Security Leftovers
-
Thursday's security advisories
-
High-severity bug in OpenSSL allows attackers to decrypt HTTPS traffic
Maintainers of the OpenSSL cryptographic code library have fixed a high-severity vulnerability that made it possible for attackers to obtain the key that decrypts communications secured in HTTPS and other transport layer security channels.
-
OpenSSL Key Recovery Attack on DH small subgroups (CVE-2016-0701)
The OpenSSL 1.0.2 releases suffer from a Key Recovery Attack on DH small subgroups. This issue got assigned CVE-2016-0701 with a severity of High and OpenSSL 1.0.2 users should upgrade to 1.0.2f. If an application is using DH configured with parameters based on primes that are not "safe" or not Lim-Lee (as the one in RFC 5114) and either Static DH ciphersuites are used or DHE ciphersuites with the default OpenSSL configuration (in particular SSL_OP_SINGLE_DH_USE is not set) then is vulnerable to this attack. It is believed that many popular applications (e.g. Apache mod_ssl) do set the SSL_OP_SINGLE_DH_USE option and would therefore not be at risk (for DHE ciphersuites), they still might be for Static DH ciphersuites.
-
LibreSSL 2.2.5 and 2.1.9 released
We have released LibreSSL 2.2.5 and 2.1.9, which will be arriving in the LibreSSL directory of your local OpenBSD mirror soon.
-
Anonymous Strikes Again- Massive DDoS Attack Brings Down 20 Thai Prison Sites
-
Anonymous-linked hackers bring down Thai prison websites
-
Hackers Target Thai Prison Websites in Latest Retaliation for Koh Tao Convictions
-
Thailand murders: Anonymous wages war on Thai government after Burmese migrants given death sentence for killing Brit backpackers
-
Anonymous hackers bring down 20 Thai Prison websites in protest of death sentence to 2 British tourists
-
Anonymous-linked hackers bring down Thai prison websites
-
Anonymous Takes Down 20 Thai Prison Websites
-
Thai jail websites hacked over Myanmar death sentences
-
Anonymous Hacker Group Attacks Twenty Thai Prison Websites In Protest Of Koh Tao Ruling
-
Websites of 20 Thai Prisons 'Break' Due to Anonymous Hacktivism
- Login or register to post comments
- Printer-friendly version
- 1298 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Recent comments
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago