Language Selection

English French German Italian Portuguese Spanish

Security: Updates, Mitigations, Myths, DNS/IPFire and Huawei

Filed under
Security
  • Security updates for Wednesday

    Security updates have been issued by CentOS (spice-gtk), Debian (libemail-address-list-perl), openSUSE (chromium, libqt5-qtbase, nginx, systemd, and wicked), Oracle (spice-gtk), Slackware (firefox and thunderbird), and Ubuntu (libexif and Yubico PIV Tool).

  • Mitigations are attack surface, too

    This blog post discusses a bug leading to memory corruption in Samsung's Android kernel (specifically the kernel of the Galaxy A50, A505FN - I haven't looked at Samsung's kernels for other devices). I will describe the bug and how I wrote a (very unreliable) exploit for it. I will also describe how a second vulnerability, which had long been fixed in the upstream kernel, the upstream stable releases, and the Android common kernel, but not in Samsung's kernel, aided in its exploitation.

    If you want to look at the corresponding source code yourself, you can download Samsung's kernel sources for the A505FN from here. The versions seem to be sorted such that the newer ones are at the top of the list; A505FNXXS3ASK9 is the newest one at the time of writing, corresponding to the November 2019 security patch level.

  • What to know about open source security

    Many companies have a preference towards open source technology, so what should be kept in mind in regards to ensuring its security?

  • Enhancements to our DNS Resolver

    Today, we have taken some important changes on our DNS Resolver into production. Having released support for DNS-over-TLS in 2018, we have now added TCP Fast Open and TLSv1.3.

    Lightning Wire Labs is managing a DNS Resolver to provide an alternative to the large corporation who are trying to get the global DNS system under their control and use it for marketing purposes.

    To not fall behind the technical development, we have now enabled some new features on our resolver to make it ready for the new DNS changes that are going to land with IPFire 2.25 - Core Update 141 very soon.

  • U.S. Officials Say Huawei Can Covertly Access Telecom Networks

    Huawei can covertly access mobile networks through back doors meant for law enforcement, the U.S. has told allies in a bid to show that the firm poses a security threat. 

    U.S. officials say Huawei Technologies Co. can covertly access mobile-phone networks around the world through “back doors” designed for use by law enforcement, as Washington tries to persuade allies to exclude the Chinese company from their networks.

More in Tux Machines

What Linux needs to make it a better mobile desktop

I have a bit of a confession to make. Although Linux is my operating system of choice on the desktop, I tend to skip over my open source-powered laptop in favor of either a MacBook Pro or Chromebook when I'm working beyond my desk. I know...blasphemy, right? I've reached a point in my career and life where I need the tools to be able to get my jobs done as efficiently as possible and without frustration or headache. To be absolutely fair, primary reasons why I overlook my one Linux laptop are because it's too big and the keyboard is absolutely terrible. Given I am a writer by profession, a bad keyboard can be a deal-breaker. Once again, in favor of honesty, the 2016 MacBook Pro keyboard isn't much better. The "butterfly" keys are loud and way too prone to sticking. My 2015 Pixel was, at one point, an absolute dream machine, but the battery life is waning, and sometimes ChromeOS can be a bit flaky with the trackpad. Read more

Linux and open-source jobs are hotter than ever

The Linux Foundation and , the leading online course company, released the 2020 Open Source Jobs Report on October 26. Once again, despite the COVID-19 pandemic, the demand for open-source technology skills is growing. 37% of hiring managers say they will hire more IT professionals in the next six months. Specifically, 81% of hiring managers say hiring open source talent is a priority going forward. 56% of hiring managers plan to increase their hiring of open source pros in the next six months Why? The answer to that is simple. As a recent Red Hat survey found, 86% of IT leaders said the most innovative companies are using open-source software, citing higher quality solutions, lower cost of ownership, improved security, and cloud-native capabilities as the top reasons for usage. So, even in these bad times, the demand for open-source savvy is higher than ever. Read more

Vote for the Debian GNU/Linux 11 “Bullseye” Desktop Artwork Now

Opened to submissions since early August, the artwork proposals for Debian GNU/Linux 11 “Bullseye,” the next major release of the popular Debian GNU/Linux operating system, has reached its deadline last week on October 15th, and now the community can vote for the winner. Jonathan Carter announced today that it’s time for the Debian community to choose the desktop artwork to be used in Debian GNU/Linux 11 “Bullseye.” The review period for the final proposals starts today, October 26th, until November 9th, and winners will be unveiled in mid-November. Read more

Games: AntiMicroX in Linux, GOG, Life of Delta, 9 Monkeys of Shaolin, Gravity Ace