Security: Wireshark 3.0, Yubikey, Android TV Bug, Debian ELTS, Open Source Security Podcast and More
-
Wireshark 3.0 Released as World’s Most Popular Network Protocol Analyzer
The Wireshark Foundation released a new major version of their widely-used network protocol analyzer software, Wireshark 3.0, for GNU/Linux, macOS, and Windows platforms.
As its version number suggests, Wireshark 3.0 is a massive update to the world's most popular network protocol analyzer designed for network troubleshooting and analysis, software and communications protocol development, as well as education purposes, which introduces numerous new features and improvements.Highlights of Wireshark 3.0 include re-enablement and modernization of the IP map feature, support for the long-term supported Qt 5.12 application framework for macOS and Windows systems, initial support for using PKCS #11 tokens for RSA decryption in TLS, support for reproducible builds, and support for Swedish, Ukrainian, and Russian languages.
-
Using a Yubikey as smartcard for SSH public key authentication
I did not like that very much. GnuPG's user interface is a disaster, and reading its documentation is a pain. Working with OpenBSD has taught me that good documentation is a must, because without that, how can you use the software safely? The documentation also shows how much the developers care. So gpg is out, at least for SSH authentication.
However, ssh(1) has another method to talk to smartcards. It can load a PKCS#11 library that contains the functions to access the SmartCard. On OpenBSD, this library is provided by the opensc package. In turn, it needs the pcsc-lite package, that actually talks to a smartcard reader.
-
Android TV Bug May Expose Your Personal Google Photos to Other Users
A Twitter user from India has discovered a new bug in the Android TV OS that could potentially expose personal photos of users to others that own the same Android TV device. When @wothadei tried to access his Vu Android TV through the Google Home app, he could see the linked accounts of several other individuals who owned the same television. Unfortunately, however, this is not the only bug that he has discovered.
The Twitter user found that he could view personal photos linked to the accounts of other owners of the Android TV device on Google Photos through the Ambient Mode screensaver settings. Another Twitter user has pointed out that the problem may be solved by performing a reset and linking your Google account to the Android TV device. Quite clearly, the bug puts the privacy of several Android TV users at risk.
-
Mike Gabriel: My Work on Debian LTS/ELTS (February 2019)
In February 2019, I have worked on the Debian LTS project for 6 hours (of originally planned 10 hours) and on the Debian ELTS project for another 6 hours as a paid contributor. The non-worked 4 LTS hours I will carry over into March 2019
-
Open Source Security Podcast: Episode 136 - How people feel is more important than being right
Josh and Kurt talk about github blocking the Deepfakes repository. There's a far bigger discussion about how people feel, and sometimes security fails to understand that making people feel happy or safer is more important than being right.
-
March Intro | Roadmap to Securing Your Infrastructure
March is upon us as we continue with our roadmap to securing your infrastructure. Hopefully, February’s posts reignited your passion for security. This month, we’ll discuss some topics that are typically overlooked or taken for granted. We often wear many hats in our jobs and tend to get busy, but we must stay vigilant in our efforts.
In the information security industry, one thing we cannot do is become stagnant. The minute we let our guard down or say, “Someone else will take care of that” is the moment we relinquish control to those we have so diligently defended against.
- Login or register to post comments
- Printer-friendly version
- 2688 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
More on Wireshark 3.0.0
Wireshark 3.0.0 Release Notes
Wireshark 3.0.0 Open-source Network Analyzer Released: Download It Here
Wireshark 3.0 Released With New Protocol Support, User Interface Improvements
Android TV Bug Exposes Private Google Photos Of Users
Android TV Bug Exposes Private Google Photos Of Users