Language Selection

English French German Italian Portuguese Spanish

Security

Mozilla Start Drafting Plans To Deprecate Insecure HTTP

Filed under
Moz/FF
Security

Barnes is hoping for more people to move to HTTPS by limiting new browser features from becoming available over insecure HTTP, in the name of security. He wrote in a mailing list post, "In order to encourage web developers to move from HTTP to HTTPS, I would like to propose establishing a deprecation plan for HTTP without security. Broadly speaking, this plan would entail limiting new features to secure contexts, followed by gradually removing legacy features from insecure contexts. Having an overall program for HTTP deprecation makes a clear statement to the web community that the time for plaintext is over -- it tells the world that the new web uses HTTPS, so if you want to use new things, you need to provide security."

Read more

Encryption Support For EXT4

Filed under
Linux
Google
Security

Ted published the twenty-two patches earlier this month for implementing encryption support into EXT4, complete with file-name and symlink encryption. The patches were developed by Ted Ts'o and Michael Halcrow.

Read more

Manjaro Devs Fix Embarrassing Expired SSL Certificate Problem

Filed under
Linux
Security

The Manjaro developers have finally fixed the embarrassing problem they had with an expired SSL certificate that made accessing their forums and wiki much harder.

Read more

Don’t judge the risk by the logo

Filed under
Red Hat
Security

It’s been almost a year since the OpenSSL Heartbleed vulnerability, a flaw which started a trend of the branded vulnerability, changing the way security vulnerabilities affecting open-source software are being reported and perceived. Vulnerabilities are found and fixed all the time, and just because a vulnerability gets a name and a fancy logo doesn’t mean it is of real risk to users.

Read more

Mozilla Working to Provide Tracking Protection in Firefox, How to Enable It

Filed under
Moz/FF
Security

Mozilla is working on a new feature called Tracking Protection that is helping users identify and block websites that collect personal data despite the fact that the browser has the "Do Not Track" policy enabled.

Read more

Tor 0.2.6.7 Fixes Security Issues That Could Be Used by Attackers to Crash Hidden Services and Clients

Filed under
Security

A new version of the popular Tor software that enables anonymous communication between computers around the world was released today, April 7, in order to fix two security issues discovered in the previous versions.

Read more

How Linux Australia Handled Its Recent Data Breach

Filed under
GNU
Linux
Security

In an email, Linux Australia revealed that its servers where compromised during the morning of 22 March. Over the course of a few hours, the organisation believes its databases containing conference information were dumped to an external source. A “currently unknown vulnerability” caused a buffer overflow that allowed the hacker to acquire root access.

Read more

Linux Australia server hacked, personal information may have been stolen

Filed under
Linux
Security

A public server belonging to Linux Australia, the umbrella group for Linux user groups in the country, were breached on March 22, and the personal information of members may have been stolen.

Read more

Lots of GnuPG Vulnerabilities Have Been Closed in All Ubuntu OSes

Filed under
Security
Ubuntu

Canonical has published details in a security notice about a number of GnuPG vulnerabilities that have been found and fixed in Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems.

Read more

Threat Modeling Tool Created by Mozilla Winter of Security Team

Filed under
Moz/FF
Security

A web-based threat modeling tool was developed by undergraduate students at St. Mary’s University in Nova Scotia, Canada, as part of Mozilla’s Winter of Security project in 2014.

Read more

Syndicate content

More in Tux Machines

Leftovers: Software

today's howtos

Canonical Makes It a Lot Easier for Newcomers to Discover the Ubuntu Flavours

Canonical's Michael Hall had the great pleasure of announcing that the ubuntu.com website has been redesigned to make it easier for Ubuntu newcomers to discover the flavours of the world's most popular free operating system. Read more

Leftovers: Gaming