Language Selection

English French German Italian Portuguese Spanish

Security

It's called sudo

Filed under
Security

linuxinexile.blogspot: Organizations can no longer tolerate the security risks posed by intentional, accidental or indirect misuse of privileges. You will learn how to securely delegate privileges and authorization without disclosing the root password.

Web Browsers Leave 'Fingerprints' Behind as You Surf the Net

Filed under
Software
Security
Web

eff.org: New research by the Electronic Frontier Foundation (EFF) has found that an overwhelming majority of web browsers have unique signatures -- creating identifiable "fingerprints" that could be used to track you as you surf the Internet.

Open MySQL security holes

Filed under
Software
Security

h-online.com: Oracle's forthcoming version 5.1.47 of MySQL is said to contain several important security patches. The changelog states that the developers have closed three security holes which allow attackers to cause a server crash, obtain unauthorised database access or, in the worst case, inject arbitrary code and execute it on the server.

Botnets exploit Linux owners' ignorance

Filed under
Linux
Security

securecomputing.net: A lack of knowledge and awareness about how to use Linux mail servers could be contributing to the disproportionately large number of Linux machines being exploited to send spam, according to new Symantec Hosted Services research.

Good Security Practices On Linux

Filed under
Security

ghabuntu.com: Some time ago, the open source world was caught by surprise by the announcement of a malware for Linux, hidden in a screensaver for Gnome in gnome.look.org. Security in Linux (as with any operating system) is a matter of habit, then we will list some tips.

Apache.org hit by targeted XSS attack, passwords compromised

Filed under
Software
Security
Web

blogs.zdnet.com: Combining a cross-site scripting (XSS) vulnerability with a TinyURL redirect, hackers successfully broke into the infrastructure for the open-source Apache Foundation in what is being described as a “direct, targeted attack.”

KDE KDM Vulnerability Elevation of Privilage

Filed under
KDE
Security

freetechie.com: Sebastian Krahmer from the SUSE Security team has found a vulnerability in KDM which will allow a local user to elevate their privileges to root access.

A word (or two) about Linux desktop security

Filed under
Linux
Security

cristalinux.blogspot: When I wrote my Windows 7 vs. Ubuntu 10.04 Beta ARTICLE several days ago, I rated Ubuntu higher than Windows in terms of security. In hindsight, I think I was perhaps assuming certain bits and pieces, as well as maybe not thoroughly explaining why I thought that was the case.

OS of the Future: Built for Security

Filed under
OS
Software
Security

eweek.com: Led, somewhat ironically, by Microsoft Windows, operating system vendors and some other software vendors have been making their products more secure by default. They also have been providing tools and best-practice guidelines for application developers to improve security.

Becoming a "Linux Security Artist"

Filed under
Security

linux.com: After forty years in the commercial computing business, the one idea that has been drilled into me by security professionals is the fact that there is no such thing as a secure computer system, only levels of insecurity.

Syndicate content

More in Tux Machines

Defending the Free Linux World

Co-opetition is a part of open source. The Open Invention Network model allows companies to decide where they will compete and where they will collaborate, explained OIN CEO Keith Bergelt. As open source evolved, "we had to create channels for collaboration. Otherwise, we would have hundreds of entities spending billions of dollars on the same technology." Read more

And the best distro of 2014 is ...

Looking back at my 2013 summary, I just realized I'm a bloody prophet. I wanted openSUSE to make a nice comeback, and it did. And I wanted Fedora to shine, and it did, and it's version 20 no less. The utter and total dominance of the Ubuntu family has been shattered, and this is a very good thing. Competition is always good. What about Mint, you ask? Well, Linux Mint behaved splendidly, but this year, the few spins I tried weren't as sharp and spectacular as what we saw in 2013. Not necessarily a bad thing, but the best-of is more than just a list of grades. It also packs an emotional element, a surprise element, as well as the overall combination of what the selected distributions have achieved with their given parameters. For instance, CentOS is not supposed to be a desktop system, so when it does that well, it's more interesting than similar results with the stock Ubuntu family members and cousins. Hence, this list and its players. Of course, this is entirely my private, subjective observation, but I think it fits the global shift in the Linux field. With the Mir vs Wayland game, a big delay in Ubuntu Edge, and a general cooling off in the distro space, seeing more effort from outside the Ubuntu range is only natural. And welcome. That said, the big winner is still Trusty, and it shows that even though some years may be rougher than others, Ubuntu has its merit and cannot be easily disregarded, no matter how we feel, or want to feel, even if purely on a reactionary basis. And to prove us all wrong, Canonical has baked a phenomenal LTS release, which should bring much joy and fun to Linux users worldwide for years to come. I hope you've liked this compilation. See you next year. Read more

Judge spanks SCO in ancient ownership of Unix lawsuit

IBM has had a win in its long court battle with SCO over just who owns Unix and, by extension, whether Linux is an unauthorised clone. Some quick and simplified history: SCO – short for The Santa Cruz Operation – was a software company that offered a version of Unix for x86 chippery. When Linux came along in the late 90s and started turning into a business, SCO more or less sank and it attacked both Novell and IBM for their role in helping to spread Linus Torvalds' brainchild. At stake was whether those who distribute and profit from Linux should share some of their bounty with SCO. If a court had found in SCO's favour, it would have been bad news for Linux. The Novell suit ran for about six years, but SCO lost. After that, SCO endured all manner of financial strife, but managed to crawl from the crypt more than once. Last year, SCO managed to secure approval to re-open the case against IBM. Read more Also: ENOUGH! Says Nuffer

Hands-On with Tanglu 2.0 Bartholomea annulata

Tanglu GNU/Linux is a distribution based on Debian Testing. When I wrote recently about the future of Linux Mint Debian Edition and other distributions based on Debian Testing, what I was concerned about was the fact that they will be changing their base to Debian Stable in the near future. Tanglu has not given any indication that they intend to change, so this could be a good alternative for the future. Read more