Language Selection

English French German Italian Portuguese Spanish

Security

Open source encryption? Now Netherlands votes to help fund security projects

Filed under
OSS
Security

In what some might see as swimming against the political mainstream, the Netherlands parliament has just decided to back open-source web security with hard cash.

Read more

Security Leftovers

Filed under
Security

Security Leftovers

Filed under
Security

Security Leftovers

Filed under
Security

Security More Leftovers

Filed under
Security

Security Leftovers

Filed under
Security
  • Elasticsearch Servers Targeted by Linux-Based Botnet Operators

    A honeypot experiment ran by AlientVault has shown that the recent security vulnerabilities discovered in Elasticsearch servers over the summer are now actively being used by botnet operators.

  • Researchers Found Another Malware Targeting Linux Users

    Many analysts believe Rebooke is a harmless Trojan which is true, but its simple design allows the attacker to maneuver the type of attacks which can allow them to deliver powerful payloads on the systems.

  • Let’s Encrypt May Improve Security for Regular People More Than Any Other Initiative This Decade

    Secure websites have always been standard for ecommerce companies like Amazon or Shopify, and in recent years companies that handle private communications like Google and Facebook have invested millions of dollars in enabling encryption for all users. But what about everyone else?

  • Public Beta: December 3, 2015

    Let’s Encrypt will enter Public Beta on December 3, 2015. Once we’ve entered Public Beta our systems will be open to anyone who would like to request a certificate. There will no longer be a requirement to sign up and wait for an invitation.

    Our Limited Beta started on September 12, 2015. We’ve issued over 11,000 certificates since then, and this operational experience has given us confidence that our systems are ready for an open Public Beta.

    It’s time for the Web to take a big step forward in terms of security and privacy. We want to see HTTPS become the default. Let’s Encrypt was built to enable that by making it as easy as possible to get and manage certificates.

  • Let’s encrypt automation on Debian
  • DHS to Silicon Valley: Tell us how to secure this “Internet of Things”

    The US Department of Homeland Security has announced that its Silicon Valley Office (SVO)—the agency's liaison point with the technology industry—will hold an event on December 10 to kick off a recruiting drive for startups and "non-traditional small businesses" interested in latching onto government funding. The Industry Day, being held at the Menlo Park, California, offices of SRI International, will be focused on the current leading source of worry for DHS officials: the "Internet of Things" (IoT).

  • Millions of smart TVs, phones and routers at risk from old vulnerability

    There's growing concern over how manufacturers of devices such as routers and smart TVs deal with security vulnerabilities that emerge in their products. Their patching regimes are not nearly as rigorous as those from major software manufacturers, which could expose consumers to attacks as the products age.

LibreOffice 5.1 Up to Beta State, the Hunting Session Squashes Nearly 400 Bugs

Filed under
LibO
Security

The first Beta build of the upcoming LibreOffice 5.1 open-source and cross-platform office suite was silently released at the end of November 2015 for all supported operating systems, including GNU/Linux, Mac OS X, and Microsoft Windows.

Read more

Linux Users Targeted by New Rekoobe Trojan

Filed under
Linux
Security

Linux users are about to get a nasty surprise for Christmas in the form of a new trojan targeting the Linux operating system, discovered by Dr.Web, a Russian-based antivirus maker, and named Rekoobe (or its more technical name: Linux.Rekoobe.1).

Read more

Entropy drought hits Raspberry Pi harvests, weakens SSH security

Filed under
Security

The November 2015 release of Raspbian does not use a hardware random number generator by default, according to a bug report posted to the Pi forums. Ideally, this generator should pour unpredictable numbers into a so-called entropy pool from which cryptographically secure numbers can be obtained – but this doesn't happen, and so the operating system's algorithms end up producing rather predictable "random" numbers.

Read more

Qubes OS 3.0 (also KaOS 2015.10 and Plasma on Wayland and NetBSD 7.0)

Filed under
GNU
Linux
Reviews
Security

I am sorry to say I have tried each major release of Qubes OS released to date and, so far, none has installed successfully for me. I admire the goal of the Qubes project, making it easy for users to isolate separate tasks in order to improve security. I am of the opinion the concept of a user (and a user's processes) having full access to everything in a user's account raises security concerns. I would like to see more effort put into projects like Qubes and AppArmor in order to make it easier for a user to compartmentalize their digital life.

Read more

Syndicate content

More in Tux Machines

Raspberry Pi analog input board has weather station option

RasPi.TV has Kickstartered a $12 “RasPiO Analog Zero” Raspberry Pi add-on board the size of an Raspberry Pi Zero. It offers eight 10-bit analog inputs. The RasPiO Analog Zero has surpassed its Kickstarter goals, and is available through May 31 starting at 8 Pounds ($12). Designed for reading up to eight analog sensors simultaneously on a Raspberry Pi, the add-on board is matched to the size of the 65 x 30mm Raspberry Pi Zero. However, it plugs into any Pi with a 40-pin expansion connector, and can work with older 26-pin Pi models with the help of an adapter. Read more

GhostBSD 10.3 Development Continues, Now with UEFI Support for 64-bit Platforms

Today, May 25, 2016, GhostBSD maintainer Eric Turgeon announced the general availability of the second Alpha release of the upcoming GhostBSD 10.3 operating system. Read more

Samsung still undecided on their Android Wear future

Yesterday the Internet lit up like a Christmas tree with the news that Samsung was no longer going to use Android Wear for any of its Smartwatches, but it seems that might not be quite the case. The report from Fast Company cited some Samsung executives confirming that Samsung was not looking into developing any further Android Wear products. Now, In a statement provided to the Engadget website Samsung states: “We disagree with Fast Company’s interpretation. Samsung has not made any announcement concerning Android Wear and we have not changed our commitment to any of our platforms.” Read more

Meizu Pro 5 Ubuntu Edition review

The Meizu Pro 5 is the latest flagship smartphone to run on Canonical’s Ubuntu operating system. Ubuntu is designed to work across all device types – including mobile, tablets, convertibles and desktops – using a common core code. This is similar to Microsoft Windows 10 Mobile. However, unlike Microsoft’s code, Ubuntu is totally open source and has largely been developed and improved by the desktop OS’s millions-strong user base. This means the OS is capable of evolving and changing at a great pace and has update cycles that would make most sysadmins weep. Read more