Navigation

Language Selection

Search

Security Leftovers

Submitted by Roy Schestowitz on Sunday 17th of January 2016 10:08:30 AM Filed under

Security

Hacking Team’s Leak Helped Researchers Hunt Down a Zero-Day

The vulnerability, which Microsoft called “critical” in a patch released to customers on Tuesday, would allow an attacker to infect your system after getting you to visit a malicious website where the exploit resides—usually through a phishing email that tricks you into clicking on a malicious link. The attack works with all of the top browsers except Chrome—but only because Google removed support for the Silverlight plug-in in its Chrome browser in 2014.

[...]

In July 2015, a hacker known only as “Phineas Fisher” targeted the Italian surveillance firm Hacking Team and stole some 400 GB of the company’s data, including internal emails, which he dumped online. The hack exposed the company’s business practices, but it also revealed the business of zero-day sellers who were trying to market their exploits to Hacking Team. The controversial surveillance firm, which sells its software to law enforcement and intelligence agencies around the world—including to oppressive regimes like Sudan, Bahrain, and Saudi Arabia—uses zero-day exploits to help sneak its surveillance tools onto targeted systems.
Flexible, secure SSH with DNSSEC

With version 6.2 of OpenSSH came a feature that allows the remote host to retrieve a public key in a customised way, instead of the typical authorized_keys file in the ~/.ssh/ directory. For example, you can gather the keys of a group of users that require access to a number of machines on a single server (for example, an LDAP server), and have all the hosts query that server when they need the public key of the user attempting to log in. This saves a lot of editing of authorized_keys files on each and every host. The downside is that it's necessary to trust the source these hosts retrieve public keys from. An LDAP server on a private network is probably trustworthy (when looked after properly) but for hosts running in the cloud, that’s not really practical.

Login or register to post comments
Printer-friendly version
1311 reads
PDF version

More in Tux Machines

Type	Title	Author	Last Post
Story	Android Leftovers	Rianne Schestowitz	27/05/2022 - 1:40pm
Story	TypeScript Based Headless CMS 'Payload' Becomes Open Source	Rianne Schestowitz	27/05/2022 - 1:18pm
Story	SailfishOS adds support for Sony Xperia 10iii	Rianne Schestowitz	27/05/2022 - 1:15pm
Story	Banana Pi announces alternative to Raspberry Pi CM4	Rianne Schestowitz	27/05/2022 - 1:12pm
Story	Linux Candy: projectM - music visualizer originally based on Milkdrop	Rianne Schestowitz	27/05/2022 - 1:07pm
Story	Fwupd 1.8.1 Linux Firmware Updater Brings More Hardware Support and New Features	Marius Nestor	27/05/2022 - 12:10pm
Story	today's leftovers	Roy Schestowitz	27/05/2022 - 8:14am
Story	wayland 1.20.91	Roy Schestowitz	27/05/2022 - 8:07am
Story	Top 5 Laptops for Programmers in 2022	trendoceangd	27/05/2022 - 8:01am
Story	today's howtos	Roy Schestowitz	27/05/2022 - 7:46am

Latest News

today's leftovers

Coffee Lake based rugged PC offers flexible display support and extensive storage capacity

Taiwan based Cincoze, released a compact and robust PC that is powered by 9/8th Gen Intel Core CPUs (i7, i5, i3) and up to 128GB of DDR4 memory. The company claims the DV-1000 PC has a footprint of half a sheet of an A4 paper but it packs several interfaces to meet demands in industrial, robotics, in-vehicle computing and many other applications. For storage options, the DV-1000 includes one SATA tray, two mSATA slots, one M.2 Key M 2280 slot for NVMe SSD. In addition to supporting legacy displays such as two VGA ports, the rugged PC provides one DisplayPort and one HDMI port.
Save session at any time

In that scenario, could only save the session at shutdown. Which I was not entirely happy with. If doing some important work that don't want to lose, having to reboot just to save the session, is not satisfactory.
Linux Plumbers Conference Refereed-Track Deadlines

The proposal deadline is June 12, which is right around the corner. We have excellent submissions, for which we gratefully thank our submitters! For the rest of you, we do have one problem, namely that we do not yet have your submission. So please point your browser at the call-for-proposals page and submit your proposal. After all, if you don’t submit it, we won’t accept it!
Bitcoin Core

There is a new application available for Sparkers: Bitcoin Core
raku & rust: a romance? – Physics::Journey

Rust is blazingly fast and memory-efficient: with no runtime or garbage collector, it can power performance-critical services, run on embedded devices, and easily integrate with other languages. Rust continues the spirit of C with emphasis on code safety and performance with a compiled approach. Raku is an open source, gradually typed, Unicode-ready, concurrency friendly programming language made for at least the next hundred years. Raku continues the spirit of Perl with interpreter-like code generation (actually on MoarVM), one-liners, shell-centric, lightweight objects and expressiveness to get code up and running fast.

Using GNU/Linux Like It's Windows

Newest Version of Systemd Includes Experimental Feature for A/B-Style Updating
SystemD Is Being "Forced" Upon Us (Myth Busted!) - Invidious

I keep seeing the systemd haters spouting their nonsense on the Internet.
Setup Windows EXE on Linux - Invidious

Using Windows Setup EXEs can be difficult on Linux. This shows you how to do that with a variety of different Windows programs and how to interface with existing programs.
New malware for Windows Subsystem for Linux steals browser auth cookies [Ed: This is a Windows issue, not a "Linux" issue, but Microsoft-connected sites spin it like this]

Builder GTK 4 Porting, Part V

Small changes here and there for template-glib to cover more cases for us in our keybindings effort. Improved type comparisons, fixed some embarrassing bugs, improved both GObject Introspection and GType method resolution. Had some interesting talks with Benjamin about expression language needs within GTK and what things I’ve learned from Template-GLib that could be extracted/rewritten with a particular focus on continuously-evaluating-expressions. Also: Aman Kumar: Beginning my GSoC'22 journey with GNOME

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Support Tux Machines

Help Support TM
Wall of Appreciation

Gizmoz

FOSSMint

Debug Point

LXer

UbuntuBuzz

SparkyLinux

Linux Journal

Linux Today

System 76

Pop!_OS 22.04 LTS has landed!

Kernel Planet

Purism

LinuxSecurity.com Advisories

Debian

It's FOSS

OMG! Ubuntu!

GamingOnLinux

Slashdot

DW Latest Releases

DistroWatch

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

FSF

Ubuntu Buzz

LinuxLinks

Content available under CC-BY-SA

Navigation

Language Selection

Search

Tux Machines Section/s

Authors Information

LWN

Active forum topics

Collabora

9to5Linux

Gnu Planet

FOSS Force

FOSSLinux

Phoronix

OpenSource.com

Kde Planet

Fedora Magazine

Mozilla