Navigation

Language Selection

Search

Leftovers: Security

Submitted by Rianne Schestowitz on Friday 25th of September 2015 08:59:54 AM Filed under

Security

Security updates for Thursday
Microsoft puts a bullet in blundering D-Link's leaked key that made malware VIPs on PCs

Microsoft has finally revoked D-Link's leaked code-signing key, which gave malware the red carpet treatment on millions of Windows PCs.

Last week, it emerged that, for six months between February and September, D-Link exposed its private code-signing key to the world in a firmware download. Anyone who stumbled upon this key could use it to dress up malware as a legit-looking D-Link application, tricking Windows and users into trusting it.

The key expired at the start of this month, meaning it cannot be used to digitally sign new malware. But any software nasties signed using the key earlier in the year would still be trusted and run by Windows PCs.
Filling in the holes in Linux boot chain measurement, and the TPM measurement log

When I wrote about TPM attestation via 2FA, I mentioned that you needed a bootloader that actually performed measurement. I've now written some patches for Shim and Grub that do so.

The Shim code does a couple of things. The obvious one is to measure the second-stage bootloader into PCR 9. The perhaps less expected one is to measure the contents of the MokList and MokSBState UEFI variables into PCR 14. This means that if you're happy simply running a system with your own set of signing keys and just want to ensure that your secure boot configuration hasn't been compromised, you can simply seal to PCR 7 (which will contain the UEFI Secure Boot state as defined by the UEFI spec) and PCR 14 (which will contain the additional state used by Shim) and ignore all the others.
Would you trust Intel, Vodafone, Siemens et al with Internet of Things security? You'll have to

A new non-profit foundation dedicated to improving security in the "internet of things" launched on Wednesday.

More than 30 companies including Intel, Vodafone, Siemens, and BT are the founding members of the foundation, whose mission is to "make the Internet of Things secure, to aid its adoption, and maximize its benefits."

The IoTSF will focus on best practices and knowledge sharing. It will host a conference in London in December on IoT security.
Security wares like Kaspersky AV can make you more vulnerable to attacks

Login or register to post comments
Printer-friendly version
714 reads
PDF version

More in Tux Machines

Open Hardware With Arduino: Counter and MKR ZERO

Keep track of your laps in the pool with this Arduino counter

PeterQuinn925 swims for exercise, and to train for the occasional triathlon, but when doing so he often zones out and forgets how many laps he has swam. To solve this problem without spending a lot of money on a commercial solution, he created his own counter using an Arduino Nano and an ultrasonic sensor. The sensor detects when a swimmer approaches, and the system calculates distance based on this, assuming that a lap is roughly 50 yards or meters. This info is announced audibly via a speaker/amplifier using an Arduino speech library and is shown on a 7-segment display.
Recreating Rosie the Robot with a MKR ZERO

While 2020 may seem like a very futuristic year, we still don’t have robotic maids like the Jetsons’ Rosie the Robot. For his latest element14 Presents project, DJ Harrigan decided to create such a bot as a sort of animatronic character, using an ESP8266 board for interface and overall control, and a MKR ZERO to play stored audio effects. The device features a moveable head, arms and eyes, and even has a very clever single-servo gear setup to open and close its mouth.

Python Programming

AdminLTE - Jinja2 Template

This article is a short introduction in Jinja2, a modern templating language used by Python programmers in frameworks like Flask, Bottle, optionally in Django from 1.8 version.
Giovanni Mascellani: Bye bye Python 2!

And so, today, while I was browsing updates for my Debian unstable laptop, I noticed that aptitude wouldn't automatically upgrade python2 and related packages (I don't know why, and at this point don't care). So I decided to dare: I removed the python2 package to see what the dependency solver would have proposed me. It turned out that there was basically nothing I couldn't live without.
Jacob Perkins: Python Vulnerability Checking Links
PSF GSoC students blogs: Weekly Check-in #10
PSF GSoC students blogs: Weekly Blog #5 (26th Jul - 2nd Aug)
PSF GSoC students blogs: Sorting Things Out
PSF GSoC students blogs: Phase 3 - Weekly Check-in 10
PSF GSoC students blogs: Lifecycle hooks, threading and notification system in the user story system in GSOC'20
PSF GSoC students blogs: BLOG POST #5

Audiocasts/Shows: Debian 10.5 KDE Plasma Run Through, Late Night Linux, Linux Headlines

Debian 10.5 KDE Plasma Run Through

In this video, we are looking at Debian 10.5. Enjoy!
Late Night Linux – Episode 95

A look back at the year in Linux so far, some speculation about what’s coming, Lineage OS on the Raspberry Pi, and KDE Korner.
2020-08-03 | Linux Headlines

Linux kernel 5.8 is out, BunsenLabs rebases to Debian 10 “Buster,” Mastodon releases version 3.2 with multimedia enhancements, and The Linux Foundation forms the Open Source Security Foundation.

today's howtos

Latest News

Android Leftovers

Security-Oriented Kodachi Linux 7.2 Released with One of the Best Secure Messengers

Based on the latest Xubuntu 18.04 LTS point release, Kodachi Linux 7.2 codename “Defeat” comes with the newest Ubuntu kernel that’s patched against recent security vulnerabilities and full sync with the upstream Bionic Beaver repositories to provide users with an up-to-date installation media. On top of that, the new release introduces new security features, such as Session Messenger, a popular private messenger that the Kodachi Linux team doubts as one of the best secure messengers and the Steghide UI utility for hiding encrypted text messages in images, text or audio files.

Linux and Linux Foundation: 5.9 Kernel and LF Edge

Intel SERIALIZE, Dropping Of SGI UV Supercomputer, i386 Clang'ing Hit Linux 5.9

A number of x86-related changes were sent out today for the first full day of the Linux 5.9 merge window.
Btrfs Seeing Some Nice Performance Improvements For Linux 5.9

With more eyes on Btrfs given the file-system is set to become the default for Fedora 33 desktop spins, there are some interesting performance optimizations coming to Btrfs with the in-development Linux 5.9 kernel. On the performance front for Btrfs in Linux 5.9 there are optimized helpers for little-endian architectures to avoid little/big endian conversions around the on-disk format, tree-log/fsync optimizations yielding around a 12% lower maximum latency for the Dbench benchmark, faster mount times for large file-systems in the terabyte range, and parallel fsync optimizations.
As IoT Continues to Evolve, LF Edge Explores the Edge Continuum in a New White Paper

Earlier this month, LF Edge, an umbrella organization under The Linux Foundation, published a white paper updating the industry on their continued ecosystem collaboration. LF Edge brings together projects within the Foundation, that “aims to establish an open, interoperable framework for edge computing independent of hardware, silicon, cloud, or operating system.”

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Support Tux Machines

Help Support TM
Wall of Appreciation

Gizmoz

LXer

Linux Today

System 76

LinuxSecurity.com Advisories

Debian

It's FOSS

OMG! Ubuntu!

GamingOnLinux

Slashdot

DW Latest Releases

DistroWatch

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

FSF

Free Software Foundation announces freedom-respecting videoconferencing for its associate members

Ubuntu Buzz

LinuxLinks

Content available under CC-BY-SA