Language Selection

English French German Italian Portuguese Spanish

Security

Docker security with SELinux

Filed under
GNU
Linux
Server
Security

This article is based on a talk I gave at DockerCon this year. It will discuss Docker container security, where we are currently, and where we are headed.

Read more

Tor, trust and the NSA

Filed under
OSS
Security

Tor is an anonymizing network that’s designed to protect you by “bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody watching your Internet connection from learning what sites you visit, and it prevents the sites you visit from learning your physical location.”

That’s cool, but does Tor really guarantee you what you think or assume it does? I can’t say for sure, but when facing a state-sponsored entity with time and resources on its side, you cannot be too careful. At least if pays to know what other people think about Tor, especially when what they have to say runs counter to what you know, or what you think you know.

Read more

Avoid the Android vampire apps

Filed under
Android
Security

Some Android applications will drain your smartphone or tablet of battery life, storage or bandwidth like a blood-sucking fiend. Here's what's what with the worst of the worst.

Read more

Snowden on Dropbox: It’s hostile to privacy

Filed under
Software
Security

Dropbox is a very popular Cloud storage services, but is it good for the privacy-conscious?

According to Edward Snowden, it’s not.

In an interviewed published on GuardianNews, Snowden described Dropbox as “hostile to privacy.”

So what are the better alternatives. Snowden recommended Cloud storage services with zero-knowledge as a key feature.

Read more

How to use public PCs safely with Linux

Filed under
GNU
Linux
Security
HowTos

Public PCs aren't safe, so what's a PC user to do? Carry a Linux distribution on a USB stick in their backpocket of course!

Read more

Announcing Project Zero

Filed under
Google
OSS
Security

Security is a top priority for Google. We've invested a lot in making our products secure, including strong SSL encryption by default for Search, Gmail and Drive, as well as encrypting data moving between our data centers. Beyond securing our own products, interested Googlers also spend some of their time on research that makes the Internet safer, leading to the discovery of bugs like Heartbleed.

The success of that part-time research has led us to create a new, well-staffed team called Project Zero.

Read more

LibreSSL Portable Encounters Its First Release

Filed under
OSS
Security

OpenBSD developers have announced their first release of LibreSSL portable.

LibreSSL 2.0.0 is the release and is tested to build on Linux, Solaris, Mac OS X, and FreeBSD systems. Bob Beck of OpenBSD explains, "This is intended as an initial release to allow the community to start using and providing feedback. We will be adding support for other platforms as time and resources permit."

Read more

Samsung Nixes Knox: The Android Security Saga Continues

Filed under
Android
Security

Granted, Google has been updating handset issues at a quicker pace – particularly when it comes to security patches, via Play Services –and so far, the telcos have not played spoilers. But remember: Google has not initiated a move to push an entirely new OS directly to users except to those who own Google’s telco independent Nexus brand devices. Keep in mind that there’s a big difference between updating a feature or security patch and producing an entirely new OS. OS updates typically up the Kernel and the radios. It will be interesting (and historical) if the telcos continue to stay out of the way.

Read more

[Fedora] Simple Patch Policy

Filed under
Red Hat
Security

Following the approval of the Simple Patch policy, all the necessary pieces are now in place.

Read more

How Card.com Is Securing Itself and Its Users With Open Source

Filed under
OSS
Drupal
Security

"We're heavily involved in Drupal. I'm a member of the Drupal security team and the former lead of the team for over two years," Knaddison said. "So it's an area where we have a fair amount of expertise and depth, and we feel that our situation is best served by fixing vulnerabilities directly in the software itself."

Read more

Syndicate content

More in Tux Machines

Exclusive: Elephone P1000, Snapdragon 801, 2K and CyanogenMod!

Elephone, most known for their every expanding range of Mediatek phones and as being one of the first manufacturers in China to offer an Android 4.4 Kitkat update, are preparing a 2014 Flagship killer of their own. The Elephone P1000 will be the most exciting Elephone smartphone to date with features we have not seen from the company so far. The P1000 will boast a 2.5Ghz Snapdragon 801 processor, Adreno 330 GPU, 3GB RAM and 32GB of on board memory. This compared to their current phones is an amazing achievement! Read more

Ken Starks to Keynote At Ohio LinuxFest

As most FOSS Force readers probably already know, Ken’s articles here and on his own Blog of Helios are only a small part of what he does. He’s one of those too rare people who works to make a difference in this world and he does so by leveraging the power of Linux and free and open source software for the greater good. As the founder of the Reglue project (originally called Helios), he’s responsible for putting refurbished computers in the hands of financially challenged students in and around the Austin, Texas area where he resides. Over the years there have been thousands of these students and many of them, given Reglue computers while in middle or high school, have gone on to not only earn undergraduate degrees, but to attend graduate school as well — often studying computer science. Read more

Mesa 10.3 release candidate 1

Mesa 10.3 release candidate 1 is now available for testing. The current plan is to have an additional release candidate each Friday until the eventual 10.3 release, (Ian can follow up to state what the planned date is for that). The tag in the git repository for Mesa 10.3-rc1 is 'mesa-10.3-rc1'. I have also pushed a tag '10.3-branchpoint' to mark the point where master and 10.3 diverge. This should make git-describe a bit more useful. As a reminder, with the 10.3 branch now created, patches nominated with: CC: will now be candidates only for the new 10.3 branch. To nominate patches for the older 10.2 branch as well, please use: CC: "10.2 10.3" The expectation is that the 10.2 branch will remain alive with bi-weekly releases until after 10.3.1 release. Mesa 10.3 release candidate 1 is available for download from ftp://freedesktop.org/pub/mesa/10.3 Read more

Canonical Joined The Khronos Group To Help Mir/Wayland Drivers

Canonical's specific involvement with the Khronos Group isn't listed and we haven't seen Canonical names closely associated with any major specs out of the different working groups to date. However, Oliver Ries, the Head of Engineering Product Strategy at Canonical, wrote into Phoronix that they joined the group for pushing their display server agenda with trying to work towards an underlying driver standard for Mir/Wayland. Oli noted in his email, "Canonical has joined Khronos in order to help establish the necessary driver standard that is required for Mir (and Wayland) to succeed. We have specifically contributed to the current standard proposal/draft." Read more