Language Selection

English French German Italian Portuguese Spanish

Security

Mitro Releases a New Free & Open Source Password Manager

Filed under
OSS
Security

Today, Twitter acquired a password manager startup called Mitro. As part of the deal, Mitro will be releasing the source to its client and server code under the GPL.

Read more

DHS Wants To Help Developers Secure Open-Source Software

Filed under
OSS
Security

The Department of Homeland Security is funding a project aimed at protecting the nation's critical infrastructure and networks by providing tools that test for defects in open source and commercial software.

Read more

Tor anonymity service says unknown attackers compromised its network

Filed under
Moz/FF
OSS
Security

The Tor encryption service is a high-profile bastion of computer security, but the project appears to have been compromised earlier this year. Today, the Tor Project blog announced that an unknown party likely managed to gather information about people who were looking up hidden services — websites that users can operate and visit anonymously, like Silk Road — and could theoretically have compromised other parts of the network.

Read more

The security flaws in Tails Linux are not its only problem

Filed under
Security
Debian

If you want to use Tor, then Tails is your best friend. Tails is a version of Linux that sends data through the Tor network.

All Internet traffic to/from Tails goes through Tor, making it resistant to end user mistakes. Tails is not normally installed on a computer, instead it's run from a bootable DVD, USB flash drive or flash memory card. Compared to the Tor Browser Bundle, Tails is unquestionably the way to go. Ed Snowden uses it.

Read more

Also related:

Homeland Security gets into software security

Filed under
OSS
Security

Personally, while I still think the DHS is an unlikely sponsor for this project — the National Security Agency (NSA) or NIST seem like its more natural home — I think the SWAMP sounds like a very useful one-stop for anyone wanting to double-check their pre-production code for errors before release.

Read more

The world's most secure OS may have a serious problem

Filed under
GNU
Linux
Security
Debian

The Tails operating system is one of the most trusted platforms in cryptography, favored by Edward Snowden and booted up more than 11,000 times per day in May. But according to the security firm Exodus Intelligence, the program may not be as secure as many thought. The company says they've discovered an undisclosed vulnerability that will let attackers deanonymize Tails computers and even execute code remotely, potentially exposing users to malware attacks. Exodus is currently working with Tails to patch the bug, and expects to hand over a full report on the exploit next week.

Read more

Docker security with SELinux

Filed under
GNU
Linux
Server
Security

This article is based on a talk I gave at DockerCon this year. It will discuss Docker container security, where we are currently, and where we are headed.

Read more

Tor, trust and the NSA

Filed under
OSS
Security

Tor is an anonymizing network that’s designed to protect you by “bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody watching your Internet connection from learning what sites you visit, and it prevents the sites you visit from learning your physical location.”

That’s cool, but does Tor really guarantee you what you think or assume it does? I can’t say for sure, but when facing a state-sponsored entity with time and resources on its side, you cannot be too careful. At least if pays to know what other people think about Tor, especially when what they have to say runs counter to what you know, or what you think you know.

Read more

Avoid the Android vampire apps

Filed under
Android
Security

Some Android applications will drain your smartphone or tablet of battery life, storage or bandwidth like a blood-sucking fiend. Here's what's what with the worst of the worst.

Read more

Snowden on Dropbox: It’s hostile to privacy

Filed under
Software
Security

Dropbox is a very popular Cloud storage services, but is it good for the privacy-conscious?

According to Edward Snowden, it’s not.

In an interviewed published on GuardianNews, Snowden described Dropbox as “hostile to privacy.”

So what are the better alternatives. Snowden recommended Cloud storage services with zero-knowledge as a key feature.

Read more

Syndicate content

More in Tux Machines

Salix Fluxbox 14.1 Is a Lightweight Modular Distro Based on Slackware

Along with the Openbox version of Salix, the Fluxbox edition is one of the lightest iterations available in the series. Unfortunately, it's not exactly on the list of priorities for the developer and it's been trailing a little behind, but now it's ready. Salix is one the few very active distributions based on Slackware, which is a famous and very stable operating system that has been around for quite a while. It's rather different from what everyone else is doing because it is a modular system and it has a rolling release model. Read more

Oracle and Canonical collaborate on support for Oracle Linux on Ubuntu

As part of this collaboration, Canonical will support Ubuntu as a guest OS on Oracle Linux OpenStack, and Oracle will support Oracle Linux as a guest OS on Ubuntu OpenStack. Canonical will test Oracle Linux as a guest OS in its OpenStack Interoperability Lab (OIL) program. This gives customers the assurance the configuration is tested and supported by both organisations. Read more

Debian Switches Back To GNOME As Its Default Desktop

There still though is the chance for change as Hess explains, "Some desired data is not yet available, but at this point I'm around 80% sure that gnome is coming out ahead in the process. This is particularly based on accessibility and to some extent systemd integration... The only single factor that I think could outweigh the above is media size, if there was a strong desire by Debian to see a single CD with a standalone usable desktop. However, the Debian live team doesn't care about fitting on a traditional CD; and while the Debian CD team hasn't made a statement, my impression as a member is that this is not something we care enough about any more to make it a hard blocker on the default desktop." Read more

3 tools that make scanning on the Linux desktop quick and easy

Whether you're moving to a paperless lifestyle, need to scan a document to back it up or email it, want to scan an old photo, or whatever reason you have for making the physical electronic, a scanner comes in handy. In fact, a scanner is essential. But the catch is that most scanner makers don't have Linux versions of the software that they bundle with their devices. For the most part, that doesn't matter. Why? Because there are good scanning applications available for the Linux desktop. They work with a variety of scanners, and do a good job. Let's take a look at a three simple but flexible Linux scanning tools. Keep in mind that the software discussed below is hardly an exhaustive list of the scanner software that's available for the Linux desktop. It's what I've used extensively and found useful. Read more