The Dell Thunderbird supercomputer, named MegaTux, has 4,480 Intel microprocessors running Linux virtual machines with Wine, making it possible to run 1 million copies of a Windows environment without paying licensing fees to Microsoft.
Read more »Restrict (Lock) Your Ubuntu Desktop With Lockdown Editor
http://webupd8.blogspot.com –
Gnome system restrictions utility Lockdown Editor lets you create a profile that limits a user to a set of application that a system administrator allows. It has a nice, logically structured GUI that allows administrators to choose and click checkboxes on the options that you want to deny for user access.
Read more »
Category: End User Tags:
Mozilla updates Thunderbird 3, Firefox 3.x
http://blog.internetnews.com –
Mozilla is updating its Firefox 3.x browser to version 3.0.12 for five critical security vulnerabilities. All of the issues have already been addressed in the latest Firefox 3.5.1 update which came out last week.
Read more »Category: Community Tags:
- Login to post comments
See who’s poking your Linux box
http://tips4linux.com –
If you’re using SSH and you have your ports wide open to the world, your best bet would be to install fail2ban.
Read more »Category: High End Tags:
Mozilla confirms new crash bug in Firefox 3.5.1 not exploitable
http://mozillalinks.org –
Mozilla has confirmed a crash bug in the latest Firefox 3.5.1 related to how its JavaScript handle certain long Unicode strings that could lead to a crash on Mac OS X, Windows and Linux.
Read more »Category: End User Tags:
- Login to post comments
Buffer overflow in Firefox 3.5.1 not exploitable
http://blog.mozilla.com –
In the last few days, there have been several reports (including one via SANS) of a bug in Firefox related to handling of certain very long Unicode strings. While these strings can result in crashes of some versions of Firefox, the reports by press and various security agencies have incorrectly indicated that this is an exploitable bug.
Read more »Category: High End Tags:
- Login to post comments
Would you like to know about 0day defects months in advance?
http://blog.coverity.com –
There’s a lot of discussion today about a 0day Local Linux Root exploit. http://isc.sans.org/diary.html?storyid=6820 For readers who aren’t security-savvy, that means that a user logged into a Linux system, with shell access, can bypass system security mechanisms and elevate his access to be equivalent to the system administrator (or ‘root’ user).
Read more »Category: Community Tags:
Dear Firefox, You Have Non-Windows Users Too
http://www.linuxtoday.com –
A medium-large bit of news this week is a potentially serious exploit in the shiny new freshly-released Firefox 3.5, which was released, discovered, and fixed nearly all at the same time. Another open source security success story! Except for one thing-- no one bothered to report if this dastardly flaw affects Linux.
Read more »Category: Community Tags:
- Login to post comments
Mozilla closes security hole with Firefox 3.5.1
http://www.zdnetasia.com –
Mozilla updated Firefox to version 3.5.1 for Windows, Mac, and Linux on Thursday, fixing a security problem, improving stability, and speeding launch time on some Windows systems, according to the release notes.
Read more »Category: End User Tags:
- Login to post comments
Mozilla Updates Firefox 3.5 for Security, Startup
http://www.internetnews.com –
Mozilla's Firefox 3.5.1 browser is now out with fixes for one critical zero-day vulnerability that first became public earlier this week.
Read more »Category: End User Tags:
- Login to post comments
How To Defend slowloris DDoS With mod_qos (Apache2 On Debian [Lenny])
http://www.howtoforge.com –
mod_qos gives some fine-grained opportunities to scale the number of used connections and to defend an attack according to bandwidth limits. Unfortunately it is only available as source-package and there are many possible settings, wich might be hard to set up for this special case. So I provide the way that helped me.
Read more »Category: High End Tags:
- Login to post comments
Anti-Sec: Not a True Hacker Group
http://www.thenixedreport.com –
I believe that Anti-Sec does not consist of true hackers. What they are suggesting in terms of security vulnerabilities violates the free flow of information and the Hands On Imperative. Additionally, it violates the principles of Free Software in general.
Read more »
Category: Philosophy Tags:
- Login to post comments
Frank Kardel: Being “On-time” with Open Source Security, Part 1
http://blog.coverity.com –
Frank Kardel is a veteran contributor to the Network Time Protocol (NTP).
Over the last 21 years, he has made significant contributions to maintain, update and secure the NTP code. Kardel is also the NTP Scan Project Leader.
Read more »Category: Community Tags:
IBM Researcher and Postfix Maintainer, on “Open” vs. “Closed” Source Code Security
http://blog.coverity.com –
Wietse Venema created the open source Postfix mail system in 1997 and still maintains most the system himself. Venema talks to us about the unique structure of Postfix that gives it a leg up on security, “open” vs. “closed” code and thoughts for an advanced Scan project.
Read more »Category: Community Tags:
- Login to post comments
Prevent brute force attacks on SSH servers with DenyHosts
http://www.unixmen.com –
DenyHosts is a Python script that analyzes the sshd server log messages to determine what hosts are attempting to hack into your system. It also determines what user accounts are being targeted. It keeps track of the frequency of attempts from each host.DenyHosts is designed for the use by Linux system administrators, the script can be useful to anybody running an sshd server.
Read more »Category: End User Tags:
