Alerts This Week
Warning Icon 1 929
Alerts This Week
Warning Icon 1 929

Vendors/Products - Page 61

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

With npm v12, dependency preinstall, install, and postinstall scripts will no longer execute automatically during package installation. Script execution will require explicit approval through new controls such as npm approve-scripts, with the change ...

A major internal repository breach at GitHub has expose...

Managed Extended Detection and Response (MXDR) has beco...

Discover Vendors/Products News

LS Hmepg 337x500 34 Esm H267

Sun Microsystems: Discontinuation of Cobalt Server Line and Support Info

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Just three years after Sun Microsystems paid $2 billion in stock for server appliance maker Cobalt Networks, Sun has killed off the Cobalt product line. The move marks the end of the Cobalt brand of Linux servers at Sun, although Sun will continue to resell Linux operating systems from Red Hat and SuSE Linux on x86 servers. Sun also sells Linux for the desktop in the shape of the Sun Java Desktop, but its own server line now runs Solaris exclusively. . . .

LS Hmepg 337x500 34 Esm H267

Common Criteria Testing: SUSE and Red Hat Achieve EAL Certifications

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Backed by big name partners, SUSE Linux and Red Hat are each putting their security systems through the rigorous paces of Common Criteria Scheme (CCS) testing, with ultimate plans to reach the same security ratings already achieved by Microsoft and Unix players. The Common Criteria stamp of approval "reduces the investment risk and also provides more trust" in Linux, according to Roman Drahtmueller, a member of SUSE's security team.. . .

LS Hmepg 337x500 34 Esm H267

Understanding The Role Of Transparency In Open-Source Integrity

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Some people would have you believe this is monumental or out of the ordinary -- a group that distributes software experiencing a compromise, then letting everybody know about it and warning of the potential risks. Those that prance about in Penguin-embroidered cheerleader tops and yellow and black tutus suggest between pom-pom waves that no commercial vendor would ever be as candid.. . .

LS Hmepg 337x500 34 Esm H267

Gentoo: Rsync Server Compromise: Remote Exploit Findings and Forensics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

On December 2nd at approximately 03:45 UTC, one of the servers that makes up the rsync.gentoo.org rotation was compromised via a remote exploit. At this point, we are still performing forensic analysis. However, the compromised system had both an IDS and a file integrity checker installed and we have a very detailed forensic trail of what happened once the box was breached, so weare reasonably confident that the portage tree stored on that box wasunaffected.. . .

Your message here