Hi, to keep things short, I don't want the government or some other dickhead snooping around my phone. I also want to use Whatsapp on the phone. These are literally my only requirements.
I thought about buying a used Nexus 5 and install the UBports Ubuntu Touch on it. Now the main question - android apps do work on that phone, so rootkits will probably too? Is it even worth the hassle to switch considering the Android itself at least is "just" open door and has decent rights management?submitted by /u/munich_man
- Security updates for Friday
[Older] Microsoft Delays February Patch Tuesday Updates Until Next Month
It was created by Microsoft as a way to have a standard delivery date/schedule for updates that were being provided for the companies software. This allowed a lot of stability for users and IT Pros so they could be prepared for the monthly distribution oof the updates.
Well this month Microsoft has hit a snag with their monthly Patch Tuesday.
Watershed SHA1 collision just broke the WebKit repository, others may follow
The bug resides in Apache SVN, an open source version control system that WebKit and other large software development organizations use to keep track of code submitted by individual members. Often abbreviated as SVN, Subversion uses SHA1 to track and merge duplicate files. Somehow, SVN systems can experience a severe glitch when they encounter the two PDF files published Thursday, proving that real-world collisions on SHA1 are now practical.
Cloudflare Reverse Proxies are Dumping Uninitialized Memory
Thanks to Josh Triplett for sending us this Google Project Zero report about a dump of unitialized memory caused by Cloudflare's reverse proxies. "A while later, we figured out how to reproduce the problem. It looked like that if an html page hosted behind cloudflare had a specific combination of unbalanced tags, the proxy would intersperse pages of uninitialized memory into the output (kinda like heartbleed, but cloudflare specific and worse for reasons I'll explain later). My working theory was that this was related to their "ScrapeShield" feature which parses and obfuscates html - but because reverse proxies are shared between customers, it would affect *all* Cloudflare customers. We fetched a few live samples, and we observed encryption keys, cookies, passwords, chunks of POST data and even HTTPS requests for other major cloudflare-hosted sites from other users. Once we understood what we were seeing and the implications, we immediately stopped and contacted cloudflare security. "
Secure your system with SELinux
SELinux is well known as the most sophisticated Linux Mandatory Access Control (MAC) System. If you install any Fedora or Redhat operating System it is enabled by default and running in enforcing mode. So far so good.
- Android device updates: Sprint, T-Mobile Galaxy S7 and S7 Edge make the leap to Nougat
- Texting on Android will soon get a lot better
- Google Allo Web Client Coming Soon; Messenger Renamed to Android Messages
- Google takes on Apple iMessage with enhanced SMS for Android
- PSA: Wells Fargo cards now work with Android Pay on Android Wear
- Motorola DROID Turbo 2 receives OTA update to Android 7.0
- Android 7.1.2 Developer Preview rolling out to the Nexus 6P without fingerprint gestures
One of two Things have happened here 1) either they know nothing and are just trolling everyone 2) they are extraordinarily good at linux.
In the above article, TR states that Arch linux is the easiest to Install.
Okay, fine. Their are third party "installer scripts" the provide automated functionality to install arch Linux. BUT they never worked for me, some lack proper efi system configuration and some lack the ability to install the OS on anything except /dev/sdx, like /dev/mmcblk0 etc.
For those who don't know, I'd recommend reading the official arch linux installation documentation.
The only this automated about this is the package installation. This is mostly a manual and a very laborious process.
Last time I did this it took me almost and hour to complete it.
So I guess someone should make TR install arch the way it's meant to be.submitted by /u/ric96
I was trying to get Minecraft to work with Steam, and now none of my .jar files will open on double click, so I need to use the terminal.
I tried making a .desktop file, putting the path in on steam, and downloading OpenJDK, and when none of that worked, I also discovered that my .jar files won't launch. I have both Oracle Java and OpenJDK, and no matter which one I set to open .jar files, it doesn't open.submitted by /u/Duder963