Get the latest open source security news delivered to your mailbox each week. Our 'Linux Security Week' newsletter summarizes the most notable security issues and the latest developments within the Linux and open source communities. It is distributed every Monday morning by the editorial staff at Guardian Digital.
Linux Security Week: June 7th, 2021
3 - 5 min read
Thank you for reading our Linux Security Week newsletter! In this weekly newsletter, we strive to provide readers with a comprehensive overview of the week's most relevant open source security news. We want to provide you with the type of content you are interested in, and would love to hear your thoughts on this week's articles.
Today’s newsletter highlights our two most recent feature articles: Secure Linux Hosting for Businesses and What Is Threat Intelligence? We also examine various topics including a new report highlighting the fact that stale open-source code is rampant in commercial software, and the release of Cinnamon 5.0 with many improvements that make the desktop environment more secure, stable and reliable, including new GUI and CLI tools for checking, listing, and performing updates of Cinnamon Spices. Happy Monday - and happy reading!
Yours in Open Source,
LinuxSecurity.com Feature Extras:
Secure Linux Hosting for Businesses - There are a plethora of excellent Linux hosting solutions available to businesses, and selecting a hosting provider may be a bit daunting as a result. To assist in the process, we’ll take a look at three popular types of Linux hosting and the benefits that each offers. We’ll then introduce you to RoseHosting, a provider of fully-managed, highly secure Linux hosting solutions that we love.
What Is Threat Intelligence? - Threat intelligence (or threat intell) is information used to understand past, present, and future threats targeting an organization. It is evidence-based knowledge about a previous, existing or emerging threat to organizational assets.
Amazon's experiment wireless mesh networking has turned users into guinea pigs. If you use Alexa, Echo, or any other Amazon device, you have only 10 days to opt out of an experiment that leaves your personal privacy and security hanging in the balance.
Looking for a free and secure CentOS replacement? AlmaLinux and Oracle are great alternatives you'll want to look into. Among the various benefits that the distro offers, AlmaLinux 8.4 offers full UEFI Secure Boot support.
A new report shows that stale open-source code is rampant in commercial software, and organizations in all industries are struggling to manage open source risk. "In 2020 the percentage of codebases containing high-risk vulnerabilities jumped from 49 to 60 percent. What was more disturbing is that several of the top 10 open source vulnerabilities found in 2019 codebases reappeared in the 2020 audits, all with significant percentage increases."
Tigera , a leader in Kubernetes security and observability, has announced that Kubernetes management market leader SUSE has chosen to add open source Calico container network interface (CNI) plugin as an option to Rancher Kubernetes Engine (RKE) 2, enabling consistent Kubernetes network policy definition and enforcement. Users will benefit from simplified, consistent, networking, security and observability across our Kubernetes platforms with one technology that addresses their needs.
Linux Mint 20.2 'Uma' is set for a beta release by mid-June, with a selection of useful new features and improvements. Just like the rest of the 20.x series, 20.2 will be supported until around April or May of 2025. At this point, users will need to upgrade if they want their system to remain secure.
Cinnamon 5.0 has been released with many improvements that make the desktop environment more secure, stable and reliable, including new GUI and CLI tools for checking, listing, and performing updates of Cinnamon Spices.
Live patching can improve security and minimize downtime, but can also lead to potential problems if carried out incorrectly. Learn how reproducible builds can help developers to implement live patching consistently and safely - and how containers are coming to the rescue! - in this article.