[dundee] Taylug weekly articles 23 - SSL
gordon dunlop
astrozubenel at googlemail.com
Mon May 19 11:52:20 BST 2008
Hi All,
This week the theme is SSL. As you know from my post on the TayLUG
mailing list about the Bebian SSL vulnerability. It has affected many
servers, Lug.org just to name one, where new SSH keys had to be
generated by everyone. Theses exploits are widely promulgated on the
Internet, informing not only I.T. Administrators and ordinary users
but also would be black hatters. It then starts a race against time
for people to get things patched before anyone can exploit these
vulnerabilities, that's the upside and downside to open source in not
hiding information, everyone knows about it.
S – Security:
This about the SSL vulnerability.
http://www.desktoplinux.com/news/NS9755397895.html
A stinging attack on the Debian developers.
http://practical-tech.com/operating-system/linux/open-source-security-idiots/
A guide about fixing the Debian SSL vulnerability.
http://blogs.computerworld.com/fixing_debian_openssl
There are tools circulating that can crack Debian keys.
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9085980&intsrc=hm_list
SSH brute-force attacks on the rise.
http://arstechnica.com/news.ars/post/20080515-strong-passwords-no-panacea-as-ssh-brute-force-attacks-rise.html
Using autossh.
http://www.linux.com/feature/134133
A researcher is to release a Cisco rootkit.
http://blogs.zdnet.com/security/?p=1100&tag=nl.e622
A Laptop privacy filter.
http://net-security.org/article.php?id=1133
S – Software, hardware and general open source:
An interview with Stuart Cohen and the Collaborative Software Initiative.
http://www.linux-mag.com/id/5983/
Drupal, Amazon & cloud computing.
http://tag1consulting.com/Drupal_and_Amazon_EC2_Quick_Start
Developers & Google.
http://www.oreillynet.com/onlamp/blog/2008/05/why_open_source_developers_can.html
21 Google Summer of Code projects interest this guy.
http://www.freesoftwaremagazine.com/columns/2008_google_summer_code_21_projects_im_excited_about
Becta goes to the EC.
http://news.zdnet.co.uk/software/0,1000000121,39416136,00.htm
Building a supercomputer in half a day at a U.S. University, that's awesome!
http://www.informationweek.com/news/hardware/supercomputers/showArticle.jhtml?articleID=207601782
A Linux thin client system.
http://www.linuxdevices.com/news/NS9959736795.html
U.K. & open source
http://community.zdnet.co.uk/blog/0,1000000567,10008172o-2000469549b,00.htm
Asterisk going carrier grade.
http://www.internetnews.com/infra/article.php/3746401
Cisco, Vyatta & opensource.
http://blogs.zdnet.com/open-source/?p=2417
Digistan (Digital Standards Organization) and the Hague declaration.
http://www.consortiuminfo.org/standardsblog/article.php?story=20080512141838422
L – Linux:
Ian Murdoch the founder of Debian and now a Sun executive talks about
Sun, OpenSolaris & Linux.
http://www.computerworld.com.au/index.php/id;915968814;pp;1;fp;16;fpid;1
The Gentoo Foundation reinstated.
http://kloeri.livejournal.com/4623.html
Largest stock exchange goes Linux.
http://www.internetnews.com/software/article.php/3746736/The+Big+Board+Goes+Linux.htm
Sugar Labs Foundation started.
http://wiki.sugarlabs.org/go/Announcing_SugarLabs
Mumbai City buses goes Linux.
http://www.linux.com/feature/132871
Linux and small business.
http://desktoplinux.com/articles/AT7506682379.html
Linux file systems and high performance I/O requirements, this guy
thinks it has to be improved.
http://www.enterprisestorageforum.com/sans/features/article.php/3745996
Using SystemRescueCD.
http://www.linuxplanet.com/linuxplanet/tutorials/6484/1/
Using GNU Autotools.
http://www.freesoftwaremagazine.com/books/agaal/brief_introduction_to_gnu_autotools
A comparison of FreeBSD, Linux, Solaris & Windows kernels.
http://www.spinellis.gr/pubs/conf/2008-ICSE-4kernel/html/Spi08b.html
It is at this time of year that students at the University of Abertay
Dundee are packing up to go home after their final exams etc. and will
be back again in September. Next weekend will be the last of the
TayLug articles for the season, starting again in September if there
is still a requirement for this kind of thing. So to all the
non-Dundee students, have a pleasant summer and we will see you again
in September, I think Arron will be planning a few things for the next
academic session.
Gordon
TayLUG Administrator
More information about the dundee
mailing list