Language Selection

English French German Italian Portuguese Spanish

Security

Tor Browser 4.0 is released

Filed under
Security
Web

This release also features an in-browser updater, and a completely reorganized bundle directory structure to make this updater possible. This means that simply extracting a 4.0 Tor Browser over a 3.6.6 Tor Browser will not work. Please also be aware that the security of the updater depends on the specific CA that issued the www.torproject.org HTTPS certificate (Digicert), and so it still must be activated manually through the Help ("?") "about browser" menu option. Very soon, we will support both strong HTTPS site-specific certificate pinning (ticket #11955) and update package signatures (ticket #13379). Until then, we do not recommend using this updater if you need stronger security and normally verify GPG signatures.

Read more

DOCKER 1.3: SIGNED IMAGES, PROCESS INJECTION, SECURITY OPTIONS, MAC SHARED DIRECTORIES

Filed under
Linux
Server
Security

First up, in this release, the Docker Engine will now automatically verify the provenance and integrity of all Official Repos using digital signatures. Official Repos are Docker images curated and optimized by the Docker community to be the best building blocks for assembling distributed applications. A valid signature provides an added level of trust by indicating that the Official Repo image has not been tampered with.

Read more

What you need to know about the SSLv3 “POODLE” flaw (CVE-2014-3566)

Filed under
Red Hat
Security

So, the bottom line is: on servers and clients, disable SSLv3 (and, of course, older). Updates to Fedora packages which make this the default will be forthcoming, but in the meantime, you can do it manually. Red Hat is working on a security blog article explaining the steps to take for different software; we’ll link to that when it becomes available.

Read more

South Korea Faces The Bill For Lock-in To Wintel

Filed under
Microsoft
Security

I expect Korea will have to redo everything and get it right this time. Let’s hope they demand GNU/Linux be used for on-line/financial transactions and to protect data but failing that let’s hope they make GNU/Linux optional and the people can decide. There’s something refreshing about a whole country aroused about insecurity with that other OS on the check-list of things to fix.

Read more

7 free tools every network needs

Filed under
OSS
Security

From device discovery to visibility into systems, networks, and traffic flows, these free open source monitoring tools have you covered

Read more

With This Tiny Box, You Can Anonymize Everything You Do Online

Filed under
OSS
Security

No tool in existence protects your anonymity on the Web better than the software Tor, which encrypts Internet traffic and bounces it through random computers around the world. But for guarding anything other than Web browsing, Tor has required a mixture of finicky technical setup and software tweaks. Now routing all your traffic through Tor may be as simple as putting a portable hardware condom on your ethernet cable.

Read more

SEANux – a version of Linux from the Syrian Electronic Army

Filed under
GNU
Linux
Security

For now, consider me skeptical of SEANux. After all, back in early 2012 the so-called AnonymousOS was released, a purported new operating system from the Anonymous collective – only to reportedly be found ridden with trojan horses.

Read more

Free Linux-Based Firewall Smoothwall Express 3.1 Is One of the Biggest Releases in Years

Filed under
GNU
Linux
Security

Smoothwall Express is a free firewall that is based on a GNU/Linux kernel that comes with an easy to use interface. The latest version available is now 3.1 and its been in the works for a long time.

Read more

BlackPhone Reviewed: Secure OS Inside a Generic Design and Not Quite Cheap

Filed under
Android
Security

“If privacy is important to you, the Blackphone is almost certainly what you’re after in a mobile device. Besides, you don’t have much choice currently. One thing I’m still coming to terms with, however, is the concept of selling peace of mind.

As Edward Snowden continues to leak information about how the NSA and other national government agencies were/are hoovering up every bit of personal data available to them, digital privacy has never been a hotter topic. With people wanting more control over how their data is handled, it was inevitable that products like the Blackphone would appear.”

Read more

Tails OS Will Keep You Anonymous Online and Offline

Filed under
Security
Debian

There are many Linux distributions available right now that claim to protect the privacy of their users, but very few actually do it properly. Tails is definitively among the top ones, if not the best. Now, a new version has been made available, but it's just an RC for an upcoming release...

Read more

Syndicate content

More in Tux Machines

today's howtos

Leftovers: Gaming

  • Dying Light Action Survival Game Coming to Steam January 27
    Dying Light, a modern first-person survival horror game set in a world hit by plague, is now available for pre-purchase on Steam and will be available for download on January 27.
  • Dying Light FPS Has Been Confirmed for Linux, Zombies Galore
    Techland is preparing to launch Dying Light, a new FPS with amazing graphics and hordes of zombies. The developer has revealed that it will also have a Linux version, right from the start.
  • Dying Light Is Now Confirmed For Linux, Bring It On Techland
    Dying Light is now confirmed for Linux thanks to the announcement from the developers on the Steam store itself. The Linux icons show up on the store pages, and the game even has a steam coming soon banner on the home-page. Time to get seriously excited.
  • Star Traders: 4X Empires Strategy Game Now On Linux
  • 5 reasons Valve's Steam Machine dream is still very alive
    Steam Machines? More like has-been machines, am I right? Actually, no: while many people are giving Valve's PC-console-hybrids the cold shoulder, this gamer reckons they'll be worth the wait. I realise that I'm part of a shrinking group still backing Valve's SteamOS-powered Linux boxes, and it's not difficult to see why the hype around them has all but evaporated. Several controller-related delays, U-turns by seemingly committed hardware partners and a lack of news from the top has made many think that Valve is blowing hot air.

Android Leftovers

Tizen Samsung Z1, made in India and soon to be available in Bangladesh

As we have reported Samsung has been sending the parts for its Samsung Z1 SM-Z130H/DS to be assembled at its Noida plant in India, which has the capacity to produce over 4 million handsets per month. The Samsung Z1 was launched in India as the first Tizen based commercial handset at a competitive price of 5,700 INR. Read more