Language Selection

English French German Italian Portuguese Spanish

Search

More in Tux Machines

Security Leftovers and DRM

  • Why Web Browser Padlocks Shouldn’t Be Trusted

    On Monday, the Anti-Phishing Working Group (APWG) released a study (PDF) that tracked a large uptick in phishing attacks in Q2 of 2020. The surge involves rogue sites using the cryptographic protocol Transport Layer Security or TLS, most commonly referred to by its legacy name Secure Sockets Layer, or SSL.

    SSL padlocks indicate that a browser is using a secure and encrypted communication pipe to the server hosting the desired website. SSL warnings are also complemented by the additional “HTTPS” indication within a browser address bar, meaning the browser is transmitting information safely using Hypertext Transfer Protocol Secure.

    According to the APWG report, 80 percent of phishing sites used SSL certificates in Q2. Attacks ranged from phishing lures pointing to bogus wire-transfer sites, to social-media platforms Facebook and WhatsApp being pelted with links to shady domains.

  • Security updates for Thursday

    Security updates have been issued by Debian (ruby-json-jwt and ruby-rack-cors), Fedora (xen), SUSE (aspell and tar), and Ubuntu (ruby-gon, ruby-kramdown, and ruby-rack).

  • Who’s Behind Monday’s 14-State 911 Outage?

    Emergency 911 systems were down for more than an hour on Monday in towns and cities across 14 U.S. states. The outages led many news outlets to speculate the problem was related to Microsoft‘s Azure web services platform, which also was struggling with a widespread outage at the time. However, multiple sources tell KrebsOnSecurity the 911 issues stemmed from some kind of technical snafu involving Intrado and Lumen, two companies that together handle 911 calls for a broad swath of the United States.

  • PowerShell Backdoor Launched from a ShellCode

    Here is a practical example found in the wild. The initial PowerShell script has a VT score of 8/59 (SHA256:f4a4fffaa31c59309d7bba7823029cb211a16b3b187fcbb407705e7a5e9421d3). The script is not heavily obfuscated but the technique used is interesting. It uses the CSharpCodeProvider[1] class: [...]

  • Russian Who [Cracked] LinkedIn, Dropbox Gets 88-Month Prison Term

    A Russian [attacker] was sentenced to more than seven years in a U.S. prison for stealing the logins of 117 million users of LinkedIn, Dropbox and the defunct social media site Formspring, according to federal prosecutors.

    Yevgeniy Nikulin, 32, was convicted in July after a six-day jury trial in San Francisco in what was said to be one of the largest data breaches in U.S. history.

  • WhatsApp update lets you delete images and videos on other people's phones

    A new WhatsApp update will allow users to delete an image, video or gif on someone else’s phone after sending it to them.

    The Expiring Media feature, first spotted by the website WaBetaInfo, causes media to disappear after being viewed within a chat.

    In order to enable the feature, the sender needs to select a “view once” button when sending the image, video or gif.

    [...]

    These features are developed in such a way that users are unable to take a screenshot of the media in order to save the image to their phone or device.

Mozilla and Firefox Promotion, Pale Moon Web Browser 28.14 Released

  • Join the anti-establishment

    Firefox puts people first. In fact, we’re backed by a not-for-profit and our profits go back into making the internet UNFCKING BELIEVABLE FOR YOU. Luckily, we aren’t the only ones who believe that the internet works best when your privacy and security are protected. There are a number of us out there pushing for an internet that is powered by more than a handful of large tech companies, because we believe the more choice you have the better things are for you — and for the web. We vetted these companies for how they treat your data and for their potential to shake up things up. In short: they’re solid.

  • The internet needs our love

    It’s noisy out there. We are inundated with sensational headlines every minute, of every day. You almost could make a full-time job of sorting the fun, interesting or useful memes, feeds and reels from those that should be trashed. It’s hard to know what to pay attention to, and where to put your energy. With so much noise, chaos and division, it seems that one of the only things we all have in common is relying on the internet to help us navigate everything that’s happening in the world, and in our lives.

  • Pale Moon Web Browser 28.14 Released [Ubuntu PPA]

    Pale Moon, an open-source Goanna-based web browser, released version 28.14.0 (and 28.14.1 with quick fix) with stability and security improvements.

  • Mozilla Partners with the African Telecommunications Union to Promote Rural Connectivity

    Mozilla and the African Telecommunications Union (ATU) have signed a Memorandum of Understanding (MOU) for a joint project that will promote rural connectivity in the Africa region. “The project, pegged to the usage of spectrum policy, regulations and practices, is designed to ensure affordable access to communication across the continent,” said ATU Secretary-General John OMO. “Figuring out how to make spectrum accessible, particularly in rural areas, is critical to bringing people online throughout the African continent,” said Mitchell Baker, CEO of Mozilla, “I’m committed to Mozilla making alliances to address this challenge.” While half the world is now connected to the internet, the existing policy, regulatory, financial, and technical models are not fit for purpose to connect the poorer and more sparsely populated rural areas. More needs to be done to achieve the United Nations’ universal access goals by 2030. Clear policy and regulatory interventions that can support innovation, and new business models to speed up progress, are urgently required.

  • This is how we unfck the internet

    We have a once-in-a-lifetime chance to unfck the internet. We should take it. How we talk, work, and play online depends on it. Dramatic? No, Kardashians is dramatic. The truth is we have more than a few problems to deal with. A whole sh*tton of how we communicate is controlled by a few centi-billionaires. That’s a new word for all of us: centi-billionaire. It means worth over $100 billion USD. Each. [...] People deserve to feel safe with the knowledge that their personal information is shielded from hackers, spies and strangers. Let’s Encrypt, an alliance Mozilla helped found, now delivers greater security to over 85% of web transactions — while adding the “s” in “https://” — proving that security is possible on a large scale. With security comes trust, and trust will be the bedrock of a better internet.

Audiocasts/Shows: BSDNow, Ubuntu Podcast and More

IBM/Red Hat/Fedora Leftovers

  • Open source gravitates to outer space

    The 2016 movie, Hidden Figures, highlighted IBM technologists who played a crucial role in NASA’s mission to put a man on the moon. Fifty years later, IBM is still actively working to open possibilities for the new space age. The IBM Blue Tech Innovation, Space Tech Hub team, led by Naeem Altaf, IBM’s Distinguished Engineer and CTO Space Tech, designs and builds framework and technical prototypes for cubesats and space situational awareness, at times with varying degrees of collaborations from space agencies, universities, and space technology companies. Today, the Space Tech Hub team is excited to announce two new open source projects, the Space Situational Awareness project and the Kubesat project. By open sourcing these two projects, we hope to give more people access to space tech and democratize access to space for all. Developers with an interest in space technology can help take these projects to the next level. These two containerized solutions are built with cloud-native principles and run on Red Hat OpenShift on IBM Cloud.

  • Red Hat Success Stories: Scale, speed, succeed

    Red Hat is helping our customers succeed across a variety of industries. This month, we’re highlighting stories on customers in financial services, energy, and telecommunications that have turned to Red Hat to help improve their IT infrastructure. [...] Migrating to a private cloud environment based on Red Hat OpenStack Platform has helped Grupo ASD optimize its hardware use. By repurposing more than 100 underused servers, the company can now provide faster, more stable services to customers. "For example, we had hardware that was used for services related to the Colombian electoral process," said Morales. "With Red Hat OpenStack Platform, we can now use it to support new, cloud-like services based on Kubernetes containers and run workloads on either physical or virtual machines."

  • Red Hat Enterprise Linux 7.9 Released

    Red Hat has announced the general availability of Red Hat Enterprise Linux (RHEL) 7.9. This is the last RHEL 7 minor release as RHEL 7 enters the Maintenance Support 2 phase.

  • Faster deployments of Red Hat OpenStack Platform with Ansible strategy plugins

    The future release of Red Hat OpenStack Platform director will bring some changes to how the overcloud nodes are configured during the deployment and how it makes it faster with custom Ansible strategy plugins. Note: if you haven’t read about "config-download" yet, we suggest you take a look at this previous post ("Greater control of Red Hat OpenStack Platform deployment with Ansible integration") before reading this one. This post is going to take a deep dive on the changes we made regarding how Ansible strategy plugins can impact the way overcloud nodes are deployed at a large scale, and present a new feature which allows a certain amount of nodes to fail during a deployment or day 2 operation.

  • Building modern CI/CD workflows for serverless applications with Red Hat OpenShift Pipelines and Argo CD, Part 1

    A recent article, The present and future of CI/CD with GitOps on Red Hat OpenShift, proposed Tekton as a framework for cloud-native CI/CD pipelines, and Argo CD as its perfect partner for GitOps. GitOps practices support continuous delivery in hybrid, multi-cluster Kubernetes environments. In this two-part article, we’ll build a CI/CD workflow that demonstrates the potential of combining Tekton and GitOps. You’ll also be introduced to Red Hat OpenShift Serverless, as we’ll use Knative service resources in our CI/CD workflow. Let’s start with an overview of the CI/CD workflow that we’ll implement for the demonstration.

  • Command-line cluster management with Red Hat OpenShift’s new web terminal (tech preview)

    Red Hat OpenShift‘s web console simplifies many development and deployment chores to just a few clicks, but sometimes you need a command-line interface (CLI) to get things done on a cluster. Whether you’re learning by cut-and-paste in a tutorial or troubleshooting a deep bug in production (also often done by cut-and-paste), you’ll likely need to enter at least a line or two at a command prompt. Starting with version 4.5.3, OpenShift users can try out a tech preview of the new Web Terminal Operator. The new OpenShift web terminal brings indispensable command-line tools right to the web console, and its Linux environment runs in a pod deployed on your OpenShift cluster. The web terminal eliminates the need to install software and configure connections and authentication for your local terminal. It also makes it easier to use OpenShift on devices like tablets and mobile phones, which might lack a native terminal. This article introduces the new OpenShift web terminal, including how to install and activate the Web Terminal Operator.

  • Quicker, easier GraphQL queries with Open Liberty 20.0.0.9

    Open Liberty 20.0.0.9 lets developers experiment with the type-safe SmallRye GraphQL Client API, and write and run GraphQL queries and mutations more easily with a built-in GraphiQL user interface (UI).

  • Fedora 33 To Stick With systemd-resolved Following Last Minute Concerns

    One of the fundamental changes with Fedora 33 is making use of systemd-resolved by default for network name resolution. A number of users testing out Fedora 33 on desktops and servers have run into various issues with systemd-resolved and sought to revert and delay this default behavioral change until a later release. Following a lengthy mailing list discussion that ticked back up in recent days over systemd-resolved by default in Fedora 33, feedback was sought from the Fedora Engineering and Steering Committee (FESCo) on delaying this change until a later release.