Linux kernel 5.0 is out. Linus writes, “We have more than a handful of real fixes in the last week, but not enough to make me go “Hmm, things are really unstable”. In fact, at least two thirds of the patches are marked as being fixes for previous releases, so it’s not like 5.0 itself looks bad.” The merge window ...
Read More »Yearly Archives: 2019
Container Escape Hack Targets Vulnerable Linux Kernel
A proof-of-concept hack allows adversaries to tweak old exploits, have code jump containers and attack underlying infrastructure. Researchers at CyberArk have created a proof-of-concept attack that allows adversaries to bypass container security, escape the container and compromise an entire host system. However, the attack scenario is limited, in that a successful attack depends on unpatched vulnerabilities to be present in ...
Read More »ODrive is a No-Frills Google Drive Client for Linux
With no official Google Drive Linux client available, it’s left to third-party apps, devs services to fill the file-syncing void for FOSS fans. And boy are there are a lot of options out there that do just that! One could compile a list of various Google Drive Linux clients available for Linux, ranging from those with a GUI to those using a CLI. I ...
Read More »KDE Participating in Google Summer of Code 2019, MariaDB Releasing New Open-Source MariaDB Enterprise Server, CentOS Celebrates 15th Birthday, Cmd Is a New Security Tool for Linux and Red Hat Announces Red Hat Certified Architect Program in Telco Cloud
KDE announces it’s been selected to participate in the Google Summer of Code for the 14th year. See the KDE Community Wiki for ideas and instructions for students interested in working with KDE for GSoC 2019. MariaDB announced it is releasing a new version of its MySQL-compatible database management system called MariaDB Enterprise Server 10.4. ZDNet reports that “This new business server comes with more powerful and fine-grained ...
Read More »Embedded Linux Software Highlights from Embedded World
In my day job at LinuxGizmos, I’ve been neck deep recently in embedded Linux hardware news from the Embedded World show in Nuremberg. There are plenty of new SBCs and compute modules — many based on NXP’s newly shipping i.MX8M Mini — as well as a new Qualcomm Robotics RB3 Platform, more IoT gateways, and Linux-ready chips like ST’s STM32MP1 and Octavo SiP version of the SoC. Yet, Embedded World ...
Read More »B0r0nt0K Ransomware Threatens Linux Servers
A new cryptovirus called “B0r0nt0K” has been putting Linux and possibly Windows Web servers at risk of encrypting all of the infected domain’s files. The new ransomware threat and the ransom of 20 bitcoins (about US$75,000) first came to light last week, based on a post on Bleeping Computer’s user forum. A client’s website had all its files encrypted and renamed with ...
Read More »Thunderclap flaws impact how Windows, Mac, Linux handle Thunderbolt peripherals
Thunderclap vulnerabilities allow the creation of highly dangerous malicious peripherals that can steal data from OS memory. Windows, Mac, Linux, and FreeBSD systems are all impacted by a new vulnerability that was disclosed this week at the NDSS 2019 security conference. The vulnerability –named Thunderclap– affects the way Thunderbolt-based peripherals are allowed to connect and interact with these operating systems, ...
Read More »Linux security: Cmd provides visibility, control over user activity
Cmd helps organizations monitor, authenticate, and block user activity that goes beyond expected system usage. There’s a new Linux security tool you should be aware of — Cmd (pronounced “see em dee”) dramatically modifies the kind of control that can be exercised over Linux users. It reaches way beyond the traditional configuration of user privileges and takes an active role in monitoring ...
Read More »Eclipse IoT Milestones, Bare-Metal Cloud Computing Risk, Purism Announces PureBoot, Go 1.12 Released, and Qualcomm and Thundercomm Launched a Robotics RB3 Platform that runs Linux with Robot Operating System
The Eclipse Foundation this morning announced that Eclipse IoT, “a leading collaboration of vendors working together to define an open, modular architecture to accelerate commercial IoT adoption”, has reached “3 million lines of code, 41 member companies, 37 IoT projects and 350 contributors”. See the Eclipse IoT website for more on how “Eclipse IoT is the open source center of gravity for ...
Read More »Securely And Efficiently Backup Data On Linux Or macOS With Vorta (BorgBackup GUI)
Vorta is a fairly new GUI for BorgBackup (or Borg for short), a command line backup tool with encryption, deduplication, compression and validation. Both Vorta and BorgBackup are free and open source software, and they run on Linux and macOS. BorgBackup a secure, deduplicating backup program BorgBackup is a secure and efficient command line backup tool that can store the data ...
Read More »