Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Serious flaws in widespread embedded TCP/IP stack endanger industrial control devices

    Coordination for the disclosure INFRA:HALT vulnerabilities lasted almost a year, much longer than the 90 days that's standard for software vulnerabilities. Forescout and JFrog Security Research contacted HCC Embedded about the flaws in September 2020 and worked with the CERT Coordination Center (CERT/CC), the German Federal Cyber Security Authority (BSI), and the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) that's part of the US government's Cybersecurity and Infrastructure Security Agency (CISA).

    Even so, identifying the potentially impacted devices and vendors has been very hard and is an ongoing process. Using queries on the SHODAN search engine, the researchers found around 6,400 publicly accessible devices that run NicheStack. Using its own proprietary database with millions of device fingerprints, Forescout identified 2,500 potentially vulnerable devices from 21 vendors with the most affected industry verticals being process manufacturing, retail, and discrete manufacturing. Around half the identified devices were energy and power industrial control systems.

  • Security updates for Wednesday

    Security updates have been issued by Debian (asterisk, libpam-tacplus, and wordpress), Fedora (buildah and podman), openSUSE (thunderbird and webkit2gtk3), Oracle (kernel and varnish:6), SUSE (kernel, kvm, and webkit2gtk3), and Ubuntu (libdbi-perl and php-pear).

  • It's time to improve Linux's security | ZDNet

    Is Linux more secure than Windows? Sure. But that's a very low bar. Kees Cook, a Linux security expert, Debian Linux developer, and Google Security Engineer, is well aware that Linux could be more secure. As Cook tweeted, "We need more investment in bug fixers, reviewers, testers, infrastructure builders, toolchain devs, and security devs."

  • Qualys partners with Red Hat to improve Linux and Kubernetes security | ZDNet

    Everyone in the Linux and cloud world knows Red Hat. Everyone who pays attention to security knows Qualys. Now, the two are joining forces to bring Qualys's Cloud Agent to Red Hat Enterprise Linux (RHEL) CoreOS and Red Hat OpenShift to better secure both systems.

  • Google: Linux kernel and its toolchains are underinvested by at least 100 engineers • The Register

    Google's open security team has claimed the Linux kernel code is not good enough, with nearly 100 new fixes every week, and that at least 100 more engineers are needed to work on it.

    Kees Cook, a Google software engineer who has devoted much of his time to security features in the Linux kernel, has posted about continuing problems in the kernel which he said have insufficient focus.

    "The stable kernel releases ('bug fixes only') each contain close to 100 new fixes per week," he said. This puts pressure on Linux vendors – including those who support the countless products which run Linux – to "ignore all the fixes, pick out only 'important' fixes, or face the daunting task of taking everything," he said.

  • Biden Warns That The Next Kinetic War Will Be The Result Of A Cyberattack, Which Is Stupid

    The cyberwar hype has been going on for nearly a decade now. And, while it is very much the case that cybersecurity to defend from international actors is very much a real need, it's also true that dangling the threat of cyberwarfare over the public's heads has been purposefully done to excuse governmental power grabs at the military and intelligence agency levels. It's also been true throughout this hype-fest that the US government has been practically begging for there to be a cyberwar in the first place... except that other nations mostly seem to play with this at the most minimal levels. And, in the past, the American government has indicated that real shooting wars may result from cyberwar activities.

  • Could Ransomware Attacks Ultimately Benefit Consumers?

    That said, it’s worth noting that ransomware attacks are no different from the typical security attacks that we’ve been reading about for years. There’s nothing novel about the technology they rely on. What is novel, though, is that they’re attacking companies rather than consumers, and that’s changing the economics of data security.

More in Tux Machines

digiKam 7.7.0 is released

After three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. Read more

Dilution and Misuse of the "Linux" Brand

Samsung, Red Hat to Work on Linux Drivers for Future Tech

The metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. Read more

today's howtos

  • How to install go1.19beta on Ubuntu 22.04 – NextGenTips

    In this tutorial, we are going to explore how to install go on Ubuntu 22.04 Golang is an open-source programming language that is easy to learn and use. It is built-in concurrency and has a robust standard library. It is reliable, builds fast, and efficient software that scales fast. Its concurrency mechanisms make it easy to write programs that get the most out of multicore and networked machines, while its novel-type systems enable flexible and modular program constructions. Go compiles quickly to machine code and has the convenience of garbage collection and the power of run-time reflection. In this guide, we are going to learn how to install golang 1.19beta on Ubuntu 22.04. Go 1.19beta1 is not yet released. There is so much work in progress with all the documentation.

  • molecule test: failed to connect to bus in systemd container - openQA bites

    Ansible Molecule is a project to help you test your ansible roles. I’m using molecule for automatically testing the ansible roles of geekoops.

  • How To Install MongoDB on AlmaLinux 9 - idroot

    In this tutorial, we will show you how to install MongoDB on AlmaLinux 9. For those of you who didn’t know, MongoDB is a high-performance, highly scalable document-oriented NoSQL database. Unlike in SQL databases where data is stored in rows and columns inside tables, in MongoDB, data is structured in JSON-like format inside records which are referred to as documents. The open-source attribute of MongoDB as a database software makes it an ideal candidate for almost any database-related project. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MongoDB NoSQL database on AlmaLinux 9. You can follow the same instructions for CentOS and Rocky Linux.

  • An introduction (and how-to) to Plugin Loader for the Steam Deck. - Invidious
  • Self-host a Ghost Blog With Traefik

    Ghost is a very popular open-source content management system. Started as an alternative to WordPress and it went on to become an alternative to Substack by focusing on membership and newsletter. The creators of Ghost offer managed Pro hosting but it may not fit everyone's budget. Alternatively, you can self-host it on your own cloud servers. On Linux handbook, we already have a guide on deploying Ghost with Docker in a reverse proxy setup. Instead of Ngnix reverse proxy, you can also use another software called Traefik with Docker. It is a popular open-source cloud-native application proxy, API Gateway, Edge-router, and more. I use Traefik to secure my websites using an SSL certificate obtained from Let's Encrypt. Once deployed, Traefik can automatically manage your certificates and their renewals. In this tutorial, I'll share the necessary steps for deploying a Ghost blog with Docker and Traefik.