Language Selection

English French German Italian Portuguese Spanish

Security

Tor Browser 4.5 is released

Filed under
OSS
Security

The Tor Browser Team is proud to announce the first stable release in the 4.5 series. This release is available from the Tor Browser Project page and also from our distribution directory.
The 4.5 series provides significant usability, security, and privacy enhancements over the 4.0 series. Because these changes are significant, we will be delaying the automatic update of 4.0 users to the 4.5 series for one week.

Read more

Can funding open source bug bounties save Europe from mass-surveillance?

Filed under
OSS
Security

The report also suggests promoting open-source software as a way to build resilience to surveillance, which could be achieved by funding audits of important open-source software. Among several products it highlights is disk encryption software, TrueCrypt, which was recently subjected to a crowd-funded audit that was able to rule out the existence of NSA backdoors in the product.

“TrueCrypt is a typical example of a problem of the commons: worldwide use of software package was probably dependent on two or three developers,” the study notes to highlight why funding open source projects may be valuable.

Read more

LibreOffice Vulnerabilities Closed in Ubuntu 14.10, Ubuntu 14.04, and Ubuntu 12.04

Filed under
LibO
Security
Ubuntu

Canonical revealed details about a number of LibreOffice vulnerabilities that have been found and fixed in Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS, which also upgrades the office suite.

Read more

The Turing Phone Is Super Durable and Ultra Secure

Filed under
Android
Security

The device also sports a 13MP/8MP camera combo, 64GB / 128GB of internal storage and runs Android 5.0 Lollipop out of the box.

Read more

European Union Should Finance Key Open Source Projects, Says "Mass Surveillance" Study

Filed under
OSS
Security

According to a new study that was discussed today, April 23, in a committee meeting at the European Parliament in Brussels, a group of IT security experts think that the European Union should finance key open source projects that strengthen privacy and security, and configure certification schemes for fundamental open source tools.

Read more

Qubes 3.0-rc1 ISO and roadmap for 2015

Filed under
GNU
Linux
Security

Finally, we're releasing the first installable ISO for Qubes 3.0, the Release Candidate 1 (3.0-rc1)!

Read more

IPFire 2.17 Core 89 Linux Firewall Distribution Brings Numerous Improvements

Filed under
Linux
Security

On April 21, Michael Tremer announced that a new maintenance release for IPFire, a Linux distribution that can be used by beginning and experienced system administrators alike to deploy a firewall, proxy server, or VPN gateway on their infrastructure without too much hassle, is available for download.

Read more

Drupageddon: SQL Injection, Database Abstraction and Hundreds of Thousands of Web Sites

Filed under
Drupal
Security

On October 29, 2014, the Drupal Security Team released advisory identifier DRUPAL-PSA-2014-003. This advisory informed administrators of Drupal-based Web sites that all Drupal-based Web sites utilizing vulnerable versions of Drupal should be considered compromised if they were not patched/upgraded before 2300 UTC on October 15, 2014 (seven hours following the initial announcement of the vulnerability in SA-CORE-2014-005).

In the case of the Drupageddon vulnerability, the database abstraction layer provided by Drupal included a function called expandArguments that was used in order to expand arrays that provide arguments to SQL queries utilized in supporting the Drupal installation. Due to the way this function was written, supplying an array with keys (rather than an array with no keys) as input to the function could be used in order to perform an SQL injection attack.

Read more

This open-source personal crypto-key vault wants two things: To make the web safer ... and your donations

Filed under
OSS
Security

An open-source hardware project aimed at making the internet "a little bit safer" needs an influx of cash to continue its work.

The Cryptech effort was created following revelations from NSA whistleblower Edward Snowden that the US government and its pals are exploiting standards and weak crypto algorithms to gain access to citizens' private correspondence and documents.

Read more

Mozilla Start Drafting Plans To Deprecate Insecure HTTP

Filed under
Moz/FF
Security

Barnes is hoping for more people to move to HTTPS by limiting new browser features from becoming available over insecure HTTP, in the name of security. He wrote in a mailing list post, "In order to encourage web developers to move from HTTP to HTTPS, I would like to propose establishing a deprecation plan for HTTP without security. Broadly speaking, this plan would entail limiting new features to secure contexts, followed by gradually removing legacy features from insecure contexts. Having an overall program for HTTP deprecation makes a clear statement to the web community that the time for plaintext is over -- it tells the world that the new web uses HTTPS, so if you want to use new things, you need to provide security."

Read more

Syndicate content

More in Tux Machines

Latest Ubuntu Touch SDK Updates Focus on Convergence Features for OTA-6

On the last day of July 2015, Canonical's Zoltán Balogh posted an important email on the Ubuntu Touch mailing list, informing us all about the work done lately on the Ubuntu SDK (Software Development Kit) software. Read more

Wifislax 4.11.1 Linux Distro Arrives with Linux Kernel 4.1.3 LTS, Xfce 4.12.3

The developers of the popular Wifislax Linux distribution based on the well-known Slackware operating system and built around the KDE and Xfce desktop environments announced the release of Wifislax 4.11.1. Read more

5 Best Linux Desktop Environments With Pros & Cons


Picture

If you are new to Linux then I'm sure you are giving up lots of time choosing Desktop Environment of your Linux Distribution. You are probably thinking to give a try to each one of them but that's very time consuming. Edit - There are other good DEs also That's why I'm reviewing the 5 Best Linux Desktop Environments with the pros & cons. The article gives you what you should know for choosing a DE. So let's get started!

Redis open source DBMS overview

Redis runs on Linux. Although the Redis project doesn't directly support Windows, Microsoft Open Technologies develops and maintains a Windows port targeting Win64. The Redis open source DBMS is available as a BSD license. The Redis community offers support through the official mailing list as well as #redis on Freenode. Commercial support is available through Pivotal, the official sponsor of Redis. Pivotal offers two levels of professional support. Read more