Language Selection

English French German Italian Portuguese Spanish

Security

Developer Ponders Release of Linux Malware

Filed under
Linux
Security

eweekeurope.co.uk: The lack of malware on Linux may be about to change after a developer admitted he has developed a 'package of malware for Unix/Linux'

FreeBSD bug gives untrusted root access

Filed under
Security
BSD

theregister.co.uk: A security bug in the latest version of the FreeBSD can be exploited to grant unprivileged users complete control over the operating system, a German researcher said Monday.

Advisory Against WiFi Drivers in Linux Staging Tree

Filed under
Linux
Software
Security

ubuntu-user.com: Dan Williams, Red Hat collaborator and NetworkManager developer, might be upset but doesn't let it get to him. In the GNOME blog, he advises "just say no" to WiFi drivers in the linux-staging tree and recommends changes.

NSA helps Apple, Sun and Red Hat harden their systems

Filed under
Linux
Software
Security

h-online.com: That the American National Security Agency has previously helped Microsoft harden various Windows versions is old hat, but what is news is that the NSA now also assists Apple, Sun and Red Hat with increasing the security of their operating systems.

HookSafe Protects Kernel from Rootkits

Filed under
Linux
Security

linux-magazine.com: A research group in the computer sciences faculty at the North Carolina State University has written a prototype for a rootkit protector that uses kernel object hooks.

Vulnerability in the GIMP image editing tool

Filed under
Security
GIMP

h-online.com: According to security services provide Secunia, a vulnerability in the free image editing tool GIMP (GNU Image Manipulation Program) can potentially be exploited to compromise a users system.

A strangely compromised Linux box

Filed under
Linux
Security

aplawrence.com: A customer reported that a Linux machine used for ssh access (to in turn give telnet access to an ancient SCO machine) was refusing logins. I asked him to try logging in as root at the console; he was unable to do so.

Another Protocol Bites The Dust

Filed under
Security

links.org: For the last 6 weeks or so, a bunch of us have been working on a really serious issue in SSL. In short, a man-in-the-middle can use SSL renegotiation to inject an arbitrary prefix into any SSL session, undetected by either end.

GNOME Keyring

Filed under
Software
Security

mdeslaur.blogspot: For the past week or so, people have been talking about a “security issue” in Seahorse. This sums up my opinion on the matter: This isn't a security issue, and there is no good way to fix it.

Bug in latest Linux gives untrusted users root access

Filed under
Linux
Security

theregister.co.uk: A software developer has uncovered a bug in most versions of Linux that could allow untrusted users to gain complete control over the open-source operating system.

Syndicate content

More in Tux Machines

GNU/Linux on the Desktop Versus Proprietary Forms

  • Why I use a Mac computer, but an Android phone
    Yes, you could use a flavour of Linux on cheaper hardware, but then you trade the great Mac graphical interface with the ones available to Linux. You can fight me in the comments, but deep down you know I’m right. MacOS comes with Bash, and many of the tools those familiar with Linux would expect to have by default in their favourite distribution, including basics like “whois”, which aren’t installed in Windows by default.
  • Everything you knew about Chromebooks is wrong
    The original assumed vision of the Chromebook platform was a laptop and operating system capable of running only the Chrome web browser. You could do anything you wanted, as long as you wanted to stay on the web at all times. Today, the best new Chromebooks can runs apps from three additional operating systems. Not only do Chromebooks run apps, but they run more apps without dual- or multi-booting than any other computing platform. Chromebooks can run apps from Android, Linux and Windows concurrently in the same session.
  • Games, Tests and GitLab CI
    We are getting midterm of the GNOME 3.30 development cycle and many things already happened in the Games world. I will spare the user facing news for later as today I want to tell you about development features we desperatly needed as maintainers: tests and continuous integration. TL;DR: GLib, Meson, Flatpak and GitLab CI make writing and running tests super easy!

Graphics: Vulkan and Vega M

  • Vulkan Virgl Has Kicked Off For Supporting This Graphics/Compute API Within VMs
    Of the hundreds of projects for this year's Google Summer of Code, there are many interesting GSoC 2018 projects but one of those that I am most excited for is Vulkan-Virgl for getting this modern API supported with hardware acceleration by guest virtual machines. As implied by the name, this effort is based upon the Virgl project started by David Airlie and originally tasked with getting OpenGL acceleration to guest VMs using a fully open-source Linux driver stack. Virgl has been in good shape for a while now with OpenGL, while this summer the hope is to get the Vulkan API support going for opening up VMs to using this high-performance graphics and compute API.
  • AMDVLK Driver Lands Half-Float Additions, Many Other Improvements
    There's been another weekly-ish public code push to the AMDVLK open-source AMD Vulkan Linux driver stack and this time around it's heavy on feature work. There has been a fair amount of changes pertaining to half-float (FP16) support including support for the AMD_gpu_shader_half_float extension, prepping for VK_AMD_gpu_shader_half_float_fetch, FP16 interpolation intrinsics and register settings, and more.
  • Vega M Graphics On Intel Kabylake G CPUs Are Beginning To Work Under Linux
    We have been covering the Linux driver upbringing of "Vega M" for the Vega/Polaris graphics found in select newer Intel "Kabylake G" processors. The code is still in flight before it will work in all released versions of the Linux driver components, but for those willing to build the code or rely upon third party repositories, Vega M is now working on Linux. As I have covered in various past articles, the open-source driver support for Radeon Vega M is queued into DRM-Next for the upcoming Linux 4.18 kernel cycle, Mesa 18.1 albeit with new hardware I always recommend using the latest Git (current Mesa 18.2), and there are also binary GPU microcode files needed too.

Plasma 5.13 – Amazing Tux, How Sweet Plasma

Plasma 5.13 is (going to be) a very nice release. It builds on the solid foundation that is the LTS edition, and adds cool, smart touches. The emphasis is on seamless integration of elements, which is what separates professionals from amateurs. It’s all around how the WHOLE desktop behaves, and not individual programs in isolation. And Plasma is making great strides, offering a polished version of an already mature and handsome product, with extra focus on fonts, media and browser connectivity and good performance. There are some rough patches. Apart from the obvious beta issues, those goes without saying, KDE Connect ought to be a true multi-phone product, the network stack really needs to be spotless, and that means full Microsoft Windows inter-operability, Spectacle should allow for configurable shadows and alpha channel, and I want to see if the decorative backend has been cleaned up, i.e. can you search and install new themes and icons without encountering useless errors and inconsistencies. But all in all, I’m quite impressed. The changes are big and noticeable, and above all, meaningful. You don’t just get features for the sake of it, you get things that improve the quality and consistency of the desktop, that maximize fun and productivity, and there’s deep thought in orchestrating it all together. It ain’t just a random bunch of options that happen to work. I like seeing patterns in things, and I’m happy when there’s functional harmony. This spring season of distro testing hasn’t been fun, and Plasma 5.13 is balm for my weary wrists, so hurting from all that angry typing. More than worth a spin, and highly recommended. Full steam on, Tuxers. Read more Also: This week in Usability & Productivity, part 20

Sad News! Development Stopped for Korora and BackSlash Linux

It seems more and more small distributions are facing a had time. Recently we saw the crisis at Void Linux. Now we have two more small Linux distributions calling it quit, albeit temporarily. Read more