Language Selection

English French German Italian Portuguese Spanish

Leftovers: Screenshots (LXLE, gNewSense, Debian, Zorin OS, Chakra, Toutou, and SparkyLinux)

Filed under
Linux

More in Tux Machines

Security Leftovers

  • Secure Server Deployments in Hostile Territory, Part II
    There are a few other general security practices I put in place. First, as I mentioned before, because each host has a certificate signed by an internal trusted CA for Puppet, we take advantage of those certs to require TLS for all network communications between hosts. Given that you are sharing a network with other EC2 hosts, you want to make sure nobody can read your traffic as it goes over this network. In addition, the use of TLS helps us avoid man-in-the-middle attacks.
  • Hackers Can Disable a Sniper Rifle—Or Change Its Target
    At the Black Hat hacker conference in two weeks, security researchers Runa Sandvik and Michael Auger plan to present the results of a year of work hacking a pair of $13,000 TrackingPoint self-aiming rifles. The married hacker couple have developed a set of techniques that could allow an attacker to compromise the rifle via its Wi-Fi connection and exploit vulnerabilities in its software. Their tricks can change variables in the scope’s calculations that make the rifle inexplicably miss its target, permanently disable the scope’s computer, or even prevent the gun from firing. In a demonstration for WIRED (shown in the video above), the researchers were able to dial in their changes to the scope’s targeting system so precisely that they could cause a bullet to hit a bullseye of the hacker’s choosing rather than the one chosen by the shooter.
  • Get root on an OS X 10.10 Mac: The exploit is so trivial it fits in a tweet
    Yosemite, aka version 10.10, is the latest stable release of the Mac operating system, so a lot of people are affected by this vulnerability. The security bug can be exploited by a logged-in attacker or malware on the computer to gain total unauthorized control of the Mac. It is documented here by iOS and OS X guru Stefan Esser. It's all possible thanks to an environment variable called DYLD_PRINT_TO_FILE that was added in Yosemite. It specifies where in the file system a component of the operating system called the dynamic linker can log error messages. If the environment variable is abused with a privileged program, an attacker can modify arbitrary files owned by the powerful user account root – files like the one that lists user accounts that are allowed administrator privileges.

Open-Source CMSs Appeal To Control-Oriented Media

Snubbed by local media in their infancy for being too rudimentary, news outlets are taking a growing interest in using open-source content management systems like WordPress and Drupal. Media companies’ tech execs say they like the open-source CMS platforms because the software now offers all the extras and options that managed CMS platforms do, while also allowing them more creativity and control. Read more Also: Execs from Kentico and HIPPO debate pros and cons of open source CMS Jahia Provides Open Source User Experience Platform to Samsung Subsidiaries as a Global Platform Partner

Fedora's Rawhide Kernel Adds In KDBUS Support, Ready For Testing

Lennart Poettering announced today that KDBUS is now in Rawhide. "Josh [Boyer] thankfully added it to the Rawhide kernel packages, and our systemd RPMs come with built-in support, too now. If you are running an up-to-date Rawhide system adding "kdbus=1" to your kernel command line is hence everything you need to run kdbus instead of dbus-daemon. (No additional RPMs need to be installed.) If you do, things should just work the same way as before, if we did everything right. By adding or dropping "kdbus=1" to/from the command line you can enable kdbus or revert back to dbus1 on each individual boot." Read more

Announcing the general availability of Oracle Linux 6.7

We're happy to announce the general availability of Oracle Linux 6 Update 7, the seventh update release for Oracle Linux 6. You can find the individual RPM packages on the Unbreakable Linux Network (ULN) and our public yum repository and ISO installation images are available for download from the Oracle Software Delivery Cloud. Oracle Linux 6 Update 7 ships with the following kernel packages: Unbreakable Enterprise Kernel (UEK) Release 3 (kernel-uek-3.8.13-68.3.4.el6uek) for x86-64 Unbreakable Enterprise Kernel (UEK) Release 2 (kernel-uek-2.6.39-400.250.7.el6uek) for i386 Red Hat Compatible Kernel (kernel-2.6.32-573.el6) for i386 and x86-64 Read more