Subscribe: LinuxSecurity.com
http://www.linuxsecurity.com/linuxsecurity_hybrid.rdf
Added By: Feedage Forager Feedage Grade A rated
Language: English
Tags:
certificates  hat  issue  linux mint  linux  linuxsecurity  red hat  red  security  slackware  summary  symantec  update  vulnerability 
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: LinuxSecurity.com

LinuxSecurity.com



The central voice for Linux and Open Source security news.



 



API flaws said to have left Symantec SSL certificates vulnerable to compromise

Mon, 27 Mar 2017 10:31:52 +0000

LinuxSecurity.com: Over the weekend, Chris Byrne, an information security consultant and instructor for Cloud Harmonics, published a post to Facebook outlining a serious problem with the processes and third-party API used to deliver and manage Symantec SSL certificates.



Google proposes sending Symantec to TLS sin bin

Fri, 24 Mar 2017 10:05:00 +0000

LinuxSecurity.com: Google has announced plans to reduce the trust in Symantec TLS certificates until a point is reached in early 2018 where Chrome 64 will only trust certificates issued for 279 days or less from the security giant and its subsidiaries.



FBI director floats international framework on access to encrypted data

Fri, 24 Mar 2017 10:03:46 +0000

LinuxSecurity.com: FBI director James Comey has suggested that an international agreement between governments could ease fears about IT products with government-mandated backdoors, but privacy advocates are doubtful.



Is Linux Mint a secure distribution?

Thu, 23 Mar 2017 08:15:56 +0000

LinuxSecurity.com: Linux Mint has been lambasted by some in the media for security problems over the last few years. But how accurate are such perceptions? Does Linux Mint really suffer from security problems or is it all much ado about nothing?



Mozilla beats rivals, patches Firefox's Pwn2Own bug

Thu, 23 Mar 2017 08:12:07 +0000

LinuxSecurity.com: Mozilla last week patched a Firefox vulnerability just a day after it was revealed during Pwn2Own, the first vendor to fix a flaw disclosed at the hacking contest.



LastPass hit by password stealing and code execution vulnerabilities

Wed, 22 Mar 2017 10:02:31 +0000

LinuxSecurity.com: LastPass has closed a remote code execution vulnerability on its Chrome extension, but according to Google Project Zero researcher Tavis Ormandy, issues remain on its Firefox extension, as well as details on another password-stealing vulnerability to come. Writing in the Project Zero issue tracker, Ormandy said it was possible to proxy untrusted messages to LastPass.



Slackware: 2017-082-02: samba: Security Update

Fri, 24 Mar 2017 03:10:00 +0000

LinuxSecurity.com: New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. [More Info...]



Slackware: 2017-082-01: mcabber: Security Update

Fri, 24 Mar 2017 03:10:00 +0000

LinuxSecurity.com: New mcabber packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. [More Info...]



Debian: 3816-1: samba: Summary

Thu, 23 Mar 2017 07:30:00 +0000

LinuxSecurity.com: Security Report Summary



Debian: 3815-1: wordpress: Summary

Thu, 23 Mar 2017 04:15:00 +0000

LinuxSecurity.com: Security Report Summary



Red Hat: 2017:0838-01: openjpeg: Moderate Advisory

Thu, 23 Mar 2017 00:08:00 +0000

LinuxSecurity.com: An update for openjpeg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which [More...]



Red Hat: 2017:0837-01: icoutils: Important Advisory

Wed, 22 Mar 2017 21:30:00 +0000

LinuxSecurity.com: An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]



Social Engineering Methods for Penetration Testing

Fri, 21 Oct 2016 10:18:59 +0000

LinuxSecurity.com: Social engineering is the practice of learning and obtaining valuable information by exploiting human vulnerabilities. It is an art of deception that is considered to be vital for a penetration tester when there is a lack of information about the target that can be exploited.



Putting Infosec Principles into Practice

Fri, 23 Sep 2016 10:53:29 +0000

LinuxSecurity.com: When you’re dealing with a security incident it’s essential you – and the rest of your team – not only have the skills they need to comprehensively deal with an issue, but also have a framework to support them as they approach it. This framework means they can focus purely on what they need to do, following a process that removes any vulnerabilities and threats in a proper way – so everyone who depends upon the software you protect can be confident that it’s secure and functioning properly.