By timothy from Slashdot's holes-to-plug department
According to an article at Ars Technica's, a major security bug faces Linux users
, akin to the one recently found in Apple's iOS (and which Apple has since fixed). Says the article:"The bug is the result of commands in a section of the GnuTLS code that verify the authenticity of TLS certificates, which are often known simply as X509 certificates. The coding error, which may have been present in the code since 2005, causes critical verification checks to be terminated, drawing ironic parallels to the extremely critical 'goto fail' flaw that for months put users of Apple's iOS and OS X operating systems at risk of surreptitious eavesdropping attacks. Apple developers have since patched the bug."
And while Apple can readily fix a bug in its own software, at least for users who keep up on patches, "Linux" refers to a broad range of systems and vendors, rather than a single company, and the affected systems include some of the biggest names in the Linux world, like Red Hat, Debian, and Ubuntu.Read Replies (0)
By timothy from Slashdot's consume-consume-consume department
Amazon may have a slight lead in the world of Android-based TV-centric mini-boxes with its Amazon Fire TV
, but according to this story, Google is getting set to release just such a box itself
."According to documents obtained exclusively by The Verge, Google is about to launch a renewed assault on your television set called Android TV. Major video app providers are building for the platform right now. Android TV may sound like a semantic difference — after all, Google TV was based on Android — but it’s something very different. Android TV is no longer a crazy attempt to turn your TV into a bigger, more powerful smartphone. "Android TV is an entertainment interface, not a computing platform," writes Google. "It’s all about finding and enjoying content with the least amount of friction." It will be "cinematic, fun, fluid, and fast." ...
What does that all mean? It means that Android TV will look and feel a lot more like the rest of the set top boxes on the market, including Apple TV, Amazon’s Fire TV, and Roku."Read Replies (0)
By timothy from Slashdot's embed-and-deploy department
A few months back, we posted a video interview
with some of the folks behind the Linux-friendly, x86-based MinnowBoard. TechCrunch reports the release
of a more powerful version
of the same all-in-one computer, now with a 1.91GHz Atom E3845 processor. According to the linked article, "The board's schematics are also available for download and the Intel graphics chipset has open-source drivers so hackers can have their way with the board. While it doesn’t compete directly with the Raspberry Pi – the Pi is more an educational tool and already has a robust ecosystem – it is a way for DIYers to mess around in x86 architected systems as well as save a bit of cash. The system uses break-out boards called Lures to expand functionality."Read Replies (0)
By timothy from Slashdot's disrupting-the-moral-purity-of-the-cuban-autocracy department
We mentioned a few days ago the USAID-funded SMS social network that was connecting Cubans against the wishes of the Cuban government
. Now Glen Greenwald's The Intercept has more on this kind of back-channel government intervention via what he characterizes as "the Internet propaganda bucket." Advocatus Diaboli (1627651)
writes with an excerpt: "These ideas–discussions of how to exploit the internet, specifically social media, to surreptitiously disseminate viewpoints friendly to western interests and spread false or damaging information about targets–appear repeatedly throughout the archive of materials provided by NSA whistleblower Edward Snowden. Documents prepared by NSA and its British counterpart GCHQ–and previously published by The Intercept as well as some by NBC News–detailed several of those programs, including a unit devoted in part to "discrediting" the agency's enemies with false information spread online.
The documents in the archive show that the British are particularly aggressive and eager in this regard, and formally shared their methods with their U.S. counterparts. One previously undisclosed top-secret document–prepared by GCHQ for the 2010 annual "SIGDEV" gathering of the "Five Eyes" surveillance alliance comprising the UK, Canada, New Zealand, Australia, and the U.S.–explicitly discusses ways to exploit Twitter, Facebook, YouTube, and other social media as secret platforms for propaganda."Read Replies (0)
By timothy from Slashdot's perfect-security-on-the-way department
An anonymous reader writes "I am a new Linux user; I'm on 2nd day now. Currently I am trying out Ubuntu, but that could change. I am looking for a user friendly firewall that I can set up that lets me do these things:1) set up a default deny rule 2) carve out exceptions for these programs: browser, email client, chat client, yum and/or apt. 3) carve out exceptions to the exceptions in requirement 2 — i.e. I want to be able to then block off IPs and IP ranges known to be used by malware, marketers, etc., and all protocols which aren't needed for requirement 2. It also needs to have good enough documentation that a beginner like me can figure it out. Previously, I had done all of the above in AVG Firewall on Windows, and it was very easy to do. So far, I have tried these things:1) IPTABLES — it looked really easy to screw it up and then not notice that it's screwed up and/or not be able to fix it even if I did notice, so I tried other things at that point... 2) searched the internet and found various free firewalls such as Firestarter, GUFW, etc., which I weren't able to make meet my requirements. Can someone either point me to a firewall that meets my needs or else give me some hints on how to make firestarter or GUFW do what I need?"Read Replies (0)