Language Selection

English French German Italian Portuguese Spanish

Exploit published for Snort open-source IDS

Filed under
Security

Security researchers posted code on Tuesday capable of compromising computers running the most recent versions of the Snort open-source intrusion detection system.

The exploit will work in most cases, according to The Hacker's Choice security group, which published the code.

The published exploit comes exactly one week after Internet Security Systems and the US-CERT announced the existence of a flaw in how the Snort preprocessor for BackOrifice parses hostile data.

Full Brief.

More in Tux Machines

Graphics: AMDGPU, Nvidia, Apple's Harm to Science

  • AMDGPU DRM Driver To Finally Expose GPU Load Via Sysfs
    The AMDGPU DRM driver appears to finally be crossing the milestone of exposing the current GPU load (as a percentage) in a manner that can be easily queried via sysfs. For years I've been frustrated via the lack of standardization of sysfs/debugfs files among the DRM drivers and some seemingly basic information not being exposed in such a manner that easily benefits various desktop plug-ins, those wanting to script basic monitors/checks/etc around such outputs, and use-cases like with the Phoronix Test Suite for easily querying this information too for its sensor recording. One of the frustrations with the Radeon Linux stack has been that there wasn't a trivial way to read the GPU load usage as a percentage... There's been ways if installing third-party utilities like RadeonTool, but no universal solution nor one that doesn't require root and would be widely available.
  • Radeon Software 18.20 Stable Released With Official Ubuntu 18.04 LTS Support
    The Radeon Software "AMDGPU-PRO" 18.20 hybrid driver stack is now available with official support for Ubuntu 18.04 LTS and Red Hat Enterprise Linux 17.20. Two months after the debut of the Ubuntu 18.04 LTS "Bionic Beaver" release, the Q2'2018 Radeon Sotware for Linux driver update has arrived with support for this latest long-term support release. Radeon Software 18.20 was officially released last week but seemingly went under everyone's radar until now.
  • Nvidia Releases a Batch of Open Source Tools for AI
    Graphics processors increasingly used as hardware accelerators for deep learning applications are also being deployed with the Kubernetes cluster orchestrator as another way to accelerate the scaling of training and inference for deep learning models. The two-front approach includes Nvidia’s (NASDAQ: NVDA) release to developers this week of a Kubernetes on GPU capability aimed at enterprises training models on multi-cloud GPU clusters. Previously, Google (NASDAQ: GOOGL) launched a beta version of GPUs on its Kubernetes Engine aimed at accelerating machine learning and image processing workloads.
  • AI caramba! Nvidia devs get a host of new kit to build smart systems
    Nvidia has released a bunch of new tools for savvy AI developers in time for the Computer Vision and Pattern Recognition conference in Salt Lake City on Tuesday.
  • Chemists criticise mooted shutdown of 3D visualisation tools
    End of support for Apple’s OpenGL programming interface could pull the plug on molecular modelling software Researchers are voicing concerns over a move that may affect many 3D visualisation programs that are commonly used in computational research. Apple’s Macintosh operating systems (macOS) is set to end support for OpenGL, the programming interface frequently used to display 3D graphics in medical and scientific visualisation software, which has existed since 1992. Nearly all open source and commercial chemistry visualisation programs that are used to display atoms, molecules, bonds and protein ribbons – such as Mercury, VMD and PyMOL – use the system.

Stable kernels 4.16.17 and 4.14.51

OpenBSD disables hyperthreading support for Intel CPUs due to likely data leaks

Open source log management options for Linux distributions

If you run Linux, you're probably familiar with rsyslog and systemd-journald. However, if you oversee dozens of Linux servers and cloud instances, it's not realistic to dig into each individual log file. Graylog and Logcheck are two viable open source alternatives. When you search for open source log management software, you will see that Graylog is one of the most adopted products. The program can be easily installed on common Linux distributions, including CentOS and Ubuntu, and is available as an appliance. Read more