Articles and News

Unauthorized RCE in VMware vCenter

In this post, the author explains how he discovered a severe RCE in VMware vCenter and how an attacker can exploit it.

https://swarm.ptsecurity.com/unauth-rce-vmware/

#vmware #web-application-security #rce

New Browser-Tracking Hack Works Even When You Flush Caches or Go Incognito

The article reveals a technique serving user-specific favicons to circumvent existing counter-tracking-measures.

https://arstechnica.com/information-technology/2021/02/new-browser-tracking-hack-works-even-when-you-flush-caches-or-go-incognito/

#privacy #browser-tracking

How NASA Designed a Helicopter That Could Fly Autonomously on Mars

https://spectrum.ieee.org/automaton/aerospace/robotic-exploration/nasa-designed-perseverance-helicopter-rover-fly-autonomously-mars

This article is dedicated to Perseverance rover’s Mars Helicopter Ingenuity. It is running NASA’s open-sourced framework F Prime on top of a Linux-based OS.

#nasa #mars

Deep PostgreSQL Thoughts: Resistance to Containers is Futile

The author shares his thoughts about running Postgres in a container.

https://info.crunchydata.com/blog/deep-postgresql-thoughts-resistance-to-containers-is-futile

#postgres #container

Faster, More Efficient Systems for Finding and Fixing Regressions

This post explains Facebook’s engineering team’s measures to detect a more significant percentage of regressions earlier in the engineering life cycle.

https://web.archive.org/web/20210221101423/https://engineering.fb.com/2021/02/17/developer-tools/fix-fast/

Projects and Releases

Ansible 3.0

Because Ansible is switching to semantic versioning, the version number of this release is 3.0.0 instead of 2.11.0.

https://github.com/ansible-community/ansible-build-data/blob/main/3/CHANGELOG-v3.rst

#ansible #type:release

Google OSV (Open Source Vulnerabilities)

»The goal of OSV is to provide precise data on where a vulnerability was introduced and where it got fixed, thereby helping consumers of open source software accurately identify if they are impacted and then make security fixes as quickly as possible.«

https://opensource.googleblog.com/2021/02/launching-osv-better-vulnerability.html

#security #google

Zenytal Server 7.0

The newest version of Zenital Server is based on Ubuntu Server 20.04 LTS and comes with Samba 4.11.

https://zentyal.com/news/zentyal-7-0-announcement/

PDF: Apple Plaform Security

In this document, Apple explains the different security aspects of its platform.

https://manuals.info.apple.com/MANUALS/1000/MA1902/en_US/apple-platform-security-guide.pdf

bit

https://github.com/chriswalz/bit

»bit is an experimental modernized git CLI built on top of git that provides happy defaults and other niceties.«

#git

Introducing veb(4) - A New Virtual Ethernet Bridge in OpenBSD

The main difference between veb and the existing bridge interface is how they use interfaces as ports.

https://undeadly.org/cgi?action=article;sid=20210223111210

#openbsd #network

Open Source Society University

The OSSU curriculum is an education in CS, using online materials.

https://github.com/ossu/computer-science

#computer-science #learning

Nextcloud Hub 21

Amongst other improvements, release 21 of Nextcloud hub brings a high-performance back-end for Nextcloud Files.

https://nextcloud.com/blog/nextcloud-hub-21-out-with-up-to-10x-better-performance-whiteboard-and-more-collaboration-features/

#nextcloud #type:release

Reclaim Your Face

Reclaim Your Face is a European Citizens’ Initiative (ECI) petition for a ban on biometric mass surveillance practices.

https://reclaimyourface.eu/

#privacy #politics

:wq