Language Selection

English French German Italian Portuguese Spanish

Security

Mozilla Start Drafting Plans To Deprecate Insecure HTTP

Filed under
Moz/FF
Security

Barnes is hoping for more people to move to HTTPS by limiting new browser features from becoming available over insecure HTTP, in the name of security. He wrote in a mailing list post, "In order to encourage web developers to move from HTTP to HTTPS, I would like to propose establishing a deprecation plan for HTTP without security. Broadly speaking, this plan would entail limiting new features to secure contexts, followed by gradually removing legacy features from insecure contexts. Having an overall program for HTTP deprecation makes a clear statement to the web community that the time for plaintext is over -- it tells the world that the new web uses HTTPS, so if you want to use new things, you need to provide security."

Read more

Encryption Support For EXT4

Filed under
Linux
Google
Security

Ted published the twenty-two patches earlier this month for implementing encryption support into EXT4, complete with file-name and symlink encryption. The patches were developed by Ted Ts'o and Michael Halcrow.

Read more

Manjaro Devs Fix Embarrassing Expired SSL Certificate Problem

Filed under
Linux
Security

The Manjaro developers have finally fixed the embarrassing problem they had with an expired SSL certificate that made accessing their forums and wiki much harder.

Read more

Don’t judge the risk by the logo

Filed under
Red Hat
Security

It’s been almost a year since the OpenSSL Heartbleed vulnerability, a flaw which started a trend of the branded vulnerability, changing the way security vulnerabilities affecting open-source software are being reported and perceived. Vulnerabilities are found and fixed all the time, and just because a vulnerability gets a name and a fancy logo doesn’t mean it is of real risk to users.

Read more

Mozilla Working to Provide Tracking Protection in Firefox, How to Enable It

Filed under
Moz/FF
Security

Mozilla is working on a new feature called Tracking Protection that is helping users identify and block websites that collect personal data despite the fact that the browser has the "Do Not Track" policy enabled.

Read more

Tor 0.2.6.7 Fixes Security Issues That Could Be Used by Attackers to Crash Hidden Services and Clients

Filed under
Security

A new version of the popular Tor software that enables anonymous communication between computers around the world was released today, April 7, in order to fix two security issues discovered in the previous versions.

Read more

How Linux Australia Handled Its Recent Data Breach

Filed under
GNU
Linux
Security

In an email, Linux Australia revealed that its servers where compromised during the morning of 22 March. Over the course of a few hours, the organisation believes its databases containing conference information were dumped to an external source. A “currently unknown vulnerability” caused a buffer overflow that allowed the hacker to acquire root access.

Read more

Linux Australia server hacked, personal information may have been stolen

Filed under
Linux
Security

A public server belonging to Linux Australia, the umbrella group for Linux user groups in the country, were breached on March 22, and the personal information of members may have been stolen.

Read more

Lots of GnuPG Vulnerabilities Have Been Closed in All Ubuntu OSes

Filed under
Security
Ubuntu

Canonical has published details in a security notice about a number of GnuPG vulnerabilities that have been found and fixed in Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems.

Read more

Threat Modeling Tool Created by Mozilla Winter of Security Team

Filed under
Moz/FF
Security

A web-based threat modeling tool was developed by undergraduate students at St. Mary’s University in Nova Scotia, Canada, as part of Mozilla’s Winter of Security project in 2014.

Read more

Syndicate content

More in Tux Machines

KDE Announces the Beta of KDE Applications 15.08, Based on KDE Frameworks 5

After having a lot of fun at Akademy 2015, the annual world summit of KDE, which took place in A Coruña, Galicia, Spain between July 25-31, the KDE developers finally decided to post the announcement for the Beta release of KDE Applications 15.08. Read more

Zorin OS 10 Core & Ultimate have arrived

We are excited to finally announce the release of Zorin OS 10 with the availability of the Zorin OS 10 Core and Ultimate editions. Zorin OS 10 is our best, most beautiful release yet. We have made major strides with the visual styling in Zorin OS. In addition to the refined & perfected desktop theme and the new default FreeSans desktop font, we have introduced a stunning new icon theme, based on the elementary and elementary-add icon themes. This is its first major overhaul since Zorin OS 2.0. Read more

Zidoo's 'X1' is a $59 Android media box that touts its 4K prowess

Bottom line, the Zidoo X1 checks all the boxes when it comes to streaming and playing local media. The X1 is affordable with an MSRP of $59 USD and comes with a one year warranty. Despite its paltry specifications, the X1 was able to handle pretty much all movie files and streaming duties. The only concern would be how well Zidoo would continue to support the device via software updates. While this doesn't quite beat pricing from the likes of the Chromecast or the MK808B it does provide more features. While this is my first time with an true Android media box, I found that the experience as pretty seamless when it was all set up. While the X1 was able to stand up the challenge of 4K, the real question is: when will see more 4K UHD content that is easily accessible. Read more

today's leftovers

  • Dawn of the data center operating system
    How microservices architecture and Linux containers will tame distributed computing for developers and ops
  • 30 Sys Admins to Follow on SysAdmin Day
    Systems administrators: They keep our high-tech world up and running. From capacity planning, to 3 a.m. phone calls, to retiring that 10-year-old server that uses more power than your whole house, sys admins do it all. Open source communities would not be able to thrive without the networks, services, and tools that allow for communication and collaboration, and sys admins are the ones who work thanklessly year-round to keep them going. July 31 is System Administrator Appreciation Day, a day for all of us to express our undying gratitude for sys admins. Sure, you could buy your favorite sys admin cake and ice cream, or perhaps a nice gift card. You could even go as far as not breaking the server for just one day. You also can follow these 30 sys admins.
  • See What Systemd 223 Brings New
  • Sparkfun's pcDuino Acadia Benchmarks Against Other ARM SBCs
    Sparkfun's pcDuino Acadia os a $119 USD development board powered by a Freescale i.MX6 quad-core Cortex-A9 SoC with Mali 400 graphics. There's 1GB of RAM and other connectivity options for this board.
  • Linux Based Solus OS Now Boots in Flat 1.2 Seconds
    Solus OS is a Linux distro that was built from scratch and uses a new desktop environment called Budgie. You can consider it as the next version of the Solus OS as it was built by the same developer team, so they didn’t bother changing the name for a new operating system.
  • Arch Linux 2015.08.01 Has Been Released. Upgrade Now!
    Arch Linux 2015.08.01 has been released and is powered by Kernel 4.1 and includes all the update patches since the 1st of July 2015.
  • uReadIt 3 – The Best Reddit Client For Ubuntu Touch
    As you may know, uReadIt is an open-source Reddit client for Ubuntu Touch, being one of the best native apps for Ubuntu mobile.
  • You Can Now Watch Flash Content With MPV On Ubuntu
    As you may know, Adobe Flash is not the safest thing on the internet this days. Mozilla even disabled it from the Firefox browser a while, due to the vulnerabilities found lately.
  • Ubuntu MATE 15.04 Running on the Rikomatic MK808B
    Ubuntu MATE, the latest member of the Ubuntu family, has been spotted running on the MK808B Plus Quad-Core mini TV box device. The device runs with Android 4.4 by default, but a third party developer has tweaked it to run Ubuntu.
  • LEGO Smart Home
    We spoke to Bhavana Srinivas and Geremy Cohen from PubNub about their LEGO Smart Home model, a proof of concept project that shows how you can use the Raspberry Pi with communication platform PubNub in order to automate your household electronics and other Internet of Things devices. You can read the full piece in the latest issue.
  • Compact module runs Linux on quad-core Braswell
    Congatec announced a compact, low power computer-on-module based on Intel’s 14nm “Braswell” SoCs, and featuring triple display outputs, and up to 4K video.