Back in May was the big "VENOM" security vulnerability affect QEMU whereby VM security could be escaped through QEMU's virtual floppy disk drive. In June was a PCNET controller buffer overflow allowing a guest to escape to have host access. Today there's a similar security vulnerability going public about its virtual CD-ROM drive.
Rather than fancy zero-day exploits, or cutting-edge malware, what you mostly need to worry about when it comes to security is using strong, unique passwords on all the sites and services you visit.
You know that. But what’s crazy is that, in 2015, some websites are intentionally disabling a feature that would allow you to use stronger passwords more easily—and many are doing so because they wrongly argue it makes you safer.
Last week I argued that requiring backdoors in strong encryption would result in the effective end of encryption and provide a veritable buffet of sensitive data to both the government and those with malicious intents. Encryption with backdoors is not encryption at all.
Regular Naked Security readers will know that some security topics cause more friction that others.
Lately, artificial intelligence has provoked its fair share of excitement.
Surveillance and privacy are other topics that draw out some very varied viewpoints.
Canonical Says Ubuntu-Based Docker Images Are Not a Copyright Violation
Canonical said through the voice of Dustin Kirkland that you can use Ubuntu with Docker without violating any copyright policy, contradicting what Matthew Garrett said in a blog post just a week ago.
In 2004, whilst at Netsight, I started looking at using OpenBSD for routing. We were using big Cisco 5505 switches with Route Switch Modules in to provide routing. The problem was, they soon became quite slow. They were great if you wanted to do very simple routing, and they could do Layer 3 switching in silicon on the linecards. But as soon as you started to do access lists then they had to route the packets on the main CPU. Not only that, but Cisco’s ACL syntax quickly became very cumbersome as you had no way of doing any kind of macros or variables in the language.
The Solus operating system is getting closer to a stable release and its developers are showing off some of the capabilities of the distro, including the boot time, which has got to be the most impressive result out there.