AlmaLinux is turning into the RHEL clone with a difference, by patching RHEL security holes that are given a low priority by Red Hat.
Posts published in “Security”
Although Sunday will be the last day that CentOS 7 will be officially supported, you don't have to move to something else right away. There are plenty of support services you can use to keep your workloads safe and secure until you're ready to migrate.
If you're still running CentOS 6, you know for a fact that you need to get to another operating system pronto. The folks CloudLinux/AlmaLinux know this, and have made changes to their open-source lift-and-shift tool, ELevate, so that you can now easily move from CentOS 6 to land on the latest version of just about any RHEL look-alike that you want.
AlmaLinux can now develop and apply security patches and bug fixes ahead of RHEL, because it no longer seeks to be a line-by-line exact copy of Red Hat's operating system.
SJVN at ZDNet has all the ins and outs on what you can do (other than never reboot your computer) to protect yourself from LogoFAIL until a real fix comes along.
Are you afraid that someone's out to steal your passwords from your phone? Well, they might be, but they're probably not. Ars has published an article that explains it all.
On Tuesday, AlmaLinux announced that it has obtained FIPS 140-3 security certification for its Linux distro which is primarily used in data centers by enterprises.
At least 30 WordPress plugins are actively being exploited by a pair of similar trojans that put a backdoor on websites and redirect traffic to malware infected sites.
It appears that Erik Finman has been paying attention to the examples being set by a certain former president on how to run a successful business.
While the Open Source Security Foundation is active in all areas pertaining to open source security, developers might be most interested in OpenSSF’s free online Developing Secure Software certification program.
The exploit, patched since April, only affects customers running on-premises versions of GitLab and doesn't affect GitLab.com.