Language Selection

English French German Italian Portuguese Spanish

Security

Free and Open Source Electronic Signature in Costa Rica

Filed under
LibO
OSS
Security

The LibreOffice component designed by the University of Costa Rica (UCR) is similar to similar software enhancements currently used for electronic signatures in other countries.

Read more

TOR GUI `SELEKTOR` SEES NEW MAJOR RELEASE

Filed under
OSS
Security

SelekTOR, an open source Java-based GUI front-end for Tor, was updated to version 3.12 (now 3.12e) recently and it includes new advanced options as well as a new Tor Monitor panel that shows the Tor client startup info and its current status.

Read more

UNITY PRIVACY INDICATOR 0.4 RELEASED WITH NEW PRIVACY SETTINGS

Filed under
Security
Ubuntu

For those not familiar with Privacy Indicator, this is an Ubuntu AppIndicator especially created for Unity, which allows you to control various privacy aspects.

Until this release, the indicator could be used to enable / disable Dash online search results and Zeitgeist logging (and also clear the Zeitgeist log), clear recently used files (which show up in the Nautilus or Nemo "Recent" sidebar item for instance) and to show or hide your real name on the Unity panel.

Read more

Kickstarter pulls Anonabox, a Tor-enabled router that raised over $585,000

Filed under
Development
Security

The Anonabox, which was created by August Germar, of Chico, California, aimed to be an “open source embedded networking device designed specifically to run Tor.” Its fundraising goal was $7,500, and in five days, it raised $585,549 from nearly 9,000 backers—including three Ars editors.

Germar told Ars that he was not aware that it had been suspended until Ars forwarded him an e-mail from Kickstarter outlining the possible reasons why it could have been cancelled.

Read more

Tor Browser 4.0 is released

Filed under
Security
Web

This release also features an in-browser updater, and a completely reorganized bundle directory structure to make this updater possible. This means that simply extracting a 4.0 Tor Browser over a 3.6.6 Tor Browser will not work. Please also be aware that the security of the updater depends on the specific CA that issued the www.torproject.org HTTPS certificate (Digicert), and so it still must be activated manually through the Help ("?") "about browser" menu option. Very soon, we will support both strong HTTPS site-specific certificate pinning (ticket #11955) and update package signatures (ticket #13379). Until then, we do not recommend using this updater if you need stronger security and normally verify GPG signatures.

Read more

DOCKER 1.3: SIGNED IMAGES, PROCESS INJECTION, SECURITY OPTIONS, MAC SHARED DIRECTORIES

Filed under
Linux
Server
Security

First up, in this release, the Docker Engine will now automatically verify the provenance and integrity of all Official Repos using digital signatures. Official Repos are Docker images curated and optimized by the Docker community to be the best building blocks for assembling distributed applications. A valid signature provides an added level of trust by indicating that the Official Repo image has not been tampered with.

Read more

What you need to know about the SSLv3 “POODLE” flaw (CVE-2014-3566)

Filed under
Red Hat
Security

So, the bottom line is: on servers and clients, disable SSLv3 (and, of course, older). Updates to Fedora packages which make this the default will be forthcoming, but in the meantime, you can do it manually. Red Hat is working on a security blog article explaining the steps to take for different software; we’ll link to that when it becomes available.

Read more

South Korea Faces The Bill For Lock-in To Wintel

Filed under
Microsoft
Security

I expect Korea will have to redo everything and get it right this time. Let’s hope they demand GNU/Linux be used for on-line/financial transactions and to protect data but failing that let’s hope they make GNU/Linux optional and the people can decide. There’s something refreshing about a whole country aroused about insecurity with that other OS on the check-list of things to fix.

Read more

7 free tools every network needs

Filed under
OSS
Security

From device discovery to visibility into systems, networks, and traffic flows, these free open source monitoring tools have you covered

Read more

With This Tiny Box, You Can Anonymize Everything You Do Online

Filed under
OSS
Security

No tool in existence protects your anonymity on the Web better than the software Tor, which encrypts Internet traffic and bounces it through random computers around the world. But for guarding anything other than Web browsing, Tor has required a mixture of finicky technical setup and software tweaks. Now routing all your traffic through Tor may be as simple as putting a portable hardware condom on your ethernet cable.

Read more

Syndicate content

More in Tux Machines

In wake of Anonabox, more crowdsourced Tor router projects make their pitch

Last week, Ars reported on the story of Anonabox, an effort by a California developer to create an affordable privacy-protecting device based on the open source OpenWRT wireless router software and the Tor Project’s eponymous Internet traffic encryption and anonymization software. Anonabox was pulled from Kickstarter after accusations that the project misrepresented its product and failed to meet some basic security concerns—though its developers still plan to release their project for sale through their own website. But Anonabox’s brief campaign on Kickstarter has demonstrated demand for a simple, inexpensive way to hide Internet traffic from prying eyes. And there are a number of other projects attempting to do what Anonabox promised. On Kickstarter competitor Indiegogo there’s a project called Invizbox that looks almost identical to Anonabox—except for the approach its team is taking to building and marketing the device. Read more

Debian Now Defaults To Xfce On Non-x86 Desktops

Back in September Debian switched back to the GNOME desktop by default in place of Xfce for the upcoming Debian 8.0 "Jessie" release. However, as of today, the non-x86 versions of Debian have flip-flopped once again back to Xfce. Debian switched back to GNOME in September over reasons dealing with accessibility, systemd integration, and other factors when seeing what was the best fit to be the default for Debian 8 Jessie. However, now for platforms aside from x86 and x86_64, Xfce has returned to the default over poor experiences in using the GNOME Shell. Read more

Phoenix Is Trying To Be An Open Version Of Apple's Swift

Apple unveiled the Swift programming language at this year's WWDC event but sadly it's still not clear whether Apple will "open up" the language to let it appear on non-Apple platforms. Swift is built atop LLVM and designed to be Apple's successor to Objective-C in many regards while suppoorting C/Obj-C/Obj-C++ all within a single program. With non-Apple folks being interested in the language, it didn't take long before an open-source project started up around it. Ind.ie has today announced their Phoenix project that aims to be a free and open version of Apple's Swift programming language. The work is being led by Greg Casamento who is also the leader of GNUStep, the common open-source implementation of Apple's Cocoa frameworks. Read more

Google Chromebook quietly takes aim at the enterprise

Google's Chromebook is a cheap alternative to a more expensive Windows or Mac PC or laptop, but up until recently it lacked any specific administrative oversight tools for enterprise IT. While IT might have liked the price tag, they may have worried about the lack of an integrated tool suite for managing a fleet of Chromebooks. That's changed with release of Chromebook for Work, a new program designed to give IT that control they crave for Chromebooks. Read more