Language Selection

English French German Italian Portuguese Spanish

Security and Proprietary Software Issues

  • UL Pushes Security Standards For The Internet Of Broken Things

    If you hadn't noticed yet, the internet of things is a security and privacy shit show. Millions of poorly-secured internet-connected devices are now being sold annually, introducing massive new attack vectors and vulnerabilities into home and business networks nationwide. Thanks to IOT companies and evangelists that prioritize gee-whizzery and profits over privacy and security, your refrigerator can now leak your gmail credentials, your kids' Barbie doll can now be used as a surveillance tool, and your "smart" tea kettle can now open your wireless network to attack.

  • Warning Issued For Millions Of Microsoft Windows 10 Users

    Picked up by the ever-reliable Windows Latest, Microsoft’s Windows 10 November update is causing significant problems by breaking core elements of File Explorer. These include file search, file transfers and being, as one user described, “generally all around terrible”. Windows Latest notes these bugs are “widely reported”.

    For its part, Microsoft has committed to investigate the issue, though Microsoft senior program manager Brandon LeBlanc has riled some affected users after tweeting “We will look into this but since it’s not a pressing issue, we may not get traction until after the holidays.”

    "It's a very pressing issue, affecting everyone," replied one disgruntled user.

  • Dear Apple, a little help here? How hard can it be to move our developer account to our new not-for-profit?

    Apple: Computer says no?

  • How I once saved half a million dollars with a single character code change

    Unless you know that the trick will make a different in that location, the optimisation is premature. There is no benefit, but there is still a cost. And it is a real cost — I had to spend time justifying the presence of that ‘0’ many times over the years as other developers questioned its purpose.

    And if the optimisation was applied everywhere how would people know which ones were important?

    This particular trick also no longer works.

  • Google veterans: The company has become 'unrecognizable'

    Former workers shared why they left the company, citing organizational changes and a lack of transparency from management.

    Workers said the company's culture has turned into the opposite of what the founders said they had hoped for.

  • Good times create weak men

    Yes, these particular bugs are pretty minor and probably do not affect business in the short run, only Apple’s reputation. Still, it is a big deal. Imagine how tall, opaque and unstable that ladder of abstractions is that it’s even possible to fail such a simple thing as selecting an item in a list??? It is a freaking list and if you click it, it should select a thing that you just clicked. How hard of a task do you think that is? Why it has worked flawlessly since the first iPod with a monochrome screen and quarter of computing power of modern watch, but can’t be done in a flagship product of the most advanced operating system in the world?

    Because advanced means complex. So complex that no one could reasonably understand it or have control over it, even if they wanted. Apple DID want it. But even they couldn’t. Even with all the resources in the world.

    At this point, you might think I’m just picking on Apple or Catalina. God knows what went wrong there. Maybe they did change priorities and re-hired all the programmers. But no. This problem is universal.

Cisco critical bugs: Nexus data center switch software

  • Cisco critical bugs: Nexus data center switch software needs patching now

    Cisco warns that a remote attacker can bypass DCNM's authentication and carry out tasks with administrative privileges on an affected device.

    The available updates are highly important for enterprise data centers built with its Nexus NX-OS-based switches. DCNM is a key component for automating NX-OS-based network infrastructure deployments.

    Cisco points to three separate authentication bypass vulnerabilities in a single advisory. They're tagged as CVE-2019-15975, CVE-2019-15975, and CVE-2019-15977 and the trio have a severity rating of 9.8 out of a possible 10, meaning they are firmly critical security issues.

    The bugs "could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device", Cisco said.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Stable Kernels: 5.18.9, 5.15.52, 5.10.128, 5.4.203, 4.19.250, 4.14.286, and 4.9.321

I'm announcing the release of the 5.18.9 kernel.

All users of the 5.18 kernel series must upgrade.

The updated 5.18.y git tree can be found at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.18.y
and can be browsed at the normal kernel.org git web browser:
	https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

thanks,

greg k-h
Read more Also: Linux 5.15.52 Linux 5.10.128 Linux 5.4.203 Linux 4.19.250 Linux 4.14.286 Linux 4.9.321

13 Interesting Distributions Based on Debian Linux

You will always find Debian in the list of most stable Linux distributions. It is one of the oldest distributions out there. With ‘open source’ at its core, Debian is an example of a successful community project. But the focus on ‘FOSS’ also makes it uncomfortable for new users who are accustomed to getting things out of the box. Installing Debian also feels like a complicated task. For this reason, you can opt for a Debian-based distribution so that you stay in the comfort of Debian. I am going to list some interesting distributions based on Debian in this article. Read more

4 Best Free and Open Source Elm Static Site Generators

LinuxLinks, like most modern websites, is dynamic in that content is stored in a database and converted into presentation-ready HTML when readers access the site. While we employ built-in server caching which creates static versions of the site, we don’t generate a full, static HTML website based on raw data and a set of templates. However, sometimes a full, static HTML website is desirable. Because HTML pages are all prebuilt, they load extremely quickly in web browsers. Read more

How to Install Latest Mozilla Firefox on Linux Desktop

Most Linux distributions already ship with Firefox installed by their distribution package manager and configured as the default browser. It might be unavailable in the minimal version of the distribution. Read more