnerability", Special. Publication 800-6, December 3, 1992.  Both  documents
  are available for anonymous ftp from the NIST host 129.6.54.11 in  the  path
  /pub/nistpubs. I successfully downloaded and  printed  postscript  copies  of
  both.  Alternatively, one may call Ms. Dianne Ward, NIST, at 301-975-2821 for
  one free copy of each.

  2. Fridrik Skulason has released version 2.07  of  F-PROT,  The  program  is
  available on the Internet to include simtel2O in  the  path  pdl:<msdos.trojan-
  pro>fp-207.zip (reference FT-17).

  3. XTree has sent letters to registered userb of  its  program  Virusafe  stating
  that it intends to phase out the product. Registered users  can  expect  support
  until the end of January 1994.  There may always be the chance the XTree will
  sell the product to another company, given that it acquired the product in such
  a manner several years ago (reference PT-24). Thanks  to  Jim  Silsbee,  Fort
  Bliss, TX, for the information. This is at least the third  firm  which  will
  have come and gone in the anti-viral market to my knowledge in the  last  four
  years.

  4. PT-58, Virus Buster, has been released. I  held  up  the  distribution  to
  complete some additional tests. Virus Buster contains, a very  interesting
  collection of programs. If you have the opportutiity to obtain  an  evaluation
  copy, I would recommend it highly. Please note this is a personal  opinion  and
  does not represent the views of my employer.

  5. Phrack, edition 41, is available from eff.org  [192.88.144.4]  in  the  path
  /pub/cud/pbrack/pbrack-41. While the edition has a  December  1992  date,  EFF
  posted it to their host in January 1993. For anyone  who  has  not  previously
  seen one method of forging mail under SMTP, there is a  step-by-stup  article  on
  the subject. The edition is rather large, around 400,000 bytes.  The  last
  three parts, 11-13, contain postings of newspaper articles related to
  cyberspace activities, These and the article on  mail  forgery  were  the  most
  intereating for me.

  6.  I will be out of town most of the week to present a paper  at NCSA's  2nd
  International Virus Prevention Conference & Exhibition.  If  anyone  on  this
  mailing will be there, why not be bold and daring  and  introduce  yourself?