Articles and News

Unauthorized RCE in VMware vCenter

In this post, the author explains how he discovered a severe RCE in VMware vCenter and how an attacker can exploit it.

https://swarm.ptsecurity.com/unauth-rce-vmware/

#vmware #web-application-security #rce


New Browser-Tracking Hack Works Even When You Flush Caches or Go Incognito

The article reveals a technique serving user-specific favicons to circumvent existing counter-tracking-measures.

https://arstechnica.com/information-technology/2021/02/new-browser-tracking-hack-works-even-when-you-flush-caches-or-go-incognito/

#privacy #browser-tracking


How NASA Designed a Helicopter That Could Fly Autonomously on Mars

https://spectrum.ieee.org/automaton/aerospace/robotic-exploration/nasa-designed-perseverance-helicopter-rover-fly-autonomously-mars

This article is dedicated to Perseverance rover’s Mars Helicopter Ingenuity. It is running NASA’s open-sourced framework F Prime on top of a Linux-based OS.

#nasa #mars


Deep PostgreSQL Thoughts: Resistance to Containers is Futile

The author shares his thoughts about running Postgres in a container.

https://info.crunchydata.com/blog/deep-postgresql-thoughts-resistance-to-containers-is-futile

#postgres #container


Faster, More Efficient Systems for Finding and Fixing Regressions

This post explains Facebook’s engineering team’s measures to detect a more significant percentage of regressions earlier in the engineering life cycle.

https://web.archive.org/web/20210221101423/https://engineering.fb.com/2021/02/17/developer-tools/fix-fast/


Projects and Releases


Ansible 3.0

Because Ansible is switching to semantic versioning, the version number of this release is 3.0.0 instead of 2.11.0.

https://github.com/ansible-community/ansible-build-data/blob/main/3/CHANGELOG-v3.rst

#ansible #type:release


Google OSV (Open Source Vulnerabilities)

»The goal of OSV is to provide precise data on where a vulnerability was introduced and where it got fixed, thereby helping consumers of open source software accurately identify if they are impacted and then make security fixes as quickly as possible.«

https://opensource.googleblog.com/2021/02/launching-osv-better-vulnerability.html

#security #google


Zenytal Server 7.0

The newest version of Zenital Server is based on Ubuntu Server 20.04 LTS and comes with Samba 4.11.

https://zentyal.com/news/zentyal-7-0-announcement/


PDF: Apple Plaform Security

In this document, Apple explains the different security aspects of its platform.

https://manuals.info.apple.com/MANUALS/1000/MA1902/en_US/apple-platform-security-guide.pdf


bit

https://github.com/chriswalz/bit

»bit is an experimental modernized git CLI built on top of git that provides happy defaults and other niceties.«

#git


Introducing veb(4) - A New Virtual Ethernet Bridge in OpenBSD

The main difference between veb and the existing bridge interface is how they use interfaces as ports.

https://undeadly.org/cgi?action=article;sid=20210223111210

#openbsd #network


Open Source Society University

The OSSU curriculum is an education in CS, using online materials.

https://github.com/ossu/computer-science

#computer-science #learning


Nextcloud Hub 21

Amongst other improvements, release 21 of Nextcloud hub brings a high-performance back-end for Nextcloud Files.

https://nextcloud.com/blog/nextcloud-hub-21-out-with-up-to-10x-better-performance-whiteboard-and-more-collaboration-features/

#nextcloud #type:release


Reclaim Your Face

Reclaim Your Face is a European Citizens’ Initiative (ECI) petition for a ban on biometric mass surveillance practices.

https://reclaimyourface.eu/

#privacy #politics


:wq