Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Chris Lamb: Free software activities in July 2021

    One of the original promises of open source software is that distributed peer review and transparency of process results in enhanced end-user security. However, whilst anyone may inspect the source code of free and open source software for malicious flaws, almost all software today is distributed as pre-compiled binaries. This allows nefarious third parties to compromise systems by injecting malicious code into ostensibly secure software during the various compilation and distribution processes. The motivation behind the Reproducible Builds effort is to ensure no flaws have been introduced during this compilation process by promising identical results are always generated from a given source, thus allowing multiple third-parties to come to a consensus on whether a build was compromised.

    [...]

    As part of my role of being the assistant Secretary of the Open Source Initiative and a board director of Software in the Public Interest I attended their respective monthly meetings. As outlined in last months posts, however, my term on the OSI board has been slightly extended due to the discovery of a vulnerability in OSI's recent election — as a result, the 2021 election is currently being re-run.

  • Aaron Portnoy – ‘There’s no silver bullet for ransomware or supply chain attacks’ [Ed: When you receive packages from Microsoft/GitHub/NPM you're basically begging for malware. Not just PRISM; Microsoft literally brings people from the NSA to run GitHub/NPM.]
  • This Week In Security: Fail2RCE, TPM Sniffing, Fishy Leaks, And Decompiling | Hackaday

    Fail2ban is a great tool for dynamically blocking IP addresses that show bad behavior, like making repeated login attempts. It was just announced that a vulnerability could allow an attacker to take over a machine by being blocked by Fail2ban. The problem is in the mail-whois action, where an email is sent to the administrator containing the whois information. Whois information is potentially attacker controlled data, and Fail2ban doesn’t properly sterilize the input before piping it into the mail binary. Mailutils has a feature that uses the tilde key as an escape sequence, allowing commands to be run while composing a message. Fail2ban doesn’t sanitize those tilde commands, so malicious whois data can trivially run commands on the system. Whois is one of the old-school unix protocols that runs in the clear, so a MItM attack makes this particularly easy. If you use Fail2ban, make sure to update to 0.10.7 or 0.11.3, or purge any use of mail-whois from your active configs.

  • Ransomware Changes: DoppelPaymer Rebrands; Babuk Evolves

    One example is the DoppelPaymer - aka DopplePaymer - ransomware-as-a-service operation, which has gone relatively quiet since early May, posting no victims to its data leak site since May 6 and no leaked files since June 25. But one expert says the operation appears to have been rebranded by its operator, Evil Corp, in an attempt to avoid sanctions imposed on the crime group in December 2019 by the U.S. Treasury Department’s Office of Foreign Assets Control.

    The Babuk ransomware operation also recently appears to have altered its approach - if not splintered - following its late-April ransomware attack against the Metropolitan Police Department of Washington, D.C.

  • The Week in Ransomware - July 30th 2021 - €1 billion saved

    We also saw ransomware groups continue to innovate with LockBit 2.0 now using group policies to automate the deployment of their ransomware over a Windows domain.

    I shared what I know about the inner conflict of the Babuk ransomware gang...

  • Secure applications with Keycloak authentication tool [Ed: Is this journalism or "sales"?]

More in Tux Machines

WordPress (GPL) GPLKey and GPLPlus

  • GPLKey Offers Reliable And Affordable WordPress Themes For Businesses - Digital Journal

    Important keys for a business to be successful online is to have a professional and attractive, easy to navigate, and affordable website. The themes and plugins a business chooses are important as they directly impact its presence online. With thousands of satisfied customers, GPLKey is an online source for premium themes and plugins for WordPress websites that fit the needs of businesses looking to create a presence on the Internet. Each of the hundreds of products featured on the GPLKey.com website have a full list of features, customization tools and the included plug-ins.

  • GPLPlus Meets the WordPress Demand for Businesses Growth

    Companies around the world are increasingly realizing that they need not break the bank for a successful website. This realization has led many organizations into utilizing open-source solutions, with one of those being WordPress as a development model. All features demanded by customers are found on this software which uses an open-source license called GNU General Public License (GPL). The software industry continues to succeed in solving real world problems to individual users and customer-oriented cooperations. All the demanded features have been found to be open-source, which involves the utilization of WordPress as a development model. GPLPlus understands the fact that every web developer deserves the right website, even without breaking the bank. The company has offers WordPress users the ability to excel in their next project through perfect plugin and themes.

today's howtos

  • Bat is Like the cat Command in Linux, But Super-Charged and Written in Rust

    Bat is a cat command clone with advance syntax highlighting for a large number of programming and markup languages. Despite the title of this article, we’ll not talk about cats and bats here, but about the cat and bat commands in Linux. As you know, the cat (short for concatenate) command is a utility in Linux. One of its most commonly known usages is to print the content of a file onto the standard output stream. But given more time spent in the command line, features like syntax highlighting come in very handy.

  • How To Install pgAdmin on Debian 11 - idroot

    In this tutorial, we will show you how to install pgAdmin on Debian 11. For those of you who didn’t know, pgAdmin is a free and open-source web-based tool that provides a friendly web interface to fully manage PostgreSQL databases, and it includes several features that can help you administer and maintain databases with ease. It’s written in Python and supports many operating systems such as Linux, Windows, and macOS. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of pgAdmin on a Debian 11 (Bullseye).

  • How to configure your Raspberry Pi OS to use it for the first time - LinuxStoney

    Whether it is to set up a personal server, to play retro games, or simply out of curiosity and to learn programming, today we can all get a Raspberry Pi . This microcomputer has earned a great reputation within the IT sector thanks to its construction based on free hardware, the considerable power it offers and, above all, its price. We can install a wide variety of operating systems (especially Linux) on it. But, whatever system we install, we may have to make some configuration to adapt it to our needs. And here the problems can begin. Raspberry Pi OS is the official operating system for this microcomputer. This system is based on Debian, and it comes specially prepared and optimized to work in an optimized way on this device. However, depending on the use that we are going to give it, we may have to configure some aspect of it as soon as we start it up. In this way, we find two ways to configure this Raspberry Pi OS to adapt it to our needs.

  • rpm2cpio utility fixed

    I downloaded a Fedora rpm file, and was unable to open it. Hmmm, we had this problem ages ago, see this blog post in 2011: https://bkhome.org/archive/blog2/201106/busybox-39rpm2cpio39-fails.html And a fix for Xarchive in 2018: https://bkhome.org/news/201812/fix-rpm-extraction-in-xarchive.html EasyOS has the busybox 'rpm2cpio' applet, and that is still broken. The 'exploderpm' script doesn't seem to work either.

  • Fixing choppy video and chunky font quality in Firefox installed via Flathub in openSUSE

    f you've installed the Firefox browser using flatpak on openSUSE, you probably have noticed these two issues: - poor video quality with lags (e.g videos on Twitter) - funky font display on some pages (e.g Facebook) Firefox comes with the ffmpeg extension enabled but the libs need to be installed. At the time of writing this post, the extension for ffmpeg version 20.08 was enabled in the following file if you installed Firefox using the --user flag with Flatpak.

  • How To Install osTicket on AlmaLinux 8 - idroot

    In this tutorial, we will show you how to install osTicket on AlmaLinux 8. For those of you who didn’t know, osTicket is a free and open-source customer support ticketing system and is widely used globally. It is a simple lightweight web-based application that allows one to organize, manage and archive support requests. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the osTicket support ticketing system on an AlmaLinux 8. You can follow the same instructions for CentOS and Rocky Linux.

  • Choose Audio Devices in Ubuntu System Tray Menu via Extension | UbuntuHandbook

    For laptop and desktop PC with more than one audio input and output devices, it’s possible to switch between audio devices quickly with upper right corner system tray menu. It’s a common situation that users have more than one audio devices connected to the computer. GNOME, the default Ubuntu Desktop Environment, provides Sound settings to choose which input and/or output device to use. To make life easier, a Gnome extension is available to integrate the settings into system tray status menu under volume control slider. So users can quickly choose a speaker, HMDI, microphone or other input device via few clicks.

If you install Windows 11 on an unsupported PC, you will not get updates

You can always install Ubuntu or Linux Mint Being a Linux evangelist it would be very remiss of me not to at least mention it is an option that you have. Linux Distros like Ubuntu and Linux Mint are quite user friendly and easy to set up. It’s a lot easier to install Ubuntu on your laptop or PC than it is to install Windows. You can even install Ubuntu or Linux Mint alongside Windows and choose which OS you want to boot into during startup. I am always telling people that these days it doesn’t really matter which OS you are using as long as you can install Google Chrome. Most of the stuff we do and need is in the cloud. If you are an accountant for example you can use Sage or QuickBooks in the cloud so there is no need for Windows support. You can use Office 365 or Google Workspace and so much more. Your OS just sits behind the scenes unobtrusively facilitating your desires. There was a time when desktop apps ruled the roost and this was a big reason for you not to install Linux but those days are long gone. Ubuntu 20.04 will be supported for the next 10 years so, 2030 inenge ichipo! Ubuntu will also run much faster than Windows 11 will ever will on your old Hardware. You can do that or just keep Windows 10 which Microsoft has said they will keep supporting and updating. Read more

XWayland GLX Path Enables sRGB Support

Another item is now crossed off the XWayland TODO list with OpenGL sRGB support wired up. Merged this week into the XWayland GLX code is enabling of sRGB frame-buffer configurations when the underlying OpenGL driver support allows GL_FRAMEBUFFER_SRGB. Read more