Press "Enter" to skip to content

Posts published in “Security”

Mickey Mouse Open Source, Close Call at WordPress, and More…

By Christine Hall on November 25, 2016 |

Business, Desktops, News, Politics and Security

Mickey Mouse Open Source, Close Call at WordPress, and More…Mickey Mouse Disney

Also included: FBI hacks 8,000 with single warrant, new Cinnamon desktop release, “government-backed attackers” after journalists, and FOSS Force adds beef to newsfeed.

FOSS Week in Review

Mickey Mouse Disney

Okay, Thanksgiving is over. Let the sales begin. Which reminds me, I have to buy a new cheap Wi-Fi router — cheap being the operative word. Any suggestions?

Otherwise, it’s back to FOSS news…

Continue readingMickey Mouse Open Source, Close Call at WordPress, and More…
Malware Found on New Windows Computers (Not What You Think)computer doctor

Malware Found on New Windows Computers (Not What You Think)

By Christine Hall on November 23, 2016 |

Business, News and Security

An investigative team for a Seattle television station discovered that finding malware on clean computers to be an everyday practice at Office Depot.

computer doctor

It appears that the office supply giant, Office Depot, isn’t adverse to tarnishing its reputation if there’s a buck or two to be made in the process.

KIRO TV in Seattle reported on November 15 that it had taken brand new out-of-the-box computers that had never been connected to the Internet to Office Depot stores, both in Washington state and Portland, Oregon, and told the repair desk staff that “it’s running a little slow.” In four out of six cases they were told the computer was infected with viruses and would require an up to $180 fix.

After declining the “fix,” they took the “virus laden” machines to a Seattle security outfit, IOActive, which reexamined the machines. “We found no symptoms of malware when we operated them,” an employee with the firm, Will Longman, said. “Nor did we find any actual malware.”

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingMalware Found on New Windows Computers (Not What You Think)
Krebs Goes Down, Opera Gets a VPN & More…Yahoo logo

Krebs Goes Down, Opera Gets a VPN & More…

By Christine Hall on September 24, 2016 |

Browsers, Distros, Media, News, Security and Software

Also included: Yahoo’s big hack, Garrett on Lenovo, new Audacious and GNOME, and Ubuntu get’s ready for Yakkety Yak.

FOSS Week in Review

I spent time this week terminating a Yahoo account I’ve had since way back in the last century. For years, the My Yahoo page was my “home” page whenever I fired-up the old dial-up to go online, but over time the portal (remember portals?) became less and less relevant and I found my visits to Yahoo becoming less and less frequent. By the time I closed the account, prompted by news of a massive hack involving 500 million accounts going back to 2014, I hadn’t visited my Yahoo page in well over a year. RIP Yahoo. It was nice knowing you.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingKrebs Goes Down, Opera Gets a VPN & More…
Redesigning Tor, Goodbye OpenOffice & More…Tor logo

Redesigning Tor, Goodbye OpenOffice & More…

By Christine Hall on September 3, 2016 |

Business, Distros, News, Obits, Security and Software

Also included: Remembering Vernon Adams, Red Hat vs. VMware, a new distro release, openSUSE Leap and ransomware that deletes files.

FOSS Week in Review

The summer of ’16 is all but over. Good riddance. Here in my piece of the woods we’ve seen all of the 90 plus days with high humidity I can take. Time to get out the long sleeves and sweaters.

It’s also time to look at this week’s FOSS news.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingRedesigning Tor, Goodbye OpenOffice & More…
The Last LinuxCon, MariaDB Goes Open Core & More…Linus Torvalds, Dirk Hohndel, LinuxCon 2016

The Last LinuxCon, MariaDB Goes Open Core & More…

By Christine Hall on August 28, 2016 |

Business, Community, Distros, News, Obits, Politics, Security, Software and Web Apps

Also included: Gilles Chanteperdrix passes, corporate Linux, Cisco patches against the NSA, MariaDB’s proprietary moves, Netrunner becomes Maui, Ubuntu to replace Upstart, Fedora and Wayland, and Linux client for Yandex Disk.

FOSS Week in Review

The last LinuxCon: This year’s LinuxCon, held in the city of Toronto which is one of my favorite old haunts, was the last love fest for Linux under the name LinuxCon, which had come to be synonymous for a certain type of Linux festival. In a way, it’s fitting this should be the last as the show ended on the day before Linux’s 25th birthday and was, in many ways, a celebration of the first quarter century of Linux. In another way it’s a crying shame. LinuxCon has come to stand for the community spirited nature of Linux, even though backed by the Linux Foundation, which becomes less of a community organization with the passing of each year.

Linus Torvalds, Dirk Hohndel, LinuxCon 2016
Linus Torvalds being interviewed by VMware’s Dirk Hohndel on the last day of the last LinuxCon North America. Next year’s event in Los Angeles will be renamed Open Source Summit.
Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingThe Last LinuxCon, MariaDB Goes Open Core & More…
Jay Beale: Linux Security and Remembering Bastille LinuxJay Beale Linux security

Jay Beale: Linux Security and Remembering Bastille Linux

By Robin "Roblimo" Miller on August 25, 2016 |

Interview, Mobile, Operating Systems, Security and Video

“Secure by design” doesn’t mean that Linux users should take a carefree approach to security. On the Internet, somebody’s always hiding behind the firewall trying to pick the lock.

The FOSS Force Video Interview

Security expert and co-creator of the Linux-hardening (and now Unix-hardening) project Bastille Linux. That’s Jay Beale. He’s been working with Linux, and specifically on security, since the late 1980s. The greatest threat to Linux these days? According to Beale, the thing you really need to watch out for is your Android phone, which your handset manufacturer and wireless carrier may or may not be good about updating with the latest security patches. Even worse? Applications you get outside of the controlled Google Play and Amazon environments, where who-knows-what malware may lurk.

Robin "Roblimo" Miller

Robin “Roblimo” Miller is a freelance writer and former editor-in-chief at Open Source Technology Group, the company that owned SourceForge, freshmeat, Linux.com, NewsForge, ThinkGeek and Slashdot, and until recently served as a video editor at Slashdot. Now he’s mostly retired, but still works part-time as an editorial consultant for Grid Dynamics, and (obviously) writes for FOSS Force.

Continue readingJay Beale: Linux Security and Remembering Bastille Linux
Encrypted File Sharing Service Tresorit Offers Linux Desktop Client, But…Tresorit Linux Client

Encrypted File Sharing Service Tresorit Offers Linux Desktop Client, But…

By Christine Hall on August 3, 2016 |

Reviews, Security and Web Apps

At first glance, Tresorit’s end-to-end file sharing service looks like it might be able to overcome its proprietary nature and win favor with some Linux users. Unfortunately, the service comes with another issue that might be an insurmountable deal breaker for some.

The FOSS Force Review

On Thursday I received an email from Eszter Szilva, a PR manager at Tresorit, which is an “end-to-end encrypted file sharing service.” She was offering an invitation to take a peek at the company’s just released client for GNU/Linux. I must admit I was a little excited by this, despite the fact that I already figured the service was also end-to-end proprietary. I was willing to ignore that, thinking it’s about time for companies to start treating Linux users with the same respect given to users of other operating systems.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingEncrypted File Sharing Service Tresorit Offers Linux Desktop Client, But…
Ghosts in the Voting MachinesVoting Machine

Ghosts in the Voting Machines

By Christine Hall on August 2, 2016 |

Hardware, Politics and Security

Whether or not foreign governments are planning on manipulating our election results in November, it’s past time we started taking the security of electronic voting seriously.

Op-ed

Even if it turns out that the FBI’s suspicions that Russian government forces are behind the hacking of the Democratic party turn out to be untrue, the fact our government is willing to publicly speculate on the possibility should be cause for some alarm. While it’s true that from a hacking sense the Democrats’ computers were probably low lying fruit and easy pickings, so are many of the voting machines that will be called into service in November’s general election.

Voting Machine
Joebeone at en.wikipedia [GNU Free Documentation License]
For decades we’ve known that many voting machines are subject to tampering, and many reasonable people are suspicious that tampering on the state level has already affected the outcome of some elections. This year we can double down on those concerns. In an era when politically motivated officials have been putting in place draconian voter restrictions in order to quell largely unproven fraud by a handful of individual voters, we’ve connected our voting machines to the Internet, which is an open invitation to foreign governments that might have a reason to want to have control over who governs us. In light of the recent allegations against Russia, that should be worrisome.

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingGhosts in the Voting Machines
Ubuntu Hacked, Linux Journal Extremists & More…Bumblehive NSA

Ubuntu Hacked, Linux Journal Extremists & More…

By Christine Hall on July 15, 2016 |

Community, Distros, Operating Systems, Politics, Security and Software

Also included: Microsoft shows love of Linux with gift of Skype and Torvalds continues to be Torvalds.

FOSS Week in Review

The biggest Linux story this week by mainstream tech sites’ standards was Skype working to include Linux users in its installed base by releasing a new Linux client to replace obsolete software that hadn’t been updated in at least two years. According to many of the comments on FOSS Force’s coverage, Skype might consider itself a day late and a dollar short.

The big problem, of course, is Skype’s ownership by Microsoft, whose love of Linux is so far unrequited. Add to that the fact that Skype, like Microsoft, doesn’t have the monopoly it once had and the result is a less than enthusiastic response. However, it wouldn’t surprise me if Ubuntu doesn’t start installing the Skype client by default once it comes out of beta.

Now on to some news that’s really newsworthy…

Christine Hall

Christine Hall has been a journalist since 1971. In 2001, she began writing a weekly consumer computer column and started covering Linux and FOSS in 2002 after making the switch to GNU/Linux. Follow her on Twitter: @BrideOfLinux

FOSSForce.com
Continue readingUbuntu Hacked, Linux Journal Extremists & More…
David A. Wheeler: Working to Prevent the Next HeartbleedDavid A. Wheeler Core Infrastructure Initiative

David A. Wheeler: Working to Prevent the Next Heartbleed

By Robin "Roblimo" Miller on July 14, 2016 |

Community, Interview, Security and Software

The Heartbleed bug revealed that some important open source projects were so understaffed that they were unable to properly implement best security practices. The Linux Foundation’s Core Infrastructure Initiative , formed to help open source projects have the ability to adopt these practices, uses a lot of carrot and very little stick.

Robin "Roblimo" Miller

Robin “Roblimo” Miller is a freelance writer and former editor-in-chief at Open Source Technology Group, the company that owned SourceForge, freshmeat, Linux.com, NewsForge, ThinkGeek and Slashdot, and until recently served as a video editor at Slashdot. Now he’s mostly retired, but still works part-time as an editorial consultant for Grid Dynamics, and (obviously) writes for FOSS Force.

Continue readingDavid A. Wheeler: Working to Prevent the Next Heartbleed
SourceForge Tightens Security With Malware ScansSourceForge warning badge

SourceForge Tightens Security With Malware Scans

By FOSS Force on May 17, 2016 |

Business, News, Security and Software

After taking down the controversial DevShare program in early February, the new owners of popular software repository, SourceForge, have begun scanning all projects it hosts for malware in an attempt to regain trust that was lost by Dice Holdings, the site’s previous owners.

It appears as if the new owners at SourceForge are serious about fixing the mistakes made by the site’s previous owners. FOSS Force has learned that as of today, the software repository used by many free and open source projects is scanning all hosted projects for malware. Projects that don’t make the grade will be noticeably flagged with a red warning badge located beside the project’s download button.

SourceForge warning badge
A screenshot of the SourceForge warning badge that now displays on any project found to be containing malware.

According to a notice posted on the SourceForge website this afternoon, the scans look for “adware, viruses, and any unwanted applications that may be intentionally or inadvertently included in the software package.” Account holders with projects flagged as containing malware will be notified by SourceForge.

Continue readingSourceForge Tightens Security With Malware Scans
Latest Articles