Articles and News
Computer Security World in Mourning Over Death of Dan Kaminsky, Aged 42
#dan-kaminsky #sony #dns #ssl #conficker
The Infrastructural Power Beneath the Internet as We Know It
» I’ve lately been trying an exercise where, when reading anything by or about tech companies, I replace uses of the word “infrastructure” with “means of production.” «
#big-tech #platform #society #politics
Exploiting Vulnerabilities in Cellebrite UFED and Physical Analyzer From an App’s Perspective
Moxie Marlinspike takes a closer look at the Cellebrite UFED equipment: »By a truly unbelievable coincidence, I was recently out for a walk when I saw a small package fall off a truck ahead of me.«
#signal #cellebrite #hardware-security #moxie-marlinspike
Disasters I’ve Seen in a Microservices World
The author illustrates some recurring issues that often arise in architectures based on microservices.
CocoaPods Trunk: Remote Code Execution Found
The vulnerability that allowed it to execute arbitrary shell commands on the trunk server was introduced six years ago.
Remote Code Execution in Homebrew by Compromising the Official Cask Repository
It was possible to merge malicious pull requests and execute arbitrary Ruby codes on users’ machines.
#macos #homebrew #macos-security #rce
YouTube Is Now Building Its Own Video-Transcoding Chips
YouTube will gain up to 33 times the performance with its custom-built video transcoding units compared to optimized software on traditional servers.
Don’t Leak Your Docker Image’s Build Secrets
In this post, the author gives practical tips on how not to leak secrets when building container images.
We Live Migrated 900 VMs!
The author reports on the challenges of live-migrating 900 Openstack Compute nodes.
Projects and Releases
The release notes of OpenSSH 8.6 again start with the deprecation notice for the SHA-1 “ssh-rsa” signature scheme. The new release comes with security and feature improvements.
Proxmox Backup Server 1.1
Version 1.1 of the Proxmox Backup Server is based on Debian 10.9 with a 5.4 kernel 5.4 and useses ZFS 2.0.
#backup-software #proxmox #type:release
Ubuntu Server 21.04
Ubuntu Server 21.04 was released. This latest development cycle brings:
- phased updates
- native support for Microsoft SQL Server on 20.04 LTS
- Hardware Enablement (HWE) advanced networking stack for all LTS Ubuntu versions
- stability updates to HA stack, including pacemaker and corosync
- Linux kernel 5.11
- application updates
git-xargs is a command-line utility that allows the execution of commands on multiple git repositories in parallel.
Guider is a performance analyzer for almost all systems based on the Linux kernel.
acme.sh is an ACME protocol client written purely in Shell (Unix shell) language.
#ssl #tls #acme #lets-encrypt
zellij is a terminal multiplexer with a layout and plugin system on top.
csvq: An SQL-like query language for csv.
#csv #data-query #sql
bpftrace Reference Guide
#ebpf #bpftrace #tracing