|
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
|
|
|
Source: CIO Magazine - Posted by Anthony Pell
|
|
The recently released Microsoft Security Intelligence Report highlights the vast improvements in security from Windows XP to Windows 7. Even so, no operating system is perfect. I asked security experts what they think about Windows 7 security and came up with a list of what Microsoft got right and where Microsoft is still missing the mark. |
|
|
Source: OS News - Posted by Alex
|
|
One of the main reasons why Firefox has become so successful is its extension framework, and the large community of extensions developers that has grown around it. What many users are not aware of, however, is that extensions are a bit of a security nightmare. |
|
|
Source: LWN - Posted by Anthony Pell
|
|
Fedora bug #534047 contains an interesting Fedora 12 surprise: "PackageKit allows you to install signed content from signed repositories without a password by default. It only asks you to authenticate if anything is unsigned or the signatures are wrong." So any user can install any package found in the official repository. Some Fedora developers, at least, seem to see this as a feature; see this rapidly-growing thread for the discussion. |
|
|
Source: H Security - Posted by Anthony Pell
|
|
The new version of the GNU GRUB boot loader, 1.97.1, closes a security hole in the previous version, 1.97, which allowed passwords be easily circumvented. The password protection is available in GRUB to prevent unauthorised modification of the boot parameters. A programming error in the feature lead to passwords being accepted as valid even if only the first character of the entered password was correct. |
|
|
Source: The Register - Posted by Alex
|
|
A software developer has uncovered a bug in most versions of Linux that could allow untrusted users to gain complete control over the open-source operating system.
The null pointer dereference flaw was only fixed in the upcoming 2.6.32 release candidate of the Linux kernel, making virtually all production versions in use at the moment vulnerable. |
|
|
Source: H Security - Posted by Anthony Pell
|
|
Bugs in system utilities are not usually particularly interesting from a security point of view, but if the utility is regularly used to obtain information on suspect programs, it's a rather different story. |
|
|
Source: Linux Magazine - Posted by Anthony Pell
|
|
A friend recently quizzed me about the Encrypted Home Directory feature in Ubuntu, but unfortunately his questions were not due simply to his naturally inquisitive nature. |
|
|
Source: HOWTO Forge - Posted by Anthony Pell
|
|
AIDE (Advanced Intrusion Detection Enviornment) is a tool to check the file integrity. It is an opensource substitute for TRIPWIRE. It allows to take snapshots of all the major configuration files, binaries as well as libraries stats. And helps to find which binaries have been changed in case of compromisation of the system. This can be downloaded from http://sourceforge.net. |
|
|
Source: Net-Security.org - Posted by Benjamin D. Thomas
|
|
HelpNetSecurity writes, "According to the August edition of the MessageLabs Intelligence monthly report, it can be a costly exercise for the bad guys to produce new families of malware in order to maintain their criminal activity at sufficient levels. Registering new domains is much more economical for them, and by spreading the malware across as many different websites and domains as possible, the longevity of each new malware is increased." |
|
|
Source: TechRepublic - Posted by Anthony Pell
|
|
Vincent Danen gives an overview of the monitoring and reporting tool rsec, which can help you keep a close eye on your system’s security without having to pore over log files.
Mandriva has long had their security tool called msec. Love it or hate it, it has been an integral part of all Mandriva Linux versions for years. |
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 51 - 60 of 809 |
