Language Selection

English French German Italian Portuguese Spanish

Security: Trusting the delivery of Firefox Updates, Reproducible Builds Weekly Report and Security updates for Tuesday

Filed under
Security
  • Trusting the delivery of Firefox Updates

    Providing a web browser that you can depend on year after year is one of the core tenet of the Firefox security strategy. We put a lot of time and energy into making sure that the software you run has not been tampered with while being delivered to you.

    In an effort to increase trust in Firefox, we regularly partner with external firms to verify the security of our products. Earlier this year, we hired X41 D-SEC Gmbh to audit the mechanism by which Firefox ships updates, known internally as AUS for Application Update Service. Today, we are releasing their report.

    Four researchers spent a total of 27 days running a technical security review of both the backend service that manages updates (Balrog) and the client code that updates your browser. The scope of the audit included a cryptographic review of the update signing protocol, fuzzing of the client code, pentesting of the backend and manual code review of all components.

  • Reproducible Builds: Weekly report #180
  • Security updates for Tuesday

More in Tux Machines

Love Microsoft Teams? Love Linux? Then you won't love this

Microsoft loves Linux. Unless you are a Linux user who happens to want to use Teams. In that case, you probably aren’t feeling the love quite so much. Read more

Red Hat News and Developments

  • The GNOME Infrastructure is moving to Openshift
    The cluster consists of 3 master nodes (controllers, api, etcd), 4 compute nodes and 2 infrastructure nodes (internal docker registry, cluster console, haproxy-based routers, SSL edge termination). For the persistent storage we’re currently making good use of the Red Hat Gluster Storage (RHGS) product that Red Hat is kindly sponsoring together with the Openshift subscriptions. For any app that might require a database we have an external (as not managed as part of Openshift) fully redundant, synchronous, multi-master MariaDB cluster based on Galera (2 data nodes, 1 arbiter). The release we’re currently running is the recently released 3.11, which comes with the so-called “Cluster Console”, a web UI that allows you to manage a wide set of the underlying objects that previously were only available to the oc cli client and with a set of Monitoring and Metrics toolings (Prometheus, Grafana) that can be accessed as part of the Cluster Console (Grafana dashboards that show how the cluster is behaving) or externally via their own route.
  • OpenShift Commons Gathering Seattle Announces Speakers from Intel, GE, Progressive, HealthPartners, TicketMaster, USAA and more!
    The OpenShift Commons Gathering brings together experts from all over the world to discuss the container technologies, best practices for cloud-native application developers and the open source software projects that underpin the OpenShift ecosystem to help take us all to the next level in cloud-native computing. This final Gathering of 2018 will feature 400+ developers, project leads, cloud architects, DevOps professionals, sysadmins, and cloud-native practitioners coming together to explore the next steps in making container technologies successful and secure at scale.
  • Modernize your application deployment with Lift and Shift
    For many software modernization projects, it’s all about learning to love, lift, and shift. No, wait. It’s all about learning to love lift and shift. The basic idea behind lift and shift is to modernize how an existing application is packaged and deployed. Because it’s not about rewriting the application itself, lift and shift is typically quick to implement. Modern development environments rely on containers for packaging and deployment. A modern environment also uses a continuous integration / continuous deployment (CI/CD) system that automatically builds, tests, and deploys an application whenever its source code changes.
  • Istio on OpenShift: Technology Preview 2 of Service Mesh Now Available
    It’s been a few weeks since the release of the first tech preview of Istio on OpenShift. Since then a lot has happened, and we are happy to announce the availability of our second tech preview release. In this release we are adding a whole new user interface from the upstream Kiali project. The Kiali user interface can help Istio users understand what’s happening in their service mesh, canl show how the various components are connected, and can help to detect issues (HTTP 500, pod not started, misconfigurations) to better fix those.
  • Insider Selling: Red Hat Inc (RHT) EVP Sells 960 Shares of Stock
  • Featured Stock: Red Hat, Inc. (NYSE:RHT)
  • Scout Investments Inc. Acquires 3,034 Shares of Red Hat Inc (RHT)
  • Get "The Art of Modern Application Development" the Red Hat way - eBook, free [Ed: Apparently a paid-for ad]

today's howtos

Games: Steam Play Games, Puzlogic, and Rocket League ‘RocketID’ Delays