Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Friday's security updates
  • Server Hardening

    Server hardening. The very words conjure up images of tempering soft steel into an unbreakable blade, or taking soft clay and firing it in a kiln, producing a hardened vessel that will last many years. Indeed, server hardening is very much like that. Putting an unprotected server out on the Internet is like putting chum in the ocean water you are swimming in—it won't be long and you'll have a lot of excited sharks circling you, and the outcome is unlikely to be good. Everyone knows it, but sometimes under the pressure of deadlines, not to mention the inevitable push from the business interests to prioritize those things with more immediate visibility and that add to the bottom line, it can be difficult to keep up with even what threats you need to mitigate, much less the best techniques to use to do so. This is how corners get cut—corners that increase our risk of catastrophe.

  • There are no secure smartphones.
  • OpenSSH Flaw Could Leak Crypto Keys
  • How To Patch and Protect OpenSSH Client Vulnerability CVE-2016-0777 and CVE-2016-0778 [ 14/Jan/2016 ]

    The OpenSSH project released an ssh client bug info that can leak private keys to malicious servers. A man-in-the-middle kind of attack identified and fixed in OpenSSH are dubbed CVE-2016-0777 and CVE-2016-0778. How do I fix OpenSSH's client vulnerability on a Linux or Unix-like operating system?

More in Tux Machines

Pinguy OS Puts On a Happier GNOME 3 Face

Pinguy OS 18.04 is an Ubuntu-based distribution that offers a non-standard GNOME desktop environment intended to be friendlier for new Linux users. This distro is a solid Linux OS with a focus on simple and straightforward usability for the non-geek desktop user. If you do not like tinkering with settings or having numerous power-grabbing fancy screen animations, Pinguy OS could be a good choice. The GNOME desktop is the only user interface option, but Pinguy OS' developer, Antoni Norman, tweaked the desktop environment with some different software options not usually packaged with GNOME. Read more

You Can Now Install Android 8.1 Oreo on Your Raspberry Pi 3 Model B+ Computer

Just two weeks after releasing the first build of his RaspAnd operating system based on Google's Android 8.1 Oreo mobile OS, Arne Exton today announced a new version with support for the Raspberry Pi 3 Model B+ computer. RaspAnd Oreo 8.1 Build 180717 is basically identical with RaspAnd Oreo 8.1 Build 180707 except for the fact that it now also supports the latest Raspberry Pi 3 single-board computer, the Raspberry Pi 3 Model B+, which features a more powerful 1.4GHz 64-bit quad-core processor, dual-band Wi-Fi, Bluetooth LE 4.2, faster Ethernet, and Power-over-Ethernet support. Read more

Linux Foundation and Linux Development

  • Linux Foundation launches LF Energy open source platform
    Launched with support from Europe’s biggest transmission power systems provider and other organizations, LF Energy aims to streamline everything from system operator smart assistants to smart grid control software. It will serve as an umbrella organization that supports collaboration among vendors in the energy sector to advance information and communication technologies (ICT) that impact the energy balance and brings about economic value.
  • FPGA Device Feature List Framework Coming For Linux 4.19
    There's already a new framework coming to Linux 4.19 in the form of Google's Gasket while queued this week is now another new framework: the FPGA Device Feature List.
  • AMDGPU Firmware Updated From 18.20, Vega M Blobs Added
    The latest AMDGPU firmware/microcode binary images for Radeon GPUs have landed in the Linux-Firmware Git tree. Hitting linux-firmware.git minutes ago was the latest batch of AMDGPU firmware files from Bonaire and Hawaii up through Vega 10, Polaris, and Raven hardware. The updated firmware images are the same as what AMD recently shipped with the Radeon Software 18.20 hybrid driver package. No change-logs of what is different about these updated firmware images are currently available, but most of the time it's mostly routine and mundane fixes/updates.
  • Nvidia 390.77 Linux Graphics Driver Improves Compatibility with Latest Kernels
    Nvidia released a new version of its long-lived proprietary display driver for GNU/Linux, FreeBSD, and Solaris systems to add compatibility with recent Linux kernels and fix various bugs. While not a major release, the Nvidia 390.77 proprietary graphics driver brings better compatibility with the latest Linux kernels. However, Nvidia didn't mention if it's now possible to compile its proprietary display drivers with the upcoming Linux 4.18 kernel series or just with the recent Linux 4.17 point releases. In addition to improving compatibility with recent Linux kernels, the Nvidia 390.77 proprietary display driver for Linux-based operating systems addresses a random hang issue that could occur for some users when running Vulkan apps in full-screen mode and flipping was allowed.

today's howtos