Language Selection

English French German Italian Portuguese Spanish

Security: Studying With GNU/Linux, DNS Scam, SELinux Isn’t Scary and Microsoft Windows Updates Are Very Scary

Filed under
Security
  • First step to becoming a hacker: Linux!

    If you're contemplating a career in cybersecurity and haven't come up to speed on Linux, now's the time to get ramped up and here's one easy way to do it. This new book from no starch press was written with people like you in mind. Authored by OccupyTheWeb, the force behind Hackers-Arise, Linux Basics for Hackers provides everything from basic Linux command line skills through to scripting, manipulating logging, network scanning, using and abusing system services, and remaining stealthy in the process.

  • A Worldwide [Cracking] Spree Uses DNS Trickery to Nab Data

    Iranian [crackers] have been busy lately, ramping up an array of targeted attacks across the Middle East and abroad. And a report this week from the threat intelligence firm FireEye details a massive global data-snatching campaign, carried out over the last two years, that the firm has preliminarily linked to Iran.

  • SELinux Isn’t Scary

    Back in the before times, during the era of RHEL/CentOS 4, SELinux was barely worth the security it offered. It was unwieldy, caused access problems even in Permissive mode, and the command line tools and documentation were esoteric at best when they even existed.

    It’s been a few years since that time, however, and significant development has been done to get SELinux into a much more usable and user-friendly state. At this point, most of the fears surrounding SELinux are based on old experiences, and it behooves everyone to re-examine those fears to see if they’re still realistic.

    Usability often has to trump security. As an example, we now have the ability to just tap a credit card on a machine and have the purchase approved. There are significant security risks involved, but as long as those risks are known and minimized (for example, by limiting the amount that can be purchased in this way), usability can win.

  • Access 97 Database Error Was Caused By Windows January 2019 Update, Microsoft Confirms

    Microsoft’s issues with the recent Windows 10 Updates never seem to end. From deleting user files to granting admin privileges to any user, the bugs have been plenty. Access 97 had a bug discovered recently which breaks access to its databases. Guenni from Borncity discovered the bug yesterday and highlighted it on his blog post.

    The Windows January 2019 Update was the cause behind the bug, Microsoft confirmed today. Microsoft added the Access 97 bug to the “known issue” section. The January update aimed to fix a vulnerability in Jet Database Engine shipped with Windows. “As a result of this patch, open databases in Access 97 MDB format fail with a database error “unknown database format” – if the database contains field names with a length greater than 32 characters”, as Borncity reports. While this bug only affects Microsoft.Jet.OLEDB.4.0 providers, there were only a few workarounds. Microsoft added the following paragraph to the known issue section, highlighting the bug.

More in Tux Machines

digiKam 7.7.0 is released

After three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. Read more

Dilution and Misuse of the "Linux" Brand

Samsung, Red Hat to Work on Linux Drivers for Future Tech

The metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. Read more

today's howtos

  • How to install go1.19beta on Ubuntu 22.04 – NextGenTips

    In this tutorial, we are going to explore how to install go on Ubuntu 22.04 Golang is an open-source programming language that is easy to learn and use. It is built-in concurrency and has a robust standard library. It is reliable, builds fast, and efficient software that scales fast. Its concurrency mechanisms make it easy to write programs that get the most out of multicore and networked machines, while its novel-type systems enable flexible and modular program constructions. Go compiles quickly to machine code and has the convenience of garbage collection and the power of run-time reflection. In this guide, we are going to learn how to install golang 1.19beta on Ubuntu 22.04. Go 1.19beta1 is not yet released. There is so much work in progress with all the documentation.

  • molecule test: failed to connect to bus in systemd container - openQA bites

    Ansible Molecule is a project to help you test your ansible roles. I’m using molecule for automatically testing the ansible roles of geekoops.

  • How To Install MongoDB on AlmaLinux 9 - idroot

    In this tutorial, we will show you how to install MongoDB on AlmaLinux 9. For those of you who didn’t know, MongoDB is a high-performance, highly scalable document-oriented NoSQL database. Unlike in SQL databases where data is stored in rows and columns inside tables, in MongoDB, data is structured in JSON-like format inside records which are referred to as documents. The open-source attribute of MongoDB as a database software makes it an ideal candidate for almost any database-related project. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MongoDB NoSQL database on AlmaLinux 9. You can follow the same instructions for CentOS and Rocky Linux.

  • An introduction (and how-to) to Plugin Loader for the Steam Deck. - Invidious
  • Self-host a Ghost Blog With Traefik

    Ghost is a very popular open-source content management system. Started as an alternative to WordPress and it went on to become an alternative to Substack by focusing on membership and newsletter. The creators of Ghost offer managed Pro hosting but it may not fit everyone's budget. Alternatively, you can self-host it on your own cloud servers. On Linux handbook, we already have a guide on deploying Ghost with Docker in a reverse proxy setup. Instead of Ngnix reverse proxy, you can also use another software called Traefik with Docker. It is a popular open-source cloud-native application proxy, API Gateway, Edge-router, and more. I use Traefik to secure my websites using an SSL certificate obtained from Let's Encrypt. Once deployed, Traefik can automatically manage your certificates and their renewals. In this tutorial, I'll share the necessary steps for deploying a Ghost blog with Docker and Traefik.