A Linux kernel bug in network socket initialization could allow an attacker to acquire root privileges to inflict damages. The security hole applies to all kernels of the 2.4 and 2.6 series and has been around possibly since 2001.more »
The Parted Magic LiveCD provides numerous tools for partitioning and data backup and recovery. The newest version 4.4 runs on systems with just 256-MByte RAM and now supports dial-up networking.more »
With Apache 2.2.13, developers have closed security holes in the popular webserver.more »
The 2.8.3 release of the free blog software Wordpress fixes some privilege escalation problems left over from a previous version.more »
The biggest botnet to date is being virtualized using a network of one million Linux kernels. The virtual machines form an experiment in studying the origins of the malware.more »
Adobe has come out with a patch for Flash Player to fix a recent security problem.more »
A specially crafted dynamic update message to a DNS zone for which the server is a master can raise havoc in BIND 9. An active remote exploit is already "in wide circulation."more »
Tin Hat, a Linux distribution based on hardened Gentoo, has been released in version 20090727.more »
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.
Klaus Knopper announces the latest version of his iconic Live Linux system.
All websites that use these popular CMS tools could be vulnerable to denial of service attacks if users don't install the updates.
According to a report, many potential victims of the Heartbleed attack have patched their systems, but few have cleaned up the crime scene to protect themselves from the effects of a previous intrusion.
DARPA and NICTA release the code for the ultra-secure microkernel system used in aerial drones.