Language Selection

English French German Italian Portuguese Spanish

Security: Reproducible Builds, VPNs, COMB and More

Filed under
Security
  • Chris Lamb: Free software activities in February 2021

    The motivation behind the Reproducible Builds effort is to ensure no flaws have been introduced during compilation process by promising identical results are always generated from a given source, therefore allowing multiple third-parties to come to a consensus on whether a build was compromised.

    [...]

    I also made the following changes to diffoscope, including preparing and uploading versions 167 and 168 to Debian...

  • Here's why VPN services are turning to WireGuard

    When it comes to VPN services, everyone has their individual preferences, and the same is true of the protocols used to encrypt them.

    OpenVPN and IPsec encryption protocols have long ruled the roost, but up-and-coming protocol WireGuard is proving that high levels of encryption can be had for less overhead.

    We caught up with Daniel Sagi, COO at Kape Technologies, parent company of Private Internet Access, to find out about the value WireGuard can deliver and the company's approach to protocols going forward.

  • COMB: largest breach of all time leaked online with 3.2 billion records

    It’s being called the biggest breach of all time and the mother of all breaches: COMB, or the Compilation of Many Breaches, contains more than 3.2 billion unique pairs of cleartext emails and passwords. While many data breaches and leaks have plagued the internet in the past, this one is exceptional in the sheer size of it. To wit, the entire population of the planet is at roughly 7.8 billion, and this is about 40% of that.

    However, when considering that only about 4.7 billion people are online, COMB would include the data of nearly 70% of global internet users (if each record was a unique person). For that reason, users are recommended to immediately check if their data was included in the leak. You can head over to the CyberNews personal data leak checker now.

  • Create Your Own Certificate Authority (CA) for Homelab Environment

    I use my own Root CA to manage certificates in the homelab environment.

More in Tux Machines

Make Linux look like Windows - 2021 edition

Here we go again. Roughly three years ago, I showed you how to skin your Linux installation to look more like Windows, should your particular taste lean in that direction. It was an interesting little experiment. Also nerdy to the core. But apart from possible nostalgia and tech glamor, there might also be practical reasons for why someone would want to make their distro look more like a Microsoft product. And the answer is: entice non-techie people who expect the familiar. Say you install a distro for folks with zero Linux knowledge and some rudimentary Windows familiarity. Normally, this is a recipe for disaster. I call this The Grandma Gentoo Test (TGGT), AKA how likely is the ordinary person to master the subtleties of computer usage without your nerdy help? But this is true for all operating systems, except Windows had been around for a long time, and it's the primary desktop interface that most people somewhat know how to somewhat use. So then, can you make your chosen distro behave like Windows, and nonce the wiser? Read more

Security Patches and GNU/Linux Security

  • Security updates for Monday

    Security updates have been issued by CentOS (nettle, squid, and thunderbird), Debian (libebml, python-bleach, and python2.7), Fedora (batik, gnuchess, kernel-headers, kernel-tools, ruby, singularity, and xorg-x11-server), Mageia (clamav, kernel, kernel-linus, and python3), openSUSE (chromium, fluidsynth, opensc, python-bleach, and wpa_supplicant), Oracle (gnutls and nettle), Red Hat (dpdk, gnutls and nettle, mariadb:10.3 and mariadb-devel:10.3, and redhat-ds:11), and SUSE (kernel, qemu, and xen).

  • Openwall Releases LKRG 0.9.0 with a Long List of Major Changes, Improvements & Bug Fixes

    Openwall recently announced the release of LKRG (Linux Kernel Runtime Guard) 0.9.0, featuring a host of major changes and improvements, as well as fixes for multiple security bugs. LKRG is a kernel module that performs runtime integrity checking of the Linux kernel and detection of security vulnerability exploits against the kernel.

  • Can Linux Be Used To Offer More Security In A WFH World (On And Offline)?

    Operational security at least seemed so much easier back when traditional 9-to-5 office life was still dominant. Talk of professionals taking their work home with them was largely metaphorical, with only occasional instances of C-suite types dragging their laptops everywhere they went. Business hardware and systems would be shielded through physical security and isolated networks. One office (or office complex), one place to guard: entirely straightforward. Now, after a year that’s seen countless businesses (some eagerly and others reluctantly) adopt the working-from-home model, there are different challenges to overcome. Teams are scattered and must share sensitive data across the internet — data to which other companies and fraudsters would love to gain access. When information gets out, reputations are destroyed and businesses (particularly those working entirely online) struggle to survive.

Audiocasts and Videocasts: Linux in the Ham Shack, Ubuntu Budgie 21.04, and openSUSE 15.3

  • LHS Episode #408: Let’s Get Metaphysical

    Hello and welcome to the 408th installment of Linux in the Ham Shack. In this short topics episode, the hosts discuss the new, upcoming YOTA contest, Pop! OS, the new amateur radio census, codec2, Linux Mint, the Universal Ham Radio Remote and much more. Thank you for listening and have a great week!

  • Ubuntu Budgie 21.04 overview | Simplicity and Elegance in one package.

    In this video, I am going to show an overview of Ubuntu Budgie 21.04 and some of the applications pre-installed.

  • openSUSE 15.3 First Impressions & Preview

    openSUSE 15.3 is the next version of Leap, due to be released this year. I decided to take a look at the upcoming distro in its current state, to not only refresh myself on openSUSE itself, but to also see what the developers are up to nowadays.

Android Leftovers