Press "Enter" to skip to content

Posts published in “Security”

Internet: Basket In Which We Put All Our Eggs

By Christine Hall on May 29, 2013 |

Internet, News, Politics and Security

Internet: Basket In Which We Put All Our Eggs

Every school kid knows not to put all your eggs in one basket.

Up until about 1999 or so, I thought we were being cautious and smart about this newfangled Internet thing that had us under its spell. Then there was a now forgotten news story that told me exactly how completely we were being seduced by this new technology.

Microsoft was working on a new version of Windows, Whistler I think, and it got hacked. Somebody broke into the computer they had it on and downloaded it, which was big news in the tech press but hardly anywhere else. Microsoft audited the code, attempting to make sure it hadn’t been tampered with, and found it clean. There were no trojans or back doors installed. None they found anyway.

Continue readingInternet: Basket In Which We Put All Our Eggs

Essential WordPress Security Plugins

By Christine Hall on May 16, 2013 |

Internet, Security and Tutorial

WordPress logoA few weeks ago I told you about some security precautions to take when using the open source web platform WordPress to protect your site against brute force attacks. However, those precautions are just the beginning. A website administrator has to be forever vigilant to keep the bad guys away.

Luckily, there are many plugins available to help keep your WordPress site safe and secure. Today we’re going to discuss three security plugins that I think are essential.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingEssential WordPress Security Plugins

FOSS Force Poll: We Don’t Trust Oracle Or Java

By FOSS Force on May 14, 2013 |

Browsers, Internet and Security

Back in March and April, when the Java browser plugin was getting hammered with security holes that were being exploited in the wild, we conducted a couple of unscientific polls here on FOSS Force to determine how our visitors were handling this security crisis.

To call the problems that Java was experiencing at the time a “crisis” is not an exaggeration. If you’ll remember, the situation was considered so serious that here in the U.S., the Department of Homeland Security was urging everyone to disable the Java plugin.

These two Java polls were among the first we conducted on FOSS Force and received about the fewest votes of any polls we’ve conducted so far. Undoubtedly, this was partially due to the fact that we were just beginning to conduct polls on the site, and so polling here was something new to our visitors. Also, our articles on Java security issues received a smaller number of page views than most articles we publish. However, low readership notwithstanding, we will continue to cover serious security issues, because we think it’s important that we do so.

Continue readingFOSS Force Poll: We Don’t Trust Oracle Or Java

Why Schools Require MS Office; Nokia Plays Rope-A-Dope & More…

By FOSS Force on May 10, 2013 |

Browsers, Business, Humor, Internet, Media, News, Potpourri, Security and Software

Friday FOSS Week in Review

Pretty fonts coming to Linux?

Most of us here at FOSS Force have been using various flavors of Linux for thirteen years or so. During that time we’ve gotten used to reading comments on the ugliness of fonts in Linux, especially when it comes to browsers.

We’ve never particularly understood this or noticed any homeliness in regards to Linux fonts. Of course, we’ve also never been able to understand reviewers who write about how unexciting they find fonts like Times New Roman or Ariel to be. In our experience, Hunter Thompson is brilliant and compelling no matter what font is being used to render his rants, while Tom Wolfe is a pompous ass, no matter how humble a typeface used to display his insufferable prose.

Continue readingWhy Schools Require MS Office; Nokia Plays Rope-A-Dope & More…

Spy vs. Spy; Wikipedia Sports New DB & More…

By FOSS Force on May 3, 2013 |

Browsers, Distros, Humor, Internet, News, Politics, Security and Software

Friday FOSS Week in Review

Goodbye to Fuduntu, hello to FuSE

We already knew, of course, that Fuduntu was history, that the beloved distro was to be no more, evidently due to the fact that it was becoming nearly impossible to support GNOME 2 in any sort of meaningful way. We also knew there’d been talk among the developers at Fuduntu of continuing with a new distro. Well, now it’s a done deal and most of the developers of Fuduntu will be working on a new distro based on openSUSE.

Continue readingSpy vs. Spy; Wikipedia Sports New DB & More…

Senate To Kill Current Version Of CISPA

By Christine Hall on April 25, 2013 |

Internet, News, Politics and Security

U.S. News & World Report was the first to announce this afternoon that the Senate will evidently not vote on the cybersecurity bill known as the Cyber Information Sharing and Protection Act or CISPA. According to a report published on their website, the news organization has received assurances of the bill’s death from an unnamed member of the U.S. Senate Committee on Commerce, Science and Transportation that has been considering the bill as passed last week by the House of Representatives:

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingSenate To Kill Current Version Of CISPA

How To Put Your Shields Up To Protect Your WordPress Site

By Christine Hall on April 22, 2013 |

Internet, Security, Software, Tutorial and Web Apps

In case you haven’t heard, the popular open source website platform, WordPress, is under attack by black hat hackers. These attacks are being waged primarily against sites using the WordPress platform that are not being hosted on wordpress.com. According to KrebsonSecurity, a small botnet is being used to break into the back door of WordPress sites in an apparent attempt to build a super botnet:

“According to Web site security firm Incapsula, those responsible for this crime campaign are scanning the Internet for WordPress installations, and then attempting to log in to the administrative console at these sites using a custom list of approximately 1,000 of the most commonly-used username and password combinations.

“Incapsula co-founder Marc Gaffan told KrebsOnSecurity that infected sites will be seeded with a backdoor that lets the attackers control the site remotely (the backdoors persist regardless of whether the legitimate site owner subsequently changes his password). The infected sites then are conscripted into the attacking server botnet, and forced to launch password-guessing attacks against other sites running WordPress.”

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingHow To Put Your Shields Up To Protect Your WordPress Site

Oracle Serious About Java Security–Maybe

By Christine Hall on April 22, 2013 |

Browsers, Internet and Security

We’re not ready to tell you we think it’s safe to reactivate your Java browser plugin–in fact, just the opposite–but we will say that Oracle is at least giving the appearance they’re now serious about addressing browser-side Java’s safety. Early last week they issued a security patch that fixed either 41 or 42 Java security issues, depending on what website you’re reading.

Excuse us if we don’t seem too impressed. At this juncture all we’re willing to do is say with utmost snark, “It’s about time.”

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingOracle Serious About Java Security–Maybe

Java Remains Unsafe–Not Likely To Be Fixed Soon

By Christine Hall on March 14, 2013 |

Browsers, Internet, Security and Software

Guess what? We’re hearing reports this morning that the black hats are continuing to take advantage of security vulnerabilities in Java. Of course they are. That’s what black hats do. We’re also hearing from security experts that browser side Java isn’t likely to be made secure in the near future.

Oracle’s management of Java since obtaining it from Sun has been nothing short of a joke. It’s about time for them to decide if they want to keep Java or not. If they don’t want it, they need to spin it off or let it die. If they think it’s a valuable part of their software portfolio, they should treat it as such and work overtime to make it safe.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingJava Remains Unsafe–Not Likely To Be Fixed Soon

The Robo Cloud Is Coming

By Christine Hall on March 10, 2013 |

Internet, Potpourri and Security

I was just getting used to yesterday and suddenly it’s tomorrow.

Am I the only one who worries that we’re going a little too fast in our move to bring robotics into everyday life? Shouldn’t we sit down as a group and ask first, “Is this really something we want to do?” Maybe I’ve read too much science fiction, or maybe it’s those images from The Matrix that I just can’t get out of my mind. Or maybe it’s the memory from 2001 of the mentally ill computer with self awareness, Hal, trying to convince Dave that it was all a misunderstanding and that he promises to be good if only he’s not disconnected from his power source.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingThe Robo Cloud Is Coming

Oracle Patches 2 Java Holes–At Least 5 Remain

By Christine Hall on March 6, 2013 |

Browsers, Internet, News and Security

It would seem that Oracle is getting serious about addressing security issues in Java. Late Monday the company pushed Java 7 Update 17 that fixes two security holes that were already being exploited in the wild.

The vulnerabilities addressed in Monday’s patch had been known since at least February 1 and were originally scheduled to be fixed in a scheduled security update in April, according to a security blog on the Oracle website:

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingOracle Patches 2 Java Holes–At Least 5 Remain
Latest Articles