Language Selection

English French German Italian Portuguese Spanish

Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping

Filed under
GNU
Linux

The bug in the GnuTLS library makes it trivial for attackers to bypass secure sockets layer (SSL) and Transport Layer Security (TLS) protections available on websites that depend on the open source package. Initial estimates included in Internet discussions such as this one indicate that more than 200 different operating systems or applications rely on GnuTLS to implement crucial SSL and TLS operations, but it wouldn't be surprising if the actual number is much higher. Web applications, e-mail programs, and other code that use the library are vulnerable to exploits that allow attackers monitoring connections to silently decode encrypted traffic passing between end users and servers.

Read more ►

More in Tux Machines

OpenMandriva: The Scion is ready!

Curious? Here is our tribute to our founder and the community he and others created. “The Scion” is a release dedicated to Mandrake , our ancestor, not lost but living on here. Read more

70-inch Android touchscreen targets interactive education

The CDE7060T is said to offer a Linux OS, but the datasheet more specifically notes that it runs the Linux-based Android 4.2.1 on an unnamed, dual-core Cortex-A9 system-on-chip. Also onboard are 1.5GB of RAM and 8GB of flash. An optional “slot-in” PC is available for greater computing power, says ViewSonic. Pre-installed “ViewBoard” annotation and presentation software allows multiple users to write, draw, or annotate with fingers or styluses simultaneously, says the company. Read more

OpenBSD from a veteran Linux user perspective

For the first time I installed a BSD box on a machine I control. The experience has been eye-opening, especially since I consider myself an "old-school" Linux admin, and I've felt out of place with the latest changes on the system administration. Linux is now easier to use than ever, but administration has become more difficult. There are many components, most of which are interconnected in modern ways. I'm not against progress, but I needed a bit of recycling. So instead of adapting myself to the new tools, I thought, why not look for modern tools which behave like old ones? Read more

Leftovers: KDE Software

  • How KDE VDG Is Trying To Make Open-Source Software Beautiful
    One of the most often voiced complaints about Open Source Software is that it tends to be "ugly" or otherwise aesthetically uninspired. A few years ago a few people in the KDE camp came together and created, what they hoped, would be a solution to that problem: The KDE Visual Design Group.
  • KDE Connect – Insieme, unite unite smartphone
    When I wrote my Kubuntu Vivid review, I mentioned a tool called KDE Connect, which I wasn’t quite sure what it was supposed to be doing. A bunch of you emailed me, telling me it’s a nice little applet that can keep your smartphone notifications in sync with the desktop, as well as allow you to remotely control certain parts of your KDE-flavored desktop from the smartphone.
  • Video review of KDE Plasma 5 from Nerd on the Street
  • Four years later
    At beginning of June 2011 I made my first blog post about KWin support Wayland clients featuring a screenshot of Desktop Grid effect with a Wayland window shown on each desktop.
  • "Private browsing mode" for activities
    The statistics collection feature of KActivities is slowly becoming a core part of Plasma.
  • GSoC update: ocs-server
  • Fun with onion skins
    The first new feature of the GSoC project on animation in Krita is has landed in git. Until now, I have been mostly concentrating on refactoring the core structures toward their final form, which has taken much more time than I anticipated. Fortunately, it is now mostly done, and I am getting to the point where progress is more visible.