Language Selection

English French German Italian Portuguese Spanish

Linux Today

Syndicate content
Updated: 57 min 38 sec ago

Fedora 25 Goes Into Beta Freeze Today, New Features Need To Be Completed

2 hours 55 min ago

Phoronix: The Fedora 25 Beta freeze is today ahead of the planned beta release on 11 October

The best way to develop software with effective security

3 hours 55 min ago

 opensource.com: Learn why the best way to get through the security process is to include it early in the product specification, design, and implementation.

5 Ways to Keep Remote SSH Sessions and Processes Running After Disconnection

4 hours 55 min ago

tecmint: SSH or Secure Shell in simple terms is a way by which a person can remotely access another user on other system but only in command line

KDE's Kirigami UI Framework for Mobile and Convergent Apps Hits 1.1 Milestone

4 hours 55 min ago

 softpedia: Kirigami is a versatile UI framework that lets application developers build cross-platform Qt-based apps for mobile and desktop platforms

How to Create Virtual Machines in oVirt 4.0 Environment

5 hours 55 min ago

LinuxTechi: Creating VM's in oVirt isn't all that hard to do.

BeagleBone Black Wireless SBC taps Octavo SiP, has "open" design

6 hours 55 min ago

 hackerboards: BeagleBoard.org's "BeagleBone Black Wireless" SBC uses Octavo's OSD335x SiP module and replaces the standard BBB???s Ethernet with 2.4GHz WiFi and BT 4.1 BLE.

Docker Doubles Down on Microsoft Windows Server

7 hours 55 min ago

eWEEK: For the most part, the Docker container phenomenon has been about Linux, with the majority of all deployments on Linux servers.

Sloppy programming leads to OpenSSL woes

Tuesday 27th of September 2016 06:00:00 AM

ZDnet: Sometimes security patches create bigger problems than the ones they solve. OpenSSL just made that blunder.

How to install OpenSC on IPFire Firewall

Tuesday 27th of September 2016 02:00:00 AM

HowToForge: In this tutorial, support for hardware tokens (such as smart cards) and their readers (CCID compliance) are integrated with the IPFire project.

How to throw a tarball over the wall

Monday 26th of September 2016 10:00:00 PM

opensource.com: Learn about the costs, motivations, and requirements for making your software open source.

Tor Project Releases Tor (The Onion Router) 0.2.8.8 with Important Bug Fixes

Monday 26th of September 2016 09:00:00 PM

Tor 0.2.8.8 is now the latest and most advanced version of the software designed to allow you to connect to the anonymous Tor (The Onion Router) network

Android Browser Security--What You Haven't Been Told

Monday 26th of September 2016 07:00:00 PM

LinuxJournal: Some modern Android browsers have critically weak encryption and other dangerous flaws that cannot be patched or otherwise corrected.

Intel Core i7 6800K Benchmarks On Ubuntu + Linux 4.8

Monday 26th of September 2016 06:00:00 PM

Phoronix: While the Core i7 6800K has been available for a few months now, there hadn't been any review on it since Intel hadn't sent out any Broadwell-E samples for Linux testing this time around.

Improving Fuzzing Tools for More Efficient Kernel Testing

Monday 26th of September 2016 05:00:00 PM

Linux.com: Bamvor Jian Zhang of Huawei will share some ways to improve the trinity fuzzing tool for more efficient unit tests in his upcoming talk at LinuxCon Europe.

The Ultimate Guide to Increase Transfer Speeds of Nginx Websites Using 'Gzip' Module

Monday 26th of September 2016 04:00:00 PM

tecmint: In this article we will discuss a method to increase transfer speeds by reducing the file sizes through compression.

LXQt 0.11.0 Desktop Environment Arrives After Almost One Year of Development

Monday 26th of September 2016 03:00:00 PM

LXQt 0.11.0 is finally here as a worthy upgrade to LXQt 0.10.0, which was announced back in November 2015 and currently used in several GNU/Linux distributions

Super Mario Clone SuperTux 0.5.0 Is Out with In-Game Level Editor, Improvements

Monday 26th of September 2016 02:00:00 PM

The biggest new feature of the SuperTux 0.5.0 update is a new in-game level editor that lets you create your own levels or modify exiting ones to your liking.

Linux 4.8 rc8

Monday 26th of September 2016 01:00:00 PM

Linus Torvalds: So as already mentioned last week (and hinted at as a possibility), here's rc8.

PostgreSQL 9.6 Preparing To Release With Its Parallel Queries Support

Monday 26th of September 2016 12:00:00 PM

Phoronix: PostgreSQL 9.6 is being prepared for release on 29 September as the database system's latest major update.

DDoS Attacks Heading Toward 1-Terabit Record

Monday 26th of September 2016 11:00:00 AM

eWEEK: Although a 665G-bps attack is considered an outlier today, there will likely come a day when it is not looked at that way.

More in Tux Machines

Security News

  • Tuesday's security updates
  • New Open Source Linux Ransomware Divides Infosec Community
    Following our investigation into this matter, and seeing the vitriol-filled reaction from some people in the infosec community, Zaitsev has told Softpedia that he decided to remove the project from GitHub, shortly after this article's publication. The original, unedited article is below.
  • Fax machines' custom Linux allows dial-up hack
    Party like it's 1999, phreakers: a bug in Epson multifunction printer firmware creates a vector to networks that don't have their own Internet connection. The exploit requirements are that an attacker can trick the victim into installing malicious firmware, and that the victim is using the device's fax line. The firmware is custom Linux, giving the printers a familiar networking environment for bad actors looking to exploit the fax line as an attack vector. Once they're in that ancient environment, it's possible to then move onto the network to which the the printer's connected. Yves-Noel Weweler, Ralf Spenneberg and Hendrik Schwartke of Open Source Training in Germany discovered the bug, which occurs because Epson WorkForce multifunction printers don't demand signed firmware images.
  • Google just saved the journalist who was hit by a 'record' cyberattack
    Google just stepped in with its massive server infrastructure to run interference for journalist Brian Krebs. Last week, Krebs' site, Krebs On Security, was hit by a massive distributed denial-of-service (DDoS) attack that took it offline, the likes of which was a "record" that was nearly double the traffic his host Akamai had previously seen in cyberattacks. Now just days later, Krebs is back online behind the protection of Google, which offers a little-known program called Project Shield to help protect independent journalists and activists' websites from censorship. And in the case of Krebs, the DDoS attack was certainly that: The attempt to take his site down was in response to his recent reporting on a website called vDOS, a service allegedly created by two Israeli men that would carry out cyberattacks on behalf of paying customers.
  • Krebs DDoS aftermath: industry in shock at size, depth and complexity of attack
    “This attack didn’t stop, it came in wave after wave, hundreds of millions of packets per second,” says Josh Shaul, Akamai’s vice president of product management, when Techworld spoke to him. “This was different from anything we’ve ever seen before in our history of DDoS attacks. They hit our systems pretty hard.” Clearly still a bit stunned, Shaul describes the Krebs DDoS as unprecedented. Unlike previous large DDoS attacks such as the infamous one carried out on cyber-campaign group Spamhaus in 2013, this one did not use fancy amplification or reflection to muster its traffic. It was straight packet assault from the old school.
  • iOS 10 makes it easier to crack iPhone back-ups, says security firm
    INSECURITY FIRM Elcomsoft has measured the security of iOS 10 and found that the software is easier to hack than ever before. Elcomsoft is not doing Apple any favours here. The fruity firm has just launched the iPhone 7, which has as many problems as it has good things. Of course, there are no circumstances when vulnerable software is a good thing, but when you have just launched that version of the software, it is really bad timing. Don't hate the player, though, as this is what Elcomsoft, and what Apple, are supposed to be doing right. "We discovered a major security flaw in the iOS 10 back-up protection mechanism. This security flaw allowed us to develop a new attack that is able to bypass certain security checks when enumerating passwords protecting local (iTunes) back-ups made by iOS 10 devices," said Elcomsoft's Oleg Afonin in a blog post.
  • After Tesla: why cybersecurity is central to the car industry's future
    The news that a Tesla car was hacked from 12 miles away tells us that the explosive growth in automotive connectivity may be rapidly outpacing automotive security. This story is illustrative of two persistent problems afflicting many connected industries: the continuing proliferation of vulnerabilities in new software, and the misguided view that cybersecurity is separate from concept, design, engineering and production. This leads to a ‘fire brigade approach’ to cybersecurity where security is not baked in at the design stage for either hardware or software but added in after vulnerabilities are discovered by cybersecurity specialists once the product is already on the market.

Ofcom blesses Linux-powered, open source DIY radio ‘revolution’

Small scale DAB radio was (quite literally) conceived in an Ofcom engineer’s garden shed in Brighton, on a Raspberry Pi, running a full open source stack, in his spare time. Four years later, Ofcom has given the thumbs up to small scale DAB after concluding that trials in 10 UK cities were judged to be a hit. We gave you an exclusive glimpse into the trials last year, where you could compare the specialised proprietary encoders with the Raspberry Pi-powered encoders. “We believe that there is a significant level of demand from smaller radio stations for small scale DAB, and that a wider roll-out of additional small scale services into more geographic areas would be both technically possible and commercially sustainable,” notes Ofcom. Read more

nginx

Case in point: I've been using the Apache HTTP server for many years now. Indeed, you could say that I've been using Apache since before it was even called "Apache"—what started as the original NCSA HTTP server, and then the patched server that some enterprising open-source developers distributed, and finally the Apache Foundation-backed open-source colossus that everyone recognizes, and even relies on, today—doing much more than just producing HTTP servers. Apache's genius was its modularity. You could, with minimal effort, configure Apache to use a custom configuration of modules. If you wanted to have a full-featured server with tons of debugging and diagnostics, you could do that. If you wanted to have high-level languages, such as Perl and Tcl, embedded inside your server for high-speed Web applications, you could do that. If you needed the ability to match, analyze and rewrite every part of an HTTP transaction, you could do that, with mod_rewrite. And of course, there were third-party modules as well. Read more

Linux and Open Source Hardware for IoT

Most of the new 21 open source software projects for IoT that we examined last week listed Linux hacker boards as their prime development platforms. This week, we’ll look at open source and developer-friendly Linux hardware for building Internet of Things devices, from simple microcontroller-based technology to Linux-based boards. In recent years, it’s become hard to find an embedded board that isn’t marketing with the IoT label. Yet, the overused term is best suited for boards with low prices, small footprints, low power consumption, and support for wireless communications and industrial interfaces. Camera support is useful for some IoT applications, but high-end multimedia is usually counterproductive to attributes like low cost and power consumption. Read more