I tried doing a search for this and got nothing much back.. so apologies if it has been posted before.

Do any of you know any good unix secruity sites which post about new exploits/available patches and the such?

thanks.

Packet Storm is an extremely large and current security tools resource. They are a non-profit organization comprised of security professionals dedicated to providing the information necessary to secure the World's networks. They accomplish this goal by publishing new security information on a worldwide network of websites.
http://packetstorm.decepticons.org/
Mirrors
United States / Eastern Region -
http://packetstorm.bjstuff.com

United States / Southern Region -
http://packetstorm.linuxsecurity.com

United States / Southern Region -
http://packetstormsecurity.packetstorm.org
------------------------------
Europe / Belgium -
http://packetstormsecurity.be

Europe / France -
http://packetstorm.dnsi.info

Europe / Netherlands -
http://packetstormsecurity.nl

The Register has something for every Internet user no matter if you are an IT professional or a complete newbie. The Register has a UK site and a US site they
both share the same general information.
Europe - http://www.theregister.co.uk/

United States - http://www.theregus.com/

Hack In The Box is designed to facilitate discussions on security related topics, create security awareness, and to try and provide a comprehensive database of security knowledge and resources to the public. They aim to make HITB a single place, or community on the INternet where people and corporations can go to find security information and the latest news from the underground as well as from the computer technology sectors.
http://www.hackinthebox.org/

LinuxSecurity is a site totally devoted to Linux Security, they also develop and distributes two unique security newsletters. Linux Security Week combines the most important news of the week, while Linux Advisory Watch is a comprehensive
list of all the security bulletins that were distributed for the week. http://www.linuxsecurity.com/

Security Administrator is a website ran by the publishers of Windows and .NET
Magazine. They explore the issues that are central to infrastructure growth and evolution. We combine strategic insight and analysis with hard-hitting tactical guidance. Our essential and substantive content offers unique, practical information that enables corporate buyers and IT professionals to evaluate and deploy business-critical solutions throughout the enterprise.
http://www.ntsecurity.net/

SecurityFocus is a leading provider of enterprise security threat management systems. They provide customized and comprehensive alerts of impending cyber attacks worldwide - with countermeasures to prevent attacks before they occur -
enabling companies to mitigate risk, manage threats, and ensure business continuity. The company also licenses the world's largest, most complete vulnerability database, hosts the most popular security community mailing list, Bugtraq™. http://www.securityfocus.com

sitekeeper....you stole my list :D

Originally posted by m00ds
sitekeeper....you stole my list :D

:D ME! :D

very nice put together list :)
thanks :D

Just appending to the list above

www.cert.org
www.sans.org
rr.sans.org

You should also check out some of the more "shady" security sites such as

hack.co.za which provides exploits, this will make you aware of what script kiddies are using against you

There are many other sites which provide exploits for script kiddies to run with a simple command so keep an eye on those.

Keeping up-to-date with your Operating System's security mailing list is the best way. I often find personal sites such as Packetstorm to fudge the advisories in some cases. It's best to get the news straight from your OS manufacture and its contributors. And for the record, hack.co.za is in no way "shady." The best way to test your security is to try and exploit it yourself, rather than waiting for some kiddie to make your machine their personal playground.