Linus Torvalds Debuts First Linux 4 Release Candidate
Linux Today - Security
Blackphone unveils a new phone and tablet running secure, encrypted Android
(Mar 03, 2015, 09:00) (1 talkbacks)
The Verge: Blackphone's secure OS is forked off of Android, which is designed to protect metadata and provide end-to-end encryption throughout.
OpenBSD Sponsors Work For Better Browser Security
(Mar 03, 2015, 06:00) (1 talkbacks)
Phoronix: The OpenBSD Foundation is supporting work to adapt at least one web browser's JIT engine to support OpenBSD's "Write Xor Execute" policy for system memory.
Installation and Usage Guide for CSF firewall
(Mar 02, 2015, 09:00) (0 talkbacks)
HowToForge: CSF stands for Configserver security and firewall.
Certificate Authority Security Council Moves Web Security Forward
(Mar 01, 2015, 22:00) (0 talkbacks)
eWEEK: The CASC was formed two years ago by the major SSL CAs. Here's a look at what the council is doing now and what's next for digital certificate security.
Critical remote code execution flaw patched in Samba
(Feb 25, 2015, 04:00) (0 talkbacks)
ITworld: Security researchers are urging users to install new Samba security updates in order to address a critical vulnerability that allows attackers to execute arbitrary code with root privileges.
Firefox 36 Gains HTTP/2 Support, Fixes Critical Vulnerabilities
(Feb 24, 2015, 19:00) (0 talkbacks)
eWEEK: Mozilla's Firefox 36 debuts with support for HTTP/2 protocol as well as 17 security advisories for vulnerabilities that have been patched in the open-source browser.
Yahoo exec goes mano a mano with NSA director over crypto backdoors
(Feb 24, 2015, 12:00) (0 talkbacks)
ars: Yahoo exec goes mano a mano with NSA director over crypto backdoors and gets nothing
Samba 4.1.17 Security Release Now Available for Download
(Feb 23, 2015, 14:00) (0 talkbacks)
softpedia: Samba 4.1.17 is a security release that addresses the CVE-2015-0240 security vulnerability related to an unexpected code execution in Samba daemon (smbd).
Linux clockpocalypse in 2038 is looming and there's no 'serious plan'
(Feb 22, 2015, 22:00) (3 talkbacks)
El Reg: Worry now, because 23 years from now will be TOO LATE
Why All Linux (Security) Bugs Aren't Shallow
(Feb 20, 2015, 19:00) (1 talkbacks)
eSecurityPlanet: In 2014 the open source community faced more security challenges than it has at any other point in recent memory.
PHP 5.6.6 Patches for GHOST Vulnerability
(Feb 20, 2015, 09:00) (0 talkbacks)
InternetNews.com: On February 19, PHP developers released PHP 5.6.6 providing a mitigation for CVE-2015-0235 - aka - GHOST
How to Setup Failover and Load Balancing in PFSense
(Feb 18, 2015, 08:00) (0 talkbacks)
tecmint: In this setup, we will see how to setup Failover and Load balancing to enable PFSense to load balance traffic from your LAN network to multiple WANs
Keeping the bad guys out with fail2ban
(Feb 17, 2015, 23:00) (0 talkbacks)
ITworld: If you're looking for an easy (and free) way to make your Linux systems more resistant to attack, you might want to take a look at fail2ban.
Real-Time Rogue Wireless Access Point Detection with the Raspberry Pi
(Feb 17, 2015, 14:00) (0 talkbacks)
LinuxJournal: A rogue WAP is one that the company hasn't approved to be there.
End of the m0n0wall project
(Feb 16, 2015, 15:00) (0 talkbacks)
The m0n0wall project has officially ended. No development will be done anymore, and there will be no further releases.
How to install and use Linux Malware Detect (LMD) with ClamAV as Antivirus Engine
(Feb 12, 2015, 14:00) (0 talkbacks)
tecmint: Malware, or malicious software, is the designation given to any program that aims at disrupting the normal operation of a computing system
Installing proprietary NVIDIA driver in new Kali Linux v1.1.0
(Feb 12, 2015, 12:00) (5 talkbacks)
blackmoreops: By default Kali Linux installs open source NVIDIA driver nouveau which works great if you just want a display.
Build your own combined OpenVPN/WiKID server for a VPN with built-in two-factor authentication using Packer.
(Feb 12, 2015, 09:00) (0 talkbacks)
HowToForge: Packer allows us to create VMware, VirtualBox, EC2, GCE, Docker, etc images using code.
How Secure are your Passwords?
(Feb 12, 2015, 07:00) (0 talkbacks)
LinuxVoice: There are a few password-cracking tools available for Linux, but we’re going to use John The Ripper, because it’s open source and is in most distros’ repositories (usually, the package is just called john).
Apache Tomcat at risk from Request Smuggling Flaw
(Feb 11, 2015, 11:00) (0 talkbacks)
InternetNews: Apache's advisory notes that, the issue was identified by the Tomcat security team on 30 May 2014 and made public on 9 February 2015.
Linux Foundation's CII Continues to Fund Open-Source Security Efforts
(Feb 10, 2015, 11:00) (0 talkbacks)
eWEEK: In terms of where the CII is allocating its money, Zemlin said that it has committed roughly half of the money it has raised so far to a variety of projects and efforts over a three-year period.
Protect Apache Against Brute Force or DDoS Attacks Using Mod_Security and Mod_evasive Modules
(Feb 09, 2015, 05:00) (0 talkbacks)
Two things I've learned from using Tor Browser
(Feb 07, 2015, 10:00) (0 talkbacks)
LinuxBSDos: Some website's will attempt to extract HTML5 canvas image data that can be used to uniquely identify my computer ??? even if they are disallowed from setting cookies.
The World’s Email Encryption Software Relies on One Guy, Who is Going Broke
(Feb 06, 2015, 06:00) (0 talkbacks)
ProPublica: Werner Koch’s code powers the email encryption programs around the world. If only somebody would pay him for the work.
How To Scan And Check A WordPress Website Security Using WPScan, Nmap, And Nikto
(Feb 05, 2015, 23:00) (1 talkbacks)
Unixmen: WPScan is a black box WordPress Security Scanner written in Ruby which attempts to find known security weaknesses within WordPress installations
Three Adware-Infected Android Apps Suspended From Google Play
(Feb 05, 2015, 10:00) (1 talkbacks)
eWEEK: The fact that potentially malicious apps made it into the Google Play store means that the apps were able to get past Google's own security screening process.
Don't Want systemd? Try GNU Hurd, But It Still Lacks 64-bit, Audio & USB
(Feb 04, 2015, 23:00) (5 talkbacks)
Phoronix: While it doesn't get talked about too much these days, GNU Hurd remains under active development
BackBox Linux 4.1 Keeps Security Researchers Anonymous
(Feb 04, 2015, 20:00) (0 talkbacks)
eWEEK: BackBox includes a command line interface wizard that provides users with options for enabling anonymous network traffic over Tor (The Onion Router), as well as masking a user's hostname. In this slide show, eWEEK takes a look at some of the features in the BackBox Linux 4.1 release.