Linux News

SHELLSHOCKED: Fortune 1000 outfits Bash out batches of patches

The Register - Mon, 29/09/2014 - 11:57
CloudPassage points to 'pervasive' threat of Bash bug

The majority of Fortune 1000 and Global 2000 companies have already deployed, or are now deploying, Shellshock patches to fend off code attacks, according to cloud security firm CloudPassage.

Categories: Linux News

Internet of Stuff: Chip rivals try to stop Cortex-M7 from flexing ARM’s muscle

The Register - Mon, 29/09/2014 - 11:17
Processors, microcontrollers start to collide

The Internet of Things (IoT) is growing an estimated five times more quickly than the overall embedded processing market, so it's no wonder chip suppliers are flocking to fit out connected cars, home gateways, wearables and streetlights as quickly as they can.

Categories: Linux News

SMASH the Bash bug! Apple and Red Hat scramble for patch batches

The Register - Sun, 28/09/2014 - 13:37
'Applying multiple security updates is extremely difficult'

A fresh dump of Shellshock patches were released on Friday night in the latest move to stamp out the Bash shell security vuln that has the potential to blight millions of Linux, Unix and Mac OS X machines.

Categories: Linux News

Apple Yet To Push Patch For "Shellshock" Bug

Linux Slashdot - Sat, 27/09/2014 - 12:25
An anonymous reader writes "Open source operating systems vulnerable to the Shellshock bug have already pushed two patches to fix the vulnerability, but Apple has yet to issue one for Mac OS X. Ars Technica speculates that licensing issues may be giving Apple pause: "[T]he current [bash] version is released under the GNU Public License version 3 (GPLv3). Apple has avoided bundling GPLv3-licensed software because of its stricter license terms....Apple executives may feel they have to have their own developers make modifications to the bash code."" It's also worth noting that there are still flaws with the patches issued so far. Meanwhile, Fedora Magazine has published an easy-to-follow description of how Shellshock actually works. The Free Software Foundation has also issued a statement about Shellshock.

Read more of this story at Slashdot.








Categories: Linux News

OpenMandriva Lx 2014.1 Released

Linux Slashdot - Sat, 27/09/2014 - 00:53
jrepin writes OpenMandriva is proud to announce the release of OpenMandriva Lx 2014.1 distribution of the GNU/Linux operating system. Most of developers efforts were focused on reducing system boot up time and memory usage. This version brings Linux kernel 3.15.10 (with special patches for desktop system performance, responsiveness, and realtime capabilities), KDE Software Compilation 4.13.3, Xorg 1.15.1, Mesa 10.2.6, LibreOffice 4.3.1, Firefox 32, GNU bash with latest security fixes, and many other updated software packages.

Read more of this story at Slashdot.








Categories: Linux News

Oracle SHELLSHOCKER - data titan lists unpatchables

The Register - Sat, 27/09/2014 - 00:46
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln

Oracle has confirmed that at least 32 of its products are affected by the vulnerability recently discovered in the Bash command-line interpreter – aka the "Shellshock" bug – including some of the company's pricey integrated hardware systems.

Categories: Linux News

How to Organize Your Linux File System for Clutter-Free Folders

Linux.com - Fri, 26/09/2014 - 22:23

With just a little care and maintenance, you can have a directory structure, clean of cruft, which will serve your needs for a very long time.

Categories: Linux News

Oracle Linux is coming to Ubuntu's OpenStack cloud

Zdnet news - Fri, 26/09/2014 - 18:13
An unlikely partnership will soon bring Oracle's Red Hat-based Linux distribution to Ubuntu's cloud.
Categories: Linux News

Oracle Linux is coming to Ubuntu's OpenStack cloud

Zdnet news - Fri, 26/09/2014 - 18:13
An unlikely partnership will soon bring Oracle's Red Hat-based Linux distribution to Ubuntu's cloud.
Categories: Linux News

Stunned by Shellshock Bash bug? Patch all you can – or be punished

The Register - Fri, 26/09/2014 - 14:04
Updated UK data watchdog rolls up its sleeves, polishes truncheon

The UK's privacy watchdog is urging organisations to protect their systems against the infamous Shellshock vulnerability in Bash – even though the full scope of the security bug remains unclear.

Categories: Linux News

Unchanging Unicorn: Don't be disappointed with Ubuntu 14.10, be happy

The Register - Fri, 26/09/2014 - 13:01
Review A calm before the storm

A number of Ubuntu flavours – Kubuntu, Ubuntu Gnome, Xubuntu and the brand new Ubuntu Mate (yes, it's official now) – this month participated in the first beta release of the next Ubuntu – 14.10, or Utopic Unicorn.

Categories: Linux News

Twitter's Mesos brainbox joins data centre OS venture

The Register - Fri, 26/09/2014 - 11:38
PHDer whose web-scale idea went big in one year

The academic brainbox who got his data centre operating system adopted as a piece of critical infrastructure at Twitter has now gone into business.

Categories: Linux News

Ubuntu 14.10 Final Beta Now Available for Download

Omgubuntu - Fri, 26/09/2014 - 10:21

The first, and final, beta of Ubuntu 14.10 'Utopic Unicorn' is now available to download, along with the second beta builds of its flavors.

The post Ubuntu 14.10 Final Beta Now Available for Download first appeared on OMG! Ubuntu!.

Categories: Linux News

A Norsified Linux for Windows and OS X wobblers

The Register - Fri, 26/09/2014 - 08:59
Review Elementary, my dear desktop

First things first: the name. The next Elementary OS was codenamed Isis – as in the Egyptian goddess of magic and life.

Categories: Linux News

Back to the Source: Why FOSS is More Important Than Ever

Linux.com - Thu, 25/09/2014 - 21:17

The fight for freedom never ends.

Categories: Linux News

Hackers thrash Bash Shellshock bug: World races to cover hole

The Register - Thu, 25/09/2014 - 17:59
Update your gear now to avoid early attacks hitting the web

Sysadmins and users have been urged to patch the severe Shellshock vulnerability in Bash on Linux and Unix systems – as hackers ruthlessly exploit the flaw to compromise or crash computers.

Categories: Linux News

Flurry of Scans Hint That Bash Vulnerability Could Already Be In the Wild

Linux Slashdot - Thu, 25/09/2014 - 17:52
The recently disclosed bug in bash was bad enough as a theoretical exploit; now, reports Ars Technica, it could already be being used to launch real attacks. In a blog post yesterday, Robert Graham of Errata Security noted that someone is already using a massive Internet scan to locate vulnerable servers for attack. In a brief scan, he found over 3,000 servers that were vulnerable "just on port 80"—the Internet Protocol port used for normal Web Hypertext Transfer Protocol (HTTP) requests. And his scan broke after a short period, meaning that there could be vast numbers of other servers vulnerable. A Google search by Ars using advanced search parameters yielded over two billion web pages that at least partially fit the profile for the Shellshock exploit. More bad news: "[T]he initial fix for the issue still left Bash vulnerable to attack, according to a new US CERT National Vulnerability Database entry." And CNET is not the only one to say that Shellshock, which can affect Macs running OS X as well as Linux and Unix systems, could be worse than Heartbleed.

Read more of this story at Slashdot.








Categories: Linux News

Flurry of Scans Hint That Bash Vulnerability Could Already Be In the Wild

Linux Slashdot - Thu, 25/09/2014 - 17:52
The recently disclosed bug in bash was bad enough as a theoretical exploit; now, reports Ars Technica, it could already be being used to launch real attacks. In a blog post yesterday, Robert Graham of Errata Security noted that someone is already using a massive Internet scan to locate vulnerable servers for attack. In a brief scan, he found over 3,000 servers that were vulnerable "just on port 80"—the Internet Protocol port used for normal Web Hypertext Transfer Protocol (HTTP) requests. And his scan broke after a short period, meaning that there could be vast numbers of other servers vulnerable. A Google search by Ars using advanced search parameters yielded over two billion web pages that at least partially fit the profile for the Shellshock exploit. More bad news: "[T]he initial fix for the issue still left Bash vulnerable to attack, according to a new US CERT National Vulnerability Database entry." And CNET is not the only one to say that Shellshock, which can affect Macs running OS X as well as Linux and Unix systems, could be worse than Heartbleed.

Read more of this story at Slashdot.








Categories: Linux News

Flurry of Scans Hint That Bash Vulnerability Could Already Be In the Wild

Linux Slashdot - Thu, 25/09/2014 - 17:52
The recently disclosed bug in bash was bad enough as a theoretical exploit; now, reports Ars Technica, it could already be being used to launch real attacks. In a blog post yesterday, Robert Graham of Errata Security noted that someone is already using a massive Internet scan to locate vulnerable servers for attack. In a brief scan, he found over 3,000 servers that were vulnerable "just on port 80"—the Internet Protocol port used for normal Web Hypertext Transfer Protocol (HTTP) requests. And his scan broke after a short period, meaning that there could be vast numbers of other servers vulnerable. A Google search by Ars using advanced search parameters yielded over two billion web pages that at least partially fit the profile for the Shellshock exploit. More bad news: "[T]he initial fix for the issue still left Bash vulnerable to attack, according to a new US CERT National Vulnerability Database entry." And CNET is not the only one to say that Shellshock, which can affect Macs running OS X as well as Linux and Unix systems, could be worse than Heartbleed.

Read more of this story at Slashdot.








Categories: Linux News

Flurry of Scans Hint That Bash Vulnerability Could Already Be In the Wild

Linux Slashdot - Thu, 25/09/2014 - 17:52
The recently disclosed bug in bash was bad enough as a theoretical exploit; now, reports Ars Technica, it could already be being used to launch real attacks. In a blog post yesterday, Robert Graham of Errata Security noted that someone is already using a massive Internet scan to locate vulnerable servers for attack. In a brief scan, he found over 3,000 servers that were vulnerable "just on port 80"—the Internet Protocol port used for normal Web Hypertext Transfer Protocol (HTTP) requests. And his scan broke after a short period, meaning that there could be vast numbers of other servers vulnerable. A Google search by Ars using advanced search parameters yielded over two billion web pages that at least partially fit the profile for the Shellshock exploit. More bad news: "[T]he initial fix for the issue still left Bash vulnerable to attack, according to a new US CERT National Vulnerability Database entry." And CNET is not the only one to say that Shellshock, which can affect Macs running OS X as well as Linux and Unix systems, could be worse than Heartbleed.

Read more of this story at Slashdot.








Categories: Linux News
Syndicate content