Press "Enter" to skip to content

Posts published by “FOSS Force”

SourceForge Tightens Security With Malware Scans

By FOSS Force on May 17, 2016 |

Business, News, Security and Software

SourceForge Tightens Security With Malware ScansSourceForge warning badge

After taking down the controversial DevShare program in early February, the new owners of popular software repository, SourceForge, have begun scanning all projects it hosts for malware in an attempt to regain trust that was lost by Dice Holdings, the site’s previous owners.

It appears as if the new owners at SourceForge are serious about fixing the mistakes made by the site’s previous owners. FOSS Force has learned that as of today, the software repository used by many free and open source projects is scanning all hosted projects for malware. Projects that don’t make the grade will be noticeably flagged with a red warning badge located beside the project’s download button.

SourceForge warning badge
A screenshot of the SourceForge warning badge that now displays on any project found to be containing malware.

According to a notice posted on the SourceForge website this afternoon, the scans look for “adware, viruses, and any unwanted applications that may be intentionally or inadvertently included in the software package.” Account holders with projects flagged as containing malware will be notified by SourceForge.

Continue readingSourceForge Tightens Security With Malware Scans
Firefox Lets Users Try New Features With ‘Test Pilot’Mozilla Firefox Test Pilot logo

Firefox Lets Users Try New Features With ‘Test Pilot’

By FOSS Force on May 11, 2016 |

Browsers, Community and News

Mozilla seeks user feedback with a new project that gives users a chance to take planned features for a test flight.

On Tuesday Mozilla announced a new program for Firefox that allows users to try features that are in the works but not yet ready for prime time. The news of the new program, called Test Pilot, came by way of a Mozilla Blog post by Nick Nguyen, the organization’s vice president of Firefox product. He said that the program will not only allow users an early look at yet to be implemented planned features, but will give Firefox’s developers a chance to get feedback from the community.

Mozilla Firefox Test Pilot logo“When building features for hundreds of millions of Firefox users worldwide, it’s important to get them right,” he wrote. “To help figure out which features should ship and how they should work, we created the new Test Pilot program.”

Continue readingFirefox Lets Users Try New Features With ‘Test Pilot’
ImageMagick’s ImageTragick: Exploits Not Yet WidespreadImageMagick logo

ImageMagick’s ImageTragick: Exploits Not Yet Widespread

By FOSS Force on May 10, 2016 |

Internet, News, Security and Web Apps

Breaking News: Patched versions of ImageMagick now available.

FOSS Force has now learned that the ImageTragick hole has been patched in versions 7.0.1-2 and 6.9.4-0. Websites using ImageMagick are urged to upgrade.

Security researchers are reporting that cracker/hackers are currently taking advantage of ImageTragick, the easy to exploit security vulnerability in ImageMagick, a popular open source image manipulation tool used by many websites. However, so far the attacks don’t appear to be widespread.

Continue readingImageMagick’s ImageTragick: Exploits Not Yet Widespread
Open Source ImageMagick Security Bug Puts Sites at RiskImageMagick logo

Open Source ImageMagick Security Bug Puts Sites at Risk

By FOSS Force on May 3, 2016 |

News and Security

A security vulnerability in the open source ImageMagick graphics tool used by a large number of websites could allow a malicious payload to be executed onsite.

ImageMagick, an open source suite of tools for working with graphic images used by a large number of websites, has been found to contain a serious security vulnerability that puts sites using the software at risk for malicious code to be executed onsite. Security experts consider exploitation to be so easy they’re calling it “trivial,” and exploits are already circulating in the wild. The biggest risk is to sites that allows users to upload their own image files.

Information about the vulnerability was made public Tuesday afternoon by Ryan Huber, a developer and security researcher, who wrote that he had little choice but to post about the exploit.

Continue readingOpen Source ImageMagick Security Bug Puts Sites at Risk
Tuesday Is ‘International Day Against DRM’International Day Against DRM

Tuesday Is ‘International Day Against DRM’

By FOSS Force on May 1, 2016 |

Community, Copyright and News

On Tuesday, May 3, people in communities around the world will gather to take a stand against digital rights management.

Tuesday May 3 is International Day Against DRM, which for ten years has been an annual even to protest and build awareness about digital rights management. The event is sponsored by the organization Defective by Design, the anti-DRM initiative of the Free Software Foundation.

International Day Against DRM

Continue readingTuesday Is ‘International Day Against DRM’
DuckDuckGo Wants Answers to Linux QuestionsDuckDuckGo logo

DuckDuckGo Wants Answers to Linux Questions

By FOSS Force on April 28, 2016 |

Community, Internet, News, Operating Systems and

The search engine that works to protect your privacy is looking for some Linux “Instant Answers” for programmers. Would they like some answers to everyday Linux questions as well?

DuckDuckGo, the search engine centered around privacy, is asking for the community’s help in improving its results for Linux related searches. On Wednesday, “Bill” with the Philidelphia based search engine company posted to the Linux subreddit asking for help from the community.

DuckDuckGo logo“DuckDuckGo’s focus is to become the best search engine for programmers,” Bill wrote, “and we’d love your help improving our open-source Linux Instant Answers. There’s currently a couple of cheat sheets here and here. We want to get some great feedback from the Reddit community for the developer, crashrane.”

Continue readingDuckDuckGo Wants Answers to Linux Questions
The Best Windows 10 Commercial EverMicrosoft Windows 7 warning

The Best Windows 10 Commercial Ever

By FOSS Force on April 28, 2016 |

Media, News, Operating Systems and Video

We interrupt this weather report with a very important announcement. Despite our best efforts, your local TV station has not yet upgraded to Windows 10. We warned them that something like this was bound to happen sooner or later.

We absolutely had to share this with you.

On Wednesday morning on KCCI, the CBS affiliate in Des Moines, Iowa, meterologist Metinka Slater was in the middle of giving her weather forecast when her onscreen computer suddenly presented one of those upgrade-to-Windows-10 nag screens we’ve been hearing so much about.

Continue readingThe Best Windows 10 Commercial Ever
‘New’ Windows Security Flaw Runs Apps Without Admin RightsSecurity hole

‘New’ Windows Security Flaw Runs Apps Without Admin Rights

By FOSS Force on April 25, 2016 |

News and Security

Newly discovered Windows security hole bypasses AppLocker and lets apps run without admin rights. Proof-of-concept code published.

This is one of those “look what I found while looking for something else” sort of stories. Casey Smith was trying to solve a problem and accidentally discovered a security vulnerability that affects business and server editions of Windows 7 and up.

Continue reading‘New’ Windows Security Flaw Runs Apps Without Admin Rights