- Security updates for Friday
HackerOne gives professional services away for free to open source projects
HackerOne has already made an impact by making bug bounty programs easier to launch and maintain, but the company wants to go further by offering paid services for free to the open-source community.
HackerOne Offers Open Source Projects Free Access to Platform
HackerOne announced on Thursday the availability of a free version of its bug bounty platform called HackerOne Community Edition that will give open source projects tools for managing vulnerability submissions and creating bounty programs to improve software security.
- HackerOne offers bug bounty service for free to open-source projects
- HackerOne Offers Free Service for Open Source Projects
Google Volunteer Team Patches Thousands of Open-Source Projects
A 50-member team of Google engineers voluntarily worked to patch 2,600 open-source projects against a Java deserialization bug in 2016.
A Google security researcher this week offered the first details on an effort by a 50-member volunteer team at the company last year to help patch more than 2,600 open-source projects against a critical vulnerability in a widely used Java process.
A consultant at FoxGlove Security first drew attention to the so-called Java deserialization issue in November 2015 when he demonstrated attacks exploiting the vulnerability in WebLogic, Websphere, JBoss and other middleware products.
Failing to secure DNS is 'savage ignorance': Geoff Huston
Geoff Huston is the chief scientist at the Asia-Pacific Network Information Centre (APNIC). He's got a message for organisations that haven't secured their domains with DNSSEC, the cryptographically secured version of the domain name system (DNS) protocol.
- USG Dongle Firewall Device Is Like A Condom For Your USB Ports
- Plug the USG into your port before you plug in that new USB flash drive
- USG: an open source anti-BadUSB hardware firewall for your USB port
- The USG Dongle protects you from BadUSB attacks
- USB condom
- NASA has released massive catalog of free and open source software, here is how you download it [No. It's proprietary software. The serial plagiarists from Fossbytes spread falsehoods and get the news wrong. NASA gave gratis software, not FOSS (that's what they mean by "Free software"). Look carefully. Now another site of serial plagiarists who don't have a clue what they 'write' about -- namely Techworm -- spreads the fake/false news. NASA should certainly make all its software FOSS (taxpayers fund development), but it has not. Instead, lots of Microsoft lock-in from NASA. The Linux Foundation carelessly repeated the fake news from the serial plagiarists of Fossbytes. NASA did not release source code and most of the media got it right, except the Microsoft site below.]
- NASA releases a bunch of Free Open Source Software you want to check out
- Free stuff from NASA! Robots, drones, satellites!
- NASA releases massive trove of software for FREE
- NASA Releases Latest Software Catalog to Public to Spur Tech Innovation
- NASA Released Its Software for Free. Here's What You Need to Download.
- It's not all rocket science: NASA's software catalog
- NASA releases catalog offering free software for businesses
- Software catalog released by NASA
- To Infinity And Beyond: NASA Gives Away Its Software For Free In Latest Release
- NASA releases software catalog allowing space enthusiasts to be astronomers
- Nasa shares a free software catalogue offering the tools of the trade to space enthusiasts
- NASA Is Granting the Public Free Access to its Software Catalogue
- NASA Releases Free Space And Science Software Catalog
- Get to know about NASA's latest range of softwares
- NASA Opens Free Software Catalog To The Public: Perfect For Experimental Earthlings
- NASA opens their software catalog for public use; All you need to know
- The NASA 2017-2018 Catalogue Of Free Software Is Now Available
- Nasa's free software tools give space nerds a glimpse into exploring the universe
- Now you can use software that NASA astronomers and scientists use
- NASA releases key software programmes for free public access
- NASA makes public its software programs; grants free access to everyone
- NASA unveils wide range of space and science programs
- NASA just released a ton of free software for space nerds
- NASA released a ton of software for free and here's some you should try
- NASA Releases Massive Collection Of Software For Free Public Use
- NASA releases free softwares including apps, games for public use
- NASA software 2017-18 will allow transfer of files to and from satellites; All you need to know
- NASA's Software Catalog 2017-2018 Now Available Free Of Cost
- NASA gives a sweet treat to all tech fanatics
- Check out all this free software that NASA just made public
- NASA releases key software for free public access
- NASA 2017-2018 Catalog of Free Software is now Available
- NASA Publishes Updated Catalog of Free Software Products
- NASA releases software for public use free of any royalty
- NASA Released Software Tools For Free
Reddit: Difference security wise between .deb files (or the equivalent for other distros... I put this in /r/linux and not /r/debian because I feel it's a general question) and make/configure
Sorry if this is a potentially stupid question but for, say, Debian, wisdom has it that you shouldn't install software not from official repositories, so don't just install any .deb file you find on the internet. But what if you download, say, a tar, and it comes with instructions to install it using make, configure, etc?submitted by /u/annadane
Europe-wide interest in Munich desktop debate
In the days leading up to the vote, the city received a record-breaking number of comments, one city councillor noted. A handful of activists attended the city hall meeting, and an alliance of German and international free and open source organisations questioned the city's plans in an open letter.
In a statement, the Free Software Foundation Europe (FSFE) says that the door is still open, “although the mandate is highly suggestive, in that it suggests that the existing vendor-neutral approach is to be replaced with a proprietary solution.” The advocacy group says it will continue to campaign: “The vendor-neutral strategy must prevail.”
- Microsoft open source efforts draw praise [Ed: This article is a lie, based on selective quotes. Microsoft is attacking FOSS using patents and recall what happens in Munich.]
Snowden calls for AMD to open source
Whistle blowing spook Edward Snowden says that AMD could kick Intel to death if it open sources its PSP and firmware.
In an odd tweet, Snowden appeared to be jolly excited about the release of AMD’s new Ryzen desktop processor. But he said that the release of such a good product would be a good moment for AMD to open source their PSP & firmware.
“In the next cycles, many will discuss replacing Intel. This is a low-cost, low-risk opportunity for AMD to distinguish themselves from Intel on an on-going basis. It's a shame to miss it,” he wrote.
- AMD Ryzen with Ubuntu – Here is what you have to do to fix constant crashes!
AMD Ryzen with Ubuntu - Here is What You Have to Do to Fix Constant Crashes
Of course, you can always download the kernel of your choice from the Mainline Kernel PPA, and use dpkg to install it yourself as well, rather than rely on their script.
How to Build a Linux Rig
When building a machine, you must take manufacturer into consideration if you’re building for Linux. If you want a Linux machine and don’t want to worry that your build won’t work, there are several vendors to choose from (one of which is Dell). If you want all your Steam games to work, the best choice of Linux to put on it (short of putting Steam OS on it) is Ubuntu Linux. In the following article, I’m going to walk you through how to pick parts for your Linux machine.
A few years ago, I used Synergy to share my mouse between my Windows and Linux computers and it was working quite well and I even donated something I believe. Now I wanted to use it again after a lot of time and noticed that its gone paid :s For now, I've gone back to my two keyboards and mice.
I was wondering if someone knew a good alternative to it ?
Thankssubmitted by /u/wichtounet
Razer founder and CEO Min-Liang Tan said on Thursday that the company is now looking to support Linux on the Razer Blade laptop. He said that support for the open-source operating system is one of the most common requests for the Razer Blade and that Razer is now looking into the possibility. He is now asking all Linux “enthusiasts” to provide their feedback, suggestions, and ideas in the new Linux Corner section of Razer Insider.
“We decided to lead a new forum section that is dedicated to Linux’s applications for gamers or other creators alike,” the company states in its introductory post. “The Linux Corner is a result of this where fans can now discuss their experience, provide feedback, and talk about everything related to Tux’s OS running on the Razer Blade.”
Stanislav Hoferek, the developer of the Lubuntu-based Greenie Linux distribution designed to run on older PCs from ten years ago, was proud to announce the release of Greenie 16.04, which ships in two editions: Desktop and Lite.
If you’re a sysadmin who works from home, logs in for after-hours emergency support or simply prefers to work from a laptop in your office, you need to do it securely. Preparation and vigilance are essential in keeping your workstation and network safe from hackers.
Anyone who uses a Linux workstation to access and manage their company’s or project's IT infrastructure runs the risk that his or her computer will become an incursion vector against the rest of that infrastructure.
Wine 2.3 Released with Mortal Kombat X, Kholat and The Witcher 3 Improvements
The Wine development team announced the availability of a new development release of the open-source and cross-platform application that lets Linux and Mac users install and use games and apps made only for Microsoft Windows operating systems.
Wine 2.3 is now the newest development release, the third of its kind after the release of the major Wine 2.0 stable series earlier this year. Prominent features include improvements to ODBC (Open Database Connectivity) support on 64-bit platforms, more Shader Model 5 instructions, and additional work on the Direct3D command stream.
Wine 2.3 Released, Still Prepping For The Direct3D CSMT
Wine 2.3 is out as the latest bi-weekly development snapshot.
Wine 2.3 Released
The Wine development release 2.3 is now available.
Wine 2.3 released with more Direct3D command stream and Shader Model 5 work
Wine 2.3 has officially released today and the developers are continuing their work to improve Wine performance and work on Shader Model 5.
For those of you that don't know what "Direct3D command stream" means, it's multithreading to improve performance of games ran in Wine with OpenGL.
LXer: IBM is a Massive Patent Bully That Amasses Software Patents, So Invalidation or 'Sharing' of One Single Patent Misses the Point Entirely
If you want to know what's going on with your Linux server, start with these Linux monitoring commands.