Language Selection

English French German Italian Portuguese Spanish

Security

Snowden's favourite Linux - Tails - rushes sec-fix version to market

Filed under
GNU
Linux
Security
Debian

The developers want to kill off the previous version, Tails 1.2.3, as soon as possible, with a list of 14 security issues covering everything from the Tor browser and its network security services (NSS) through to a sudo privilege escalation bug.

Read more

Tell Lenovo: respect user freedom and prevent future Superfishes

Filed under
GNU
Security

Security experts have discovered a highly threatening vulnerability in software preinstalled on some Windows computers manufactured by Lenovo through January 2015. Extreme negligence on the part of Lenovo and unscrupulous programming by its adware partner Superfish seem to have caused the vulnerability.

Read more

5 ethical open source hacking tools for business

Filed under
OSS
Security

Many businesses routinely employ "ethical" hackers as a means of testing whether their systems are secure, paying the tech-savvy to break into their computers in what is known as penetration testing, or pen testing.

Read more

Critical 0-days in open source? The problem isn't code, it's CASH

Filed under
OSS
Security

Linux Foundation Executive Director Jim Zemlin thinks the information security world needs fewer surgeons and more personal trainers, and he's putting his organization's money where his mouth is.

Speaking at this year's Linux Foundation Collaboration Summit, an invite-only event taking place this week in Santa Rosa, California, Zemlin took a break from his customary Linux and open source cheerleading to stress that the open source community needs to do more to address security.

Read more

Hostkey rotation, redux

Filed under
Security
BSD

A couple of weeks ago I described the host key rotation support forthcoming in OpenSSH 6.8. Almost immediately after smugly declaring "mission accomplished", the bug reports started rolling in. First Mike Larkin noticed an interaction with ssh's CheckHostIP option that would cause host key warnings, then Theo de Raadt complained about the new code unnecessarily rewriting known_hosts when no changes needed to be made, finally Philipp Kern and Jann Horn pointed out a way for a hostile server to abuse the extension.

Read more

Multiple PostgreSQL Vulnerabilities Corrected in All Supported Ubuntu OSes

Filed under
Security
Ubuntu

Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems have been updated in order to fix a number of PostgreSQL vulnerabilities discovered to affect them.

Read more

End of the m0n0wall project

Filed under
Security
BSD

on this day 12 years ago, I have released the first version of m0n0wall to the public. In theory, one could still run that version - pb1 it was called - on a suitably old PC and use it to control the Internet access of a small LAN (not that it would be recommended security-wise). However, the world keeps turning, and while m0n0wall has made an effort to keep up, there are now better solutions available and under active development.

Read more

NSA approves Samsung and Boeing mobile devices for employee use

Filed under
Android
Security

Samsung’s products include the Galaxy S4/S5, Galaxy S5 with KNOX, Galaxy Note 3, Galaxy Note 10.1 2014 Edition, Galaxy Note 10.1 2014 Edition with KNOX 2, Galaxy Note Edge with KNOX 2, Galaxy Tab S 8.4 and 10.5 LTE with KNOX 2, and the Galaxy Alpha with KNOX 2. For Samsung, Knox provides the added security features key to making the grade in the CSfC program.

Read more

Tails 1.3 RC1 Out Now, Edward Snowden’s Favorite Incognito Live CD

Filed under
Security

The first Release Candidate (RC) version of the forthcoming Tails 1.3 amnesic incognito live system has been officially released for testing, bringing three major new features and four minor improvements that are described for your reading pleasure in the next paragraphs.

Read more

The Open-Source Question

Filed under
OSS
Security

You’d be forgiven for thinking that the tech world is a loathsome hotbed of rapacious venture capitalists, airheaded trend-riders, and publicity hounds. That’s the image presented by much of the tech press, which prizes stories about the Montgomery Burnses of the tech world over ones about its more idealistic denizens.

Read more

Syndicate content

More in Tux Machines

Korora 21

My install went quite well, I had no problems and the install itself was relatively speedy. Bear in mind, however, that I have used the Anaconda installer often in the past. So I’m quite familiar with how it is laid out and what it has to offer. Use the Fedora install guide for Anaconda I linked to above if you’re new to it as it might save you some time when installing Korora 21. Read more

How to run Linux and Chrome OS on your Chromebook

Chromebooks are pretty darn handy. Even some hardcore Windows users now acknowledge that a Chromebook might be just what you need for work. But, as great as Chromebooks are, and as much progress as Google has made in getting "Web-only" apps such as Google Docs to work offline, there are still times that you want an application that's only available off-line such as the LibreOffice office suite or the GIMP photo editor. For those times, it's darn handy to be able to run a Linux desktop on a Chromebook. Read more

Developing Linux Is Essential To Intel's Success

The dominant position of Intel in the server processor market is likely helped by the company's consistent strong support for Linux. Based on the W3Techs chart below, Linux is almost as popular as Windows-based servers are. Read more