Language Selection

English French German Italian Portuguese Spanish

Security: Firewalld, NSA, WPA, Supply-chain Attacks and Facebook

Filed under
Security
  • Firewalld: The Future is nftables

    Firewalld, the default firewall management tool in Red Hat Enterprise Linux and Fedora, has gained long sought support for nftables. This was announced in detail on firewalld’s project blog. The feature landed in the firewalld 0.6.0 release as the new default firewall backend.

  • How SELinux helps mitigate risk while facilitating compliance

    Many of our customers are required to meet a variety of regulatory requirements. Red Hat Enterprise Linux includes security technologies that help meet these requirements. Improving Linux security also benefits our layered products, such as Red Hat OpenShift Container Platform and Red Hat OpenStack Platform.

  • WPA3: How and why the Wi-Fi standard matters

    WPA2 has given us 14 years of secure wireless networking. WPA3 will fix a number of big problems in WPA2 and make strong security the default condition.

  • How one man could have hacked every Mac developer (73% of them, anyway)

    OK, in some ways that’s only very loosely true, when you think of all the non-Unixy stuff on top of the Darwin base layer, and we welcome your comments below to explain just how carelessly loose we have been…

    [...]

    The potential impact of a well-thought-out hack into one of the many package management ecosystems out there is a pet concern of security researcher Eric Holmes.

    Hacks against the very repositories that many of us rely upon for software updates are known in the jargon as supply-chain attacks – after all, the modern supply chain often doesn’t involve any factories, ships, trains, inventories, trucks, pallets or forklifts.

    So, Holmes decided to take a look at the supply chain for Homebrew, or Brew for short – we’re guessing he picked Brew not only because he knew it was the most popular amongst the Mac community, but also because he uses it himself.

    The results were, in a word, salutary.

  • SD Times Open-Source Project of the Week: Fizz

    In order to implement the new generation of Transport Layer Security, TLS 1.3, at Facebook, the company built a TLS library in C++ 14 called Fizz. Earlier this week, Facebook announced it was open sourcing that library.

    TLS 1.3 added several new features to make Internet traffic more secure, such as encrypting handshake methods, redesigning how secret keys are derived, and a zero round-trip connection setup.

    “We are excited to be open-sourcing Fizz to help speed up deployment of TLS 1.3 across the internet and help others make their apps and services faster and more secure,” Facebook wrote in a post.

More in Tux Machines

The 5 Best Linux Distros for Laptops

Maybe you’ve just purchased a brand new laptop. Or maybe you have an older laptop sitting in your closet that you’d like to bring back to life. Either way, the best Linux distros for laptops are those that offer better driver support and can accommodate the performance offered by most laptops. People buy laptops for a specific purpose. That may be software development, creating graphic content, gaming, or office work. The Linux distros below are well suited to run on any laptop. Read more

Graphics: Freedreno Gallium3D and NVIDIA

  • Freedreno Gallium3D Lands MSAA Support For Qualcomm Adreno 600 Series
    While Qualcomm was busy hosting their Tech Summit this week in Hawaii, the independent open-source developers were pressing ahead with their reverse-engineered Qualcomm Adreno 3D graphics driver support. Rob Clark of Red Hat and Kristian Kristensen of Google landed their latest Freedreno Gallium3D driver improvements into Mesa 19.0. The most notable addition was multi-sample anti-aliasing support (MSAA) for the Adreno 600 series hardware. There is also now EXT_multisampled_render_to_texture support exposed by this Gallium3D driver. Besides that work there were also fixes and other changes.
  • NVIDIA Tegra X2 & Xavier Get HDMI Audio With Linux 4.21
    While it's not as exciting as if seeing full 3D open-source driver support, with the upcoming Linux 4.21 kernel are some mainline Tegra improvements that does include HDMI audio support for the X2 and Xavier SoCs. Thierry Reding of NVIDIA sent in the Tegra DRM driver updates this week for the upcoming Linux 4.21 cycle. He commented, "These changes contain a couple of minor fixes for host1x and the Falcon library in Tegra DRM. There are also a couple of missing pieces that finally enable support for host1x, VIC and display on Tegra194. I've also added a patch that enables audio over HDMI using the SOR which has been tested, and works, on both Tegra186 and Tegra194."

Powers of two, powers of Linux: 2048 at the command line

Hello and welcome to today's installment of the Linux command-line toys advent calendar. Every day, we look at a different toy for your terminal: it could be a game or any simple diversion that helps you have fun. Maybe you have seen various selections from our calendar before, but we hope there’s at least one new thing for everyone. Today's toy is a command-line version of one of my all-time favorite casual games, 2048 (which itself is a clone of another clone). Read more

More Radeon RX 590 Ubuntu Benchmarks - See How Your Linux GPU Performance Compares

Published on Friday was my Radeon RX 590 Linux benchmarks now that the kinks in the support for this latest Polaris refresh are worked out (at least in patch form). Here are some complementary data points with some of the OpenGL tests outside of the Steam games for those curious about the RX 590 performance in other workloads or wanting to see how your own GPU performance would compare to these results. The Radeon RX 590 continues running well with the patched Linux 4.20 kernel build (hopefully the last patch needed for the RX 590 will make it into 4.20 mainline soon) and in user-space was Mesa 19.0 from the Padoka PPA for this system running on Ubuntu 18.04 LTS. Read more