Weekly Digest – Week 25, 2021
Articles and News
The World Relies on One Chip Maker in Taiwan, Leaving Everyone Vulnerable
»Taiwan Semiconductor Manufacturing Co.’s dominance poses risks to the global economy, amid geopolitical tensions and a major chip shortage.«
#digital-sovereignty #economics #semiconductor-manufacturing
GitHub Packages Container Registry Is Generally Available
GitHub Container registry supporting OCI images is now GA and comes with anonymous access for public containers, permission control for containers, and visibility independent of the repository. The existing Docker registry at docker.pkg.github.com will be automatically migrated to the new container registry in the coming weeks.
https://github.blog/2021-06-21-github-packages-container-registry-generally-available/
#github #container #container-registry
Facebook’s Tectonic Filesystem: Efficiency from Exascale
The paper describes Facebook’s distributed file system called Tectonic. It can address and store exabytes with optimized resource utilization and less operational complexity.
https://www.usenix.org/system/files/fast21-pan.pdf
#facebook #file-systems
Ditching OpenPGP, a New Approach to Signing Apt Repositories
Debian is moving away from OpenGPG for repository signing.
https://wiki.debian.org/Teams/Apt/Spec/AptSign
#debian #apt #opengpg
When Your Backups Vanish
The article looks at two consumer backup issues: One caused by the retention time of iCloud backups and the other caused by the malicious remote factory reset of Western Digital My Book Live NAS, based on a three-year-old CVE that Western Digital never fixed.
https://eclecticlight.co/2021/06/26/when-your-backups-vanish/
#backup
Announcing a Unified Vulnerability Schema for Open Source
Google announced »a simple, unified schema for describing vulnerabilities precisely. «
https://security.googleblog.com/2021/06/announcing-unified-vulnerability-schema.html
#cve #vulnerability-management #security #google
A List of Privacy-Friendly Google Analytics Alternatives
https://creativerly.com/google-analytics-alternatives/
#web-analytics #google-analytics #privacy
Video: Airbus 350 Server Room
https://www.youtube.com/watch?v=241-5DZyons
Projects and Releases
SUSE Linux Enterprise 15 SP3
Besides all the other improvements, SLE 15 SP3 is the first release that provides binary compatibility with the corresponding openSUSE Leap version 15.3.
https://www.suse.com/releasenotes/x86_64/SUSE-SLES/15-SP3/
#suse #suse-linux-enterprise #type:release
Rocky Linux 8.4
Rocky Linux 8.4, bug-for-bug compatible with Red Hat Enterprise Linux 8.4, is now generally available. The Rocky Linux community also provides a tool to aid the conversation from the 8.4 versions of Alma Linux, CentOS, RHEL, and Oracle Linux.
https://docs.rockylinux.org/release_notes/8.4
#rhel #centos #rocky-linux #type:release
Virtio-FS
Virtio-FS is a shared filesystem for letting local virtual machines access host directories.
#filesystem #red-hat #qemu #virtualization #libvirt
elfcat
elfcat generates HTML files from ELF binaries.
https://github.com/ruslashev/elfcat
#elf #binary-viewer
traitor
traitor checks for local misconfigurations and vulnerabilities and exploits them automatically to pop a root shell.
https://github.com/liamg/traitor
#linux-security
Modern UNIX
List of alternatives to common Linux/UNIX commands.
https://github.com/ibraheemdev/modern-unix
#command-line
endoflife.date
This page provides end-of-life dates for different tools and technologies.
#end-of-life
:wq