Security Projects - Page 42.5

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

CoCo VMs Will Now Panic If RdRand Is Broken in Linux 6.9

A significant change has been merged into the x86 fixes for Linux 6.9, requiring the seeding of RNG (Random Number Generation) with RdRand for CoCo (Confidential Computing) environments. The change focuses on CoCo virtual machines, designed to be as ...
Apr 08, 2024
  0

New GitHub Actions Enhancements Boost Security & Power

Recent enhancements have been made to GitHub Actions, a...
Apr 03, 2024
  0
31.Lock DigitalRoom Esm H115

Tails 6.1 Released with Security, User Experience Enhancements

Tails 6.1 has been released as the latest version of th...
Mar 27, 2024
  0
10.FingerPrint Locks Esm H115

Discover Security Projects News

LS Hmepg 337x500 34 Esm H200

Linux Gets Security Boost from NSA

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Most stories about government deployments of Linux involve a distributor helping various federal and municipal agencies install the open source operating system. But in this case, a federal agency is helping Linux. The U.S. National Security Agency (NSA), also known as the codemakers and codebreakers cryptologic division within the Department of Defense, has helped to harden Linux with newly-released Security Enhanced Linux (SELinux) kernel modifications. . . .

LS Hmepg 337x500 34 Esm H200

Why Sardonix Failed

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Members of the security community tend to audit software either for a business interest, or for their own private use. Some of them do, indeed, disclose the issues they discover to mailing lists, winning reputations as Kung Fu masters. But many sit on their findings, because kudos on a mailing list or a software auditing website can never compare to the reward of unauthorized access to a high-profile system. Sardonix had nothing to offer either variety of auditor. And any chance the project might have had at recruiting a third kind of researcher was thwarted by its own obscurity: the project leaders simply did not do enough to get the Sardonix name out and advertise to the security community. . . .

LS Hmepg 337x500 34 Esm H200

Guardian Digital Launches Next Generation EnGarde Secure Linux

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Guardian Digital, Inc., the world's premier open source security company, today announced an update to the next generation, award-winning platform that delivers features designed to ease the process of building a complete Internet presence and the level of security necessary to prevent system compromise. EnGarde Secure Linux leverages the best open source applications available to provide secure Internet connectivity, user privacy, Web and email functions, and intrusion detection. . . .

LS Hmepg 337x500 34 Esm H200

Knoppix Release Announcement

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Knoppix-STD is a customized distribution of the Knoppix Live Linux CD. Boot to the CD and you have Knoppix-STD. That would include a customized linux kernel (2.4.21 with ntfs rw, openmosix, and superfreeswan patches), Fluxbox windows manager, incredible hardware detection and hundreds of applications. Boot without the CD and you return to your original operating system. Aside from borrowing power, peripherals and some RAM, Knoppix-STD doesn't touch the host computer. . . .

LS Hmepg 337x500 34 Esm H200

Linux security site abandoned

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It seemed like a good idea at the time. Set up a Web site that allows users and developers alike to check which pieces of Linux code have been checked for security holes. The project, dubbed Sardonix, was a classic open source solution to a clear problem. . . .

LS Hmepg 337x500 34 Esm H200

NETWOSIX 1.0 Released

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Here is the newest Linux distrobution on the block, Netwosix. It is a source based distro, like Gentoo and Sorcerer, and it seems to be explicitly modelled after the BSD base/package-source tree. It is the brainchild of 17 year old self-described hacker Vincenzo Ciaglia. It stands out a little because its based completely on kernel 2.6. . . .

LS Hmepg 337x500 34 Esm H200

DARPA-funded Linux security hub withers

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Two years after its hopeful launch, a U.S.-backed research project aimed at drawing skilled eyeballs to the thankless task of open-source security auditing is prepared to throw in the towel. Initially funded by a research grant from the Pentagon's Defense Advanced Research Projects Agency (DARPA), the Sardonix project aspired to replace the loosely-structured Linux security review process with a public website that meticulously tracks which code has been audited for security holes, and by whom. . . .

LS Hmepg 337x500 34 Esm H200

"Mini-Apache" touts security, targets embedded Linux devices

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Embedded webserver specialist Mbedthis Software has released AppWeb, a new "mini-Apache" for embedded Linux focusing on high security and designed for "embedding in applications and devices." AppWeb can be configured with a memory footprint of only 110K, and targets web services, offline applications, and embedded device management, according to Mbedthis. . . .

LS Hmepg 337x500 34 Esm H200

2003 LinuxQuestions.org Members Choice Award Winners

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A few comments. The Database poll was once again the closest race (decided by a single vote last year) while the web server poll remained the most lopsided. It's clear in most polls that there is not a single app that dominates, which I think is a major strength opensource offers. Thanks again to everyone that voted. . . .

LS Hmepg 337x500 34 Esm H200

Syscheck: a new OS file integrity checker

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A new integrity checker software (open source) is available! But wait, it is not like the others, because it allows you to check the md5sum of your files against a remote database (acessible via web), making the monitoration of the files much more secure and simple, specially when you have more than one Unix system to protect. . . .

LS Hmepg 337x500 34 Esm H200

Snort 2.1.0 Available

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Yes, it's true, it's finally here! We're proud to announce the release of the new stable branch of snort, 2.1, and the first release, 2.1.0. This release can be found at the usual place, / . . .

LS Hmepg 337x500 34 Esm H200

FSF's Savannah is Back

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

As you know, savannah.gnu.org and savannah.nongnu.org have been down for a number of weeks due to a system crack. Thanks to the contributions of many people -- most notably Mathieu Roy, Jim Blair, and Paul Fisher -- the system is working again for existing projects.. . .

LS Hmepg 337x500 34 Esm H200

Developers fret over Linux attacks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A handful of recent on-line attacks on free and open-source software servers has open-source developers looking over their shoulders. During the past four months, unknown intruders have breached the security around servers hosting programs and code published by the Linux kernel . . .

LS Hmepg 337x500 34 Esm H200

GNU's FSF Savannah project hacked

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

On December 1st, 2003, we discovered that the "Savannah" system, which is maintained by the Free Software Foundation and provides CVS and development services to the GNU project and other Free Software projects, was compromised at circa November 2nd, 2003.. . .

LS Hmepg 337x500 34 Esm H200

Opera update seals security holes

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The vulnerabilities, disclosed to the BugTraq security mailing list over the weekend, allow rogue Web sites to take control of a victim's computer by exploiting weaknesses in the way the browser handles "skin" files, or configuration files that can change the . . .

Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved