Security Leftovers
-
Daniel Stenberg: curl meets gold level best practices
About four years ago I announced that curl was 100% compliant with the CII Best Practices criteria. curl was one of the first projects on that train to reach a 100% – primarily of course because we were early joiners and participants of the Best Practices project.
The point of that was just to highlight and underscore that we do everything we can in the curl project to act as a responsible open source project and citizen of the larger ecosystem. You should be able to trust curl, in every aspect.
-
LLVM Moves Forward With A Security Group For Dealing With Security-Related Issues
Given the increasing number of security issues requiring compiler-based security mitigations with the likes of the Intel LVI attack to Arm Straight Line Speculation just being the two latest examples, Apple's LLVM team has been spearheading a new security group for the upstream LLVM developer community to better manage security-related matters.
-
LLVM Security Group and Process
Hi security-minded folks!
I published this RFC quite a while ago, and have received good feedback from y’all, as well as enthusiasm from a few folks whose distribution would benefit from having a security process for LLVM. Arnaud and the Board approved the patch <https://reviews.llvm.org/D70326#2005279> a few weeks ago, I’ll therefore commit it in the next few days and start moving the missing parts forward.
Some folks have self-identified as being interested in being part of the original Security Group. Let’s take this opportunity to hear from anyone else who’s interested: please speak up!
Thanks,
JF
-
Malicious Excel Delivering Fileless Payload
Macros in Office documents are so common today that my honeypots and hunting scripts catch a lot of them daily. I try to keep an eye on them because sometimes you can spot an interesting one (read: “using a less common technique”). Yesterday, I found such a sample that deserve a quick diary!
- Login or register to post comments
- Printer-friendly version
- 2775 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Recent comments
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago