Posts published in “Security”

AlmaLinux Patches Another Security Hole That It Appeared Red Hat Was Ignoring

By Christine Hall on July 11, 2024 |

AlmaLinux Patches Another Security Hole That It Appeared Red Hat Was Ignoring

AlmaLinux is turning into the RHEL clone with a difference, by patching RHEL security holes that are given a low priority by Red Hat.

No Need to Move From CentOS 7 by June 30 If You Have Aftermarket Support

No Need to Move From CentOS 7 by June 30 If You Have Aftermarket Support

By Christine Hall on June 24, 2024 |

Distros, News Analysis and Security

Although Sunday will be the last day that CentOS 7 will be officially supported, you don't have to move to something else right away. There are plenty of support services you can use to keep your workloads safe and secure until you're ready to migrate.

Still On CentOS 6? ELevate Can Now Lift and Shift You to a Modern RHEL Clone

Graf showing the possible destination OSes supported by ELevate.

Still On CentOS 6? ELevate Can Now Lift and Shift You to a Modern RHEL Clone

By Christine Hall on April 26, 2024 |

News, Operating Systems and Security

If you're still running CentOS 6, you know for a fact that you need to get to another operating system pronto. The folks CloudLinux/AlmaLinux know this, and have made changes to their open-source lift-and-shift tool, ELevate, so that you can now easily move from CentOS 6 to land on the latest version of just about any RHEL look-alike that you want.

In a First, AlmaLinux Patches a Security Hole That Remains Unpatched in Upstream RHEL

AlmaLinux Day, held on March 18, 2024 in Rust, Germany.

In a First, AlmaLinux Patches a Security Hole That Remains Unpatched in Upstream RHEL

By Christine Hall on April 5, 2024 |

Distros, News and Security

AlmaLinux can now develop and apply security patches and bug fixes ahead of RHEL, because it no longer seeks to be a line-by-line exact copy of Red Hat's operating system.

How to Not Fall Victim to LogoFAIL

By Christine Hall on December 13, 2023 |

Recommendations and Security

SJVN at ZDNet has all the ins and outs on what you can do (other than never reboot your computer) to protect yourself from LogoFAIL until a real fix comes along.

Mitigating Android’s “AutoSpill”/Autofill Credentials Leak

By Christine Hall on December 13, 2023 |

Mobile, Recommendations and Security

Are you afraid that someone's out to steal your passwords from your phone? Well, they might be, but they're probably not. Ars has published an article that explains it all.

AlmaLinux Is Now FIPS Certified

By Christine Hall on September 20, 2023 |

Distros, News and Security

On Tuesday, AlmaLinux announced that it has obtained FIPS 140-3 security certification for its Linux distro which is primarily used in data centers by enterprises.

Malware Affects at Least 30 WordPress Plugins – Update Now

Malware Affects at Least 30 WordPress Plugins – Update Now

By FOSS Force on January 5, 2023 |

Internet and Security

At least 30 WordPress plugins are actively being exploited by a pair of similar trojans that put a backdoor on websites and redirect traffic to malware infected sites.

Is Freedom Phone the Trump University of Mobile Devices?

Is Freedom Phone the Trump University of Mobile Devices?

By Christine Hall on April 18, 2022 |

Mobile and Security

It appears that Erik Finman has been paying attention to the examples being set by a certain former president on how to run a successful business.

OpenSSF Protecting Open Source Security as Cold War Turns Hot

Brian Behlendorf onstage at TechCrunch Disrupt 2018 when he was leading the Hyperledger Project

OpenSSF Protecting Open Source Security as Cold War Turns Hot

By Christine Hall on April 11, 2022 |

Organizations and Security

While the Open Source Security Foundation is active in all areas pertaining to open source security, developers might be most interested in OpenSSF’s free online Developing Secure Software certification program.

Cracker Hackers Having a Field Day With GitLab Vulnerability

By Christine Hall on November 6, 2021 |

News and Security

The exploit, patched since April, only affects customers running on-premises versions of GitLab and doesn't affect GitLab.com.

FOSS Force Deals of the Week: Lenovo Memory Card, Mini Laptop Keyboard, and a Portable Laptop Monitor
FOSS Force Deals of the Week: Lenovo Memory Card, Mini Laptop Keyboard, and a Portable Laptop Monitor
By FOSS Force
It's Deal of the Week time again, and this we have multiple deals, Like Lenovo Memory Cards -- up to 2TB for 99 cents each -- a mini keyboard, great to keep around for use with your phone for less than $12, and a really cool laptop sized portable monitor for… a price so low you won't believe it!
Leave a Comment
OSI’s Continually Changing Election Story
OSI’s Continually Changing Election Story
By Christine Hall
As OSI attempts to do damage control on social media without admitting that it made a mistake that needs to be rectified, more evidence surfaces indicating that the organization might be trying to change facts after the fact.
Leave a Comment
Nextcloud Releases Hub 10 to Take on Big Tech
Nextcloud Releases Hub 10 to Take on Big Tech
By Larry Cafiero
The folks at Nextcloud have upped their game again with this release of Nextcloud Hub 10. Most impressive are the improvements made to the platform's AI Assistant.
Leave a Comment
OSI to Faraone: Too Friggin’ Bad
OSI to Faraone: Too Friggin’ Bad
By Christine Hall
Remember the classic headline from the 1970s: "Ford to city -- drop dead"? Well, this is how it looks, transcribed to open source in the 21st century. It's a different scale, but…
Leave a Comment
Is AI Compatible With Free Software?
Is AI Compatible With Free Software?
By Bruce Byfield
As everybody from The Linux Foundation to Open Source Initiative to Facebook can tell you, figuring out how to make artificial intelligence platforms fit the Four Freedoms has been no easy task.
Leave a Comment

OSSF Policy Summit

Afternoon Virtual Tech Talk: The Future of AI is Open

SCALE 22x (Southern California Linux Expo)

SUSECON 2025

HumanX

Posts published in “Security”

AlmaLinux Patches Another Security Hole That It Appeared Red Hat Was Ignoring

No Need to Move From CentOS 7 by June 30 If You Have Aftermarket Support

Still On CentOS 6? ELevate Can Now Lift and Shift You to a Modern RHEL Clone

In a First, AlmaLinux Patches a Security Hole That Remains Unpatched in Upstream RHEL

How to Not Fall Victim to LogoFAIL

Mitigating Android’s “AutoSpill”/Autofill Credentials Leak

AlmaLinux Is Now FIPS Certified

Malware Affects at Least 30 WordPress Plugins – Update Now

Is Freedom Phone the Trump University of Mobile Devices?

OpenSSF Protecting Open Source Security as Cold War Turns Hot

Cracker Hackers Having a Field Day With GitLab Vulnerability