Security Projects
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Since early this year AMD has been working on Linux enablement patches for Dynamic Boost Control (DBC). This is a new feature of some AMD SoCs that allow an "authenticated entity" to have greater control over certain SoC characteristics to improve the power/performance. AMD DBC was merged for Linux 6.6 just days ago while already new patches have been posted that extend the supported platforms for this Dynamic Boost Control functionality.
In the world of web development, terms like MEAN, MERN, LEMP, and PERN are frequently encountered. These terms refer to web stacks, which are bundles of software, frameworks, and libraries used for building full-stack web applications. One such popular web stack is LEMP. In this comprehensive guide, we will explore what the LEMP stack is, its components, how it works, and why it is popular in web development.
While I have been eagerly following the AMD openSIL project for open-source CPU initialization that will eventually replace AGESA, today AMD announced a new open-source firmware drop: the SEV firmware has been made open-source.
Following yesterday's disclosure of the AMD "Inception" security vulnerability and the Linux kernel patches merged for reporting the mitigation status as well as the kernel-based handling for earlier generation Zen CPUs, the Family 19h microcode mitigations have now been picked up by the linux-firmware.git repository.
An internal developer portal can help you consolidate and evolve your security strategy.
Microsoft has released an updated version of its CBL-Mariner 2.0 in-house Linux distribution that includes various security patches, new packages being added to the OS, and a variety of other updates.
AMD's fTPM issues are well-known in the industry, often causing system crashes and freezing. Linux's creator Linus Torvalds has expressed his disappointment towards the feature, labeling it a "plague" for the kernel.
Ahead of the Linux 6.5-rc2 release tomorrow there was a set of x86/x86_64 kernel changes merged overnight to deal with some weaknesses in the kernel's Control Flow Integrity (kCFI) / FineIBT (Indirect Branch Tracking) code.
The Linux 6.3 kernel series is now marked as EOL on the kernel.org website and the last release is 6.3.13.
Nitrux Update Tool System (NUTS) command-line utility is now available for Nitrux users and it can also perform rollbacks.
Public source code repositories, from Sourceforge to GitHub, from the Linux Kernel Archives to ReactOS.org, from PHP Packagist to the Python Package Index, better known as PyPI, are a fantastic source (sorry!) of free operating systems, applications, programming libraries, and developers’ toolkits that have done computer science and software engineering a world of good.
Since 41% of organizations are still not confident about their open-source software security, more innovations are needed to change this narrative. Even though software bill of materials offer more visibility, the Open Source Security Foundation seeks to alter SBOMs from just being a mechanism to be organism-based so that they address issues such as changes in metadata and compiler flags, according to Omkhar Arasaratnam, general manager of OpenSSF at The Linux Foundation.
Going back years there has been patches for allowing the Linux x86_64 kernel to build as Position Independent Executable (PIE) code to further enhance the system security. Antgroup engineers most recently have been tackling the Linux x86_64 PIE support and last week sent out a new patch series.
The Cybersecurity Certificate is a new addition to the Google Career Certificate program designed to help job seekers upskill and transition to tech. "Learners will get hands-on experience with industry-standard tools, such as Python, Linux and an array of security tools like security information and event management (SIEM) platforms.
Two of the most important Linux utilities are being rewritten in Rust to provide greater memory safety for the critical functionality they provide.
The latest version of Linux, Linux 6.3, has been released following a "nice, controlled release cycle," according to project boss Linus Torvalds. The release cycle required seven release candidates, which were supported by helpful developer behavior.
The latest Linux kernel boasts security, speed, and power improvements for Intel, AMD, ARM, and RISC-V architectures.
After being deprecated for several years, Security Enhanced Linux "SELinux" beginning with the Linux 6.4 kernel can no longer be run-time disabled.
Supply chain security represents a complex challenge for organizations across industries, but it might be getting just a bit easier today with the release of the SLSA (pronounced salsa) 1.0 specification.
Theo de Raadt has released OpenBSD 7.3 as the 54th release for this BSD operating system project.