Weekly Digest – Week 15, 2021
Articles and News
RFC: Rust in Linux Kernel
»Some of you have noticed the past few weeks and months that a serious attempt to bring a second language to the kernel was being forged. We are finally here, with an RFC that adds support for Rust to the Linux kernel.«
https://lkml.org/lkml/2021/4/14/1023
#rust #linux-kernel #linux
Prioritizing Memory Safety Migrations
In this post, the author shows that replacing C/C++ with safer languages is not an all-or-nothing task and suggests prioritizing systematically.
https://noncombatant.org/2021/04/09/prioritizing-memory-safety-migrations/
#rust #c #programming-language #security
Allow Arbitrary URLs, Expect Arbitrary Code Execution
The article demonstrates with practical examples how insufficient user input validation leads to code execution vulnerabilities.
https://positive.security/blog/url-open-rce
#rce #input-validation
US Investigators Probing Breach at Code Testing Company Codecov
The Codecov supply chain hack gets investigated.
#data-breach #cloud-security
KVM/Qemu VMs With a Multi-Screen Spice Console
In this multi-part article, the author covers access methods to multi-screen spice consoles.
#spice #kvm #qemu #virtualization
VMware and Dell Technologies Reach Agreement Regarding Spin-Off
»Dell Technologies to Spin-off 81% Equity Ownership of VMware.«
#vmware #dell
EMS Launches Bridging For Microsoft Teams
Element Matrix Services is now bridging to Microsoft Teams.
https://element.io/blog/ems-launches-bridging-for-microsoft-teams/
#matrix
Opting Your Website Out of Google’s FLoC Network
The short instructions on this post show how to set the Permissions-Policy: interest-cohort=() header in popular HTTP/S servers.
https://paramdeo.com/blog/opting-your-website-out-of-googles-floc-network
#google #floc #online-advertising
Statement on DNS Encryption
In this statement, the DNS root server operators explain why they don’t feel comfortable being the early adopters of authoritative DNS encryption.
https://root-servers.org/media/news/Statement_on_DNS_Encryption.pdf
#dns #dns-over-tls #dns-server #dns-root-server #dns-encryption
Expiration Date 4-6-2021
The Epic Games Reliability Engineering team did a post-mortem on a certificate expiration issue they recently experienced.
https://www.epicgames.com/site/en-US/expiration-date-4-6-2021
#post-mortem #epic-games
FBI Cleans Web Shells From Hacked Exchange Servers in Rare Active Defense Move
The FBI actively removes backdoors from the hacked Microsoft Exchange servers.
#exchange #security
Projects and Releases
FreeBSD 13.0-RELEASE
Only some of the highlights:
- ZFS now provided by OpenZFS
- in-kernel framing and encryption of TLS
- arm64 is promoted to Tier-1 status
- rewritten routing stack
- clang, lld, llvm, libc++ update to 11.0.1
- bhyve improvements
- removed obsolete GDB
https://lists.freebsd.org/pipermail/freebsd-announce/2021-April/002031.html
#freebsd #type:release
LLVM 12
Version 12 of the LLVM compiler toolchain was released.
https://releases.llvm.org/12.0.0/docs/ReleaseNotes.html
diffoscope
In-depth comparison of files, archives, and directories.
#diff-tool
upptime
»Upptime is the open-source uptime monitor and status page, powered entirely by GitHub Actions and Issues.«
https://github.com/upptime/upptime
List of Online Text to Diagram Tools
Page with a comprehensive list of various text to diagram tools.
https://xosh.org/text-to-diagram/
#text-tools #diagram-tools #text-to-diagram
pev (Postgres Explain Visualizer)
https://tatiyants.com/pev/#/plans/new
:wq