Announcing Boltron: The Modular Server Preview

The Modularity and Server Working Groups are very excited to announce the availability of the Boltron Preview Release. Boltron is a bit of an anomaly in the Fedora world — somewhere between a Spin and a preview for the future of Fedora Server Edition. You can find it, warts (known issues) and all, by following the directions below to grab a copy and try it out. Fedora’s Modularity Working Group (and others) have been working for a while on a Fedora Objective. The Objective is generically called “Modularity,” and its crux is to allow users to safely access the right versions of what they want. However, there are two major aspects of “accessing the right versions.”

What you need to know about hybrid cloud

At the center of hybrid cloud solutions sits open source software, such as OpenStack, that deploys and manages large networks of virtual machines. Since its initial release in October 2010, OpenStack has been thriving globally. Some of its integrated projects and tools handle core cloud computing services, such as compute, networking, storage, and identity, while dozens of other projects can be bundled together with OpenStack to create unique and deployable hybrid cloud solutions.

GoDaddy Drops Curtain on Its Cloud Business… Again

Launched only a year ago, Cloud Servers was never intended to go after the big guys — AWS, Azure, GCP, and the like — and had no dreams of competing for well-heeled, big-business customers. Instead, it was hoping to position itself as a gateway to the cloud for small and medium sized businesses wanting to test the waters. In other words, it was hoping to take on DigitalOcean and Linode. It was also undoubtedly hoping to leverage the substantial base of its hosting business and convince some of those customers that their lives would only improve if they made a move to the cloud.

AMD Secure Encrypted Virtualization Updated For Linux

While AMD's new Epyc processors have a new "Secure Encrypted Virtualization" feature, the support isn't yet mainlined in the Linux kernel but is getting closer.

Nvidia 384.59 Linux Graphics Driver Adds Support for GeForce GT 1030 GPUs, More

Nvidia on Monday announced the release of a new long-lived graphics driver for Linux, FreeBSD, and Solaris-based operating systems, versioned 384.59, adding support for new GPUs, along with a bunch of bug fixes and improvements. Nvidia 384.59 is now considered the most advanced version of the proprietary graphics driver for GNU/Linux, FreeBSD, and Solaris platforms, which users should install on their personal computers running a supported Nvidia GPU immediately after reading this article.

18 year old guy arrested for reporting a shamefully stupid bug in the new Budapest e-Ticket system

 

This last one was the one found by the 18 year old gentleman I started my story with. According to him, he doesn't even know how to program yet (he'll start the university this autumn). He just used the developer tools in the browser, that everybody has access to, saw that the price was being sent back to the server when he was about to make a purchase, and tried if he could change it. A monthly pass costs 9500HUF (about 30EUR) and he modified the price to 50HUF. When he got the confirmation that it worked and was able to see his pass in the app, he immediately emailed the BKK (the Transport Authority) that there was a serious problem. He got an email that his pass was invalidated, but otherwise they didn't get back to him. Instead, when it got leaked out to the press, and in a few hours everyone were talking about the above issues (not just this one), BKK together with T-Sytems Hungary started to what I would call massively covering their arses.  

How to use a password manager (and why you really should)

 

Password managers remove both of these problems by generating and storing complex passwords for you. The password manager lives in your browser and acts a digital gatekeeper, filling in your login info when you need to get on a certain site. You just have to remember one (very secure!) master password for the manager itself, and everything else is taken care of for you. (For a quick introduction on creating a secure but memorable master password, check out this article.)  

US local govts still using Kaspersky software despite federal ban

 

US local government agencies across the country are continuing to use software from Kaspersky Lab even though the federal government removed the company from a list of approved software suppliers for two government-wide purchasing contracts that are used to buy technology services.  

“Perverse” malware infecting hundreds of Macs remained undetected for years

Besides the means of infection being unknown, the exact purpose of the malware is also unclear. Wardle said he found no evidence the malware can be used to install ransomware or collect banking credentials. That largely removes the possibility that Fruitfly developers were motivated by financial profit. At the same time, the concentration of home users largely rules out chances the malware was designed by state-sponsored hackers to spy on targets.

Exclusive: WHISTL Labs will be Cyber Range for Medical Devices

 

The facilities, dubbed WHISTL, will adopt a model akin to the Underwriters Laboratory, which tests electrical devices, but will focus on issues related to cyber security and privacy, helping medical device makers “address the public health challenges” created by connected health devices and complex, connected healthcare environments, according to a statement by The Medical Device Innovation, Safety and Security Consortium (MDISS).

Smart fridges and TVs should carry security rating, police chief says

 

Barton, the national policing lead for crime operations, proposed the idea as part of efforts to protect households from fraudsters and hackers in the era of the Internet of Things, where otherwise “dumb” devices can be put online and be interconnected for automation and smart appliance activities.

'Devil's Ivy' Is Another Wake-Up Call for IoT Security

August 2017 Elections – Nomination period open

FESCo, Council and FAmSCo elections are now open and we’re looking for new candidates. If you are interested in these roles, please add yourself to the lists of nominees before 23:59:59 UTC on July 31st, 2017! If you wish to nominate someone else, please consult with that person ahead of time. If you know someone who would be a good candidate, now is a great time to make sure they’re thinking about it.

rawhide notes from the trail, the 2017-07-24 edition

Greetings! Once again it’s been a long spell since one of these posts, so lets jump right in and rope that calf. Rawhide has been marching along to the next branching point, when Fedora 27 will branch off for it’s release. There’s a mass rebuild that should be happening very very soon now, there was a bit of delay while tools were all sorted out. Look for a very very big rawhide update soon once that mass rebuild finishes.

What Story Are The Numbers Telling For Red Hat, Inc. (NYSE:RHT)

Is Red Hat Inc (RHT) Headed For a Near-Term Reversal?