Linux, Open Source, Research and Security - Information Technology Zone

10 essential Linux tools for network and security pros

Network World

APRIL 7, 2022

Picking just 10 Linux open source security tools isn’t easy, especially when network professionals and security experts have dozens if not several hundred tools available to them. There are different sets of tools for just about every task—network tunneling, sniffing, scanning, mapping.

Linux

Linux Tools Network Security

University of Minnesota banned from contributing to Linux kernel

The Verge

APRIL 22, 2021

The University of Minnesota has been banned from contributing to the Linux kernel by one of its maintainers after researchers from the school apparently knowingly submitted code with security flaws. The possibility of bugs slipping through is well-known in the open-source software community.

Linux

Linux Open Source Research Study

Open-sourced Technology Levels the Playing Field Between Tech Giants and Startups

CTOvision

JULY 21, 2015

The contest between proprietary technology and open source has been ongoing for a decade.Today, some of the most premium technology is open-sourced and free. Even Google's highly prized Borg software is becoming open-sourced. Government push for open source software.

Open Source

Open Source IBM Oracle Government

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

How a university got itself banned from the Linux kernel

The Verge

APRIL 30, 2021

Fifteen days later, the University of Minnesota was banned from contributing to the Linux kernel. “I I suggest you find a different community to do experiments on,” wrote Linux Foundation fellow Greg Kroah-Hartman in a livid email. None of the University of Minnesota researchers would talk to me for this story.

Linux

Linux Open Source Research Operating Systems

Technology Short Take 176

Scott Lowe

MARCH 15, 2024

This Tech Short Take is a bit heavy on security-related links, but there’s still some additional content in a number of other areas, so you should be able to find something useful—or at least interesting—in here. Ivan Pepelnjak dives deep on DHCP relaying on a Linux host. Think Linux doesn’t have malware?

Linux

Linux Vmware Load Balancer Malware

Heptio founder leads Stacklok, a new software supply chain startup that just raised $17.5M

GeekWire

MAY 17, 2023

(Stacklok Photo) A pair of cloud computing vets are jumping back into entrepreneurship with a new startup that helps enterprises vet software supply chains amid a rise in cyber-breaches stemming from open-source code. It also recommends security enhancements, helping developers throughout the development process.

Software

Software Software Open Source Authentication

UNCOVERING VULNERABILITIES IN OPEN SOURCE LIBRARIES

ForAllSecure

JANUARY 28, 2020

In recent articles, ForAllSecure has discussed how we were able to use our next-generation fuzzing solution, Mayhem, to discover previously unknown vulnerabilities in several open source projects, including Netflix DIAL reference , Das U-Boot , and more. What Language is the Target Written In? How Does This Target Accept Input?

Open Source

Open Source Quality Assurance Analysis Tools

Salesforce IT injects generative AI to ease its massive datacenter migration

CIO Business Intelligence

OCTOBER 6, 2023

That’s why SaaS giant Salesforce, in migrating its entire data center from CentOS to Red Hat Enterprise Linux, has turned to generative AI — not only to help with the migration but to drive the real-time automation of this new infrastructure. One that should also be secure and robust, he says.

Operating Systems

Operating Systems Data Center Open Source Cloud

Uncovering Vulnerabilities In Open Source Libraries (CVE-2019-13499)

ForAllSecure

JANUARY 28, 2020

In recent articles, ForAllSecure has discussed how we were able to use our next-generation fuzzing solution, Mayhem, to discover previously unknown vulnerabilities in several open source projects, including Netflix DIAL reference , Das U-Boot , and more. What Language is the Target Written In? How Does This Target Accept Input?

Open Source

Open Source Quality Assurance Analysis Tools

Uncovering Vulnerabilities In Open Source Libraries (CVE-2019-13499)

ForAllSecure

JANUARY 28, 2020

In recent articles, ForAllSecure has discussed how we were able to use our next-generation fuzzing solution, Mayhem, to discover previously unknown vulnerabilities in several open source projects, including Netflix DIAL reference , Das U-Boot , and more. What Language is the Target Written In? How Does This Target Accept Input?

Open Source

Open Source Quality Assurance Analysis Tools

Report Reveals Top Cyber Threats, Trends of 2023 First Half

SecureWorld News

JUNE 13, 2023

The report also includes actionable insights to help organizations strengthen their security posture and proactively mitigate potential risk. BlackLotus is a stealthy Unified Extensible Firmware Interface (UEFI) bootkit, a type of malware that can circumvent Secure Boot defenses.

Trends

Trends Report Malware Linux

Wall of Flippers is the way to put a stop to Flipper Zero

Dataconomy

DECEMBER 25, 2023

The Flipper Zero, a tiny pen-testing device, has become a darling of the security community. Researchers demonstrated the ability to bombard Apple devices with bogus connection requests, triggering an endless torrent of pop-ups and wreaking havoc on notifications. Remember Bluetooth spam attacks iPhones suffering for a long time?

Windows

Windows Linux Operating Systems Wireless

Why Fuzzing Is Your Friend For DevSecOps

ForAllSecure

JUNE 16, 2020

With the increasing numbers of remote workers, it’s even more critical to make sure the software agencies develop and use is secure. By incorporating a quality assurance technique called fuzzing into their software vulnerability testing and assurance processes to uncover coding errors and security loopholes. How to get started?

Linux

Linux Open Source Quality Assurance Examples

Why Fuzzing Is Your Friend For DevSecOps

ForAllSecure

JUNE 16, 2020

With the increasing numbers of remote workers, it’s even more critical to make sure the software agencies develop and use is secure. By incorporating a quality assurance technique called fuzzing into their software vulnerability testing and assurance processes to uncover coding errors and security loopholes. How to get started?

Linux

Linux Open Source Quality Assurance Examples

WHY FUZZING IS YOUR FRIEND FOR DEVSECOPS

ForAllSecure

JUNE 16, 2020

With the increasing numbers of remote workers, it’s even more critical to make sure the software agencies develop and use is secure. By incorporating a quality assurance technique called fuzzing into their software vulnerability testing and assurance processes to uncover coding errors and security loopholes. How to get started?

Linux

Linux Open Source Quality Assurance Examples

Los Angeles IT secures the vote with open source and the cloud

CIO Business Intelligence

AUGUST 11, 2023

Aman Bhullar, CIO of Los Angeles County Registrar-Recorder/County Clerk, has heeded the call, having led a widespread overhaul of antiquated voting infrastructure just in time for the contentious 2020 presidential election — a transformation rich in open source software to ensure other counties can benefit from his team’s work.

Open Source

Open Source Security Cloud Government

Severe flaws in widely used archive library put many projects at risk

Network World

JUNE 22, 2016

In a world where any new software project is built in large part on existing third-party code, finding and patching vulnerabilities in popular open-source libraries is vital to creating reliable and secure applications.

Open Source

Open Source Linux Operating Systems Applications

Federal Big Data Community Convenes 6 Feb at Apache Hadoop Forum

CTOvision

DECEMBER 21, 2013

Prior to Cloudera, his most recent role was as vice president and general manager of enterprise security at HP. Previous to HP, Tom served as CEO of enterprise security company ArcSight , which HP acquired in 2010. Prior to Cloudera Mike was CEO of Sleepycat Software, makers of Berkeley DB, the open source embedded database engine.

Big Data

Big Data CTO Data HP

Top 5 Takeaways From The “ForAllSecure Makes Software Security Automous” Livestream

ForAllSecure

APRIL 17, 2019

In February 2019, Dr. David Brumley, ForAllSecure CEO, and Zach Walker, DIU project manager, discussed how Mayhem, ForAllSecure’s behavior testing solution, has helped secure the Department of Defense’s most critical platforms. The pain of not being able to hire enough cybersecurity people to secure software is universal.

Software

Software Software Security Automotive

AWS Careers: On the Road to All 9 AWS Certifications

Linux Academy

MARCH 15, 2019

I had the pleasure of speaking with one of our amazing students about his experience training for AWS certifications on Linux Academy. We have a large hospital organization with a clinic with 20-30 healthcare providers and a large research health science division. My job encompasses supporting Linux and VMware on physical servers.

Linux

Linux Training Course Vmware

Technology Short Take 155

Scott Lowe

MAY 27, 2022

Researchers have uncovered a potential security flaw in Apple Silicon CPUs; more details in this 9to5Mac article. I’m not sure how I feel about security researchers calling this flaw “not that bad.” This will become even more useful, in my opinion, when Linux support is added. Servers/Hardware.

Virtualization

Virtualization Storage Programming Network

Technology Short Take #60

Scott Lowe

JANUARY 28, 2016

The rise of Linux in importance in the networking industry continues, with Arista announcing enhancements to Arista EOS to support—among other things—Docker containers. As a partial counterpoint to the increased use/visibility of Linux in the networking industry, check out Ivan’s take on Dell’s OS10 announcement. Networking.

Vmware

Vmware Linux Open Source Devops

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

ForAllSecure

SEPTEMBER 4, 2020

Researchers from VDA Labs used ForAllSecure Mayhem to discover a stack overflow ( CVE-2020-15359 ) in a popular open source sound utility, MP3Gain. VDA Labs, LLC, was founded in 2007 to make the world safer by providing world class cyber security services, products, and training to organizations of all sizes. 6) Summary.

Linux

Linux Open Source Programming Examples

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

ForAllSecure

SEPTEMBER 3, 2020

Researchers from VDA Labs used ForAllSecure Mayhem to discover a stack overflow ( CVE-2020-15359 ) in a popular open source sound utility, MP3Gain. VDA Labs, LLC, was founded in 2007 to make the world safer by providing world class cyber security services, products, and training to organizations of all sizes. 6) Summary.

Linux

Linux Open Source Programming Examples

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

ForAllSecure

SEPTEMBER 3, 2020

Researchers from VDA Labs used ForAllSecure Mayhem to discover a stack overflow ( CVE-2020-15359 ) in a popular open source sound utility, MP3Gain. VDA Labs, LLC, was founded in 2007 to make the world safer by providing world class cyber security services, products, and training to organizations of all sizes. 6) Summary.

Linux

Linux Open Source Programming Examples

Attend the 6 Feb @Cloudera Federal Forum: For the Analyst, Data Scientist, #BigData Technologist in DC

CTOvision

JANUARY 23, 2014

Prior to Cloudera, his most recent role was as vice president and general manager of enterprise security at HP. Previous to HP, Tom served as CEO of enterprise security company ArcSight , which HP acquired in 2010. Prior to Cloudera Mike was CEO of Sleepycat Software, makers of Berkeley DB, the open source embedded database engine.

CTO

CTO Big Data Data HP

Top 5 Takeaways From The “ForAllSecure Makes Software Security Automous” Livestream

ForAllSecure

APRIL 17, 2019

In February 2019, Dr. David Brumley, ForAllSecure CEO, and Zach Walker, DIU project manager, discussed how Mayhem, ForAllSecure’s behavior testing solution, has helped secure the Department of Defense’s most critical platforms. The pain of not being able to hire enough cybersecurity people to secure software is universal.

Software

Software Software Security Automotive

TOP 5 TAKEAWAYS FROM THE “FORALLSECURE MAKES SOFTWARE SECURITY AUTONOMOUS” LIVESTREAM

ForAllSecure

APRIL 17, 2019

In February 2019, Dr. David Brumley, ForAllSecure CEO, and Zach Walker, DIU project manager, discussed how Mayhem, ForAllSecure’s behavior testing solution, has helped secure the Department of Defense’s most critical platforms. The pain of not being able to hire enough cybersecurity people to secure software is universal.

Software

Software Software Security Automotive

Technology Short Take #60

Scott Lowe

JANUARY 28, 2016

The rise of Linux in importance in the networking industry continues, with Arista announcing enhancements to Arista EOS to support—among other things—Docker containers. As a partial counterpoint to the increased use/visibility of Linux in the networking industry, check out Ivan’s take on Dell’s OS10 announcement. Networking.

Vmware

Vmware Open Source Linux Devops

The Hacker Mind Podcast: Hacking the Chrome Sandbox

ForAllSecure

OCTOBER 13, 2020

And along with that we’ve also learned a lot about browser security. In this episode, one researcher explains how he successfully escaped the Chrome sandbox, and how bug bounties must just be a good thing resulting in better security for us all. Chrome is still one of the most secure browsers today.

Open Source

Open Source Google Software Software

The Hacker Mind Podcast: Hacking the Chrome Sandbox

ForAllSecure

OCTOBER 13, 2020

And along with that we’ve also learned a lot about browser security. In this episode, one researcher explains how he successfully escaped the Chrome sandbox, and how bug bounties must just be a good thing resulting in better security for us all. Chrome is still one of the most secure browsers today.

Open Source

Open Source Google Software Software

Best IT and Tech Blogs – Must Read Information Technology Resources 2019

Galido

MARCH 19, 2019

Information technology is the use of any tech devices, infrastructure, software and processes to create and process, store, secure and exchange all forms of digital data. Our articles are typically focused on software recommendations, business, security, interesting topics and search engine optimization and marketing. Search Security.

Resources

Resources Mobile Data Center Security

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. Apple Podcasts.

Open Source

Open Source Tools Security Software

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. Apple Podcasts.

Open Source

Open Source Tools Security Software

The Hacker Mind Podcast: Hacking the Chrome Sandbox

ForAllSecure

OCTOBER 13, 2020

And along with that we’ve also learned a lot about browser security. In this episode, one researcher explains how he successfully escaped the Chrome sandbox, and how bug bounties must just be a good thing resulting in better security for us all. Chrome is still one of the most secure browsers today.

Open Source

Open Source Google Software Software

Tech Blogs – Best Must Read Tech Resources 2019

Galido

MAY 1, 2019

These areas of tech include general IT and technology, security, IT feeds, cloud computing, data center, mobile, social media, tips and tricks, virtualization, and operating system and software blogs. Security Tech Blogs. Techworld Security Blog. They offer useful relevant topics on security and tech security news.

Resources

Resources Mobile Data Center Security

Best Tech Blogs – Must Read Tech Resources 2019

Galido

MARCH 22, 2019

These areas of tech include general IT and technology, security, IT feeds, cloud computing, data center, mobile, social media, tips and tricks, virtualization, and operating system and software blogs. Security Tech Blogs. Techworld Security Blog. They offer useful relevant topics on security and tech security news.

Resources

Resources Mobile Data Center Security

What is Virtual Network Computing (VNC)?

Dataconomy

APRIL 13, 2023

A Virtual Network Computing port is a network port that is used by VNC servers and clients to establish a connection over a network The VNC technology was developed by the British company Olivetti Research Laboratory in the late 1990s and is currently maintained and extended by RealVNC Ltd. and the open-source community.

Virtualization

Virtualization Network Linux Windows

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. Apple Podcasts.

Open Source

Open Source Tools Security Software

25 Feb Cloudera Federal Forum in Tysons Corner: Amazing agenda filled with lessons learned and best practices

CTOvision

FEBRUARY 4, 2015

Data Security—What’s New and What’s Next? Chief Security Architect, Office of the CTO, Cloudera. Security Spotlight: Focus on HIPAA and PCI Compliance. Chief Security Architect, Office of the CTO, Cloudera. Security and Compliance in the Era of Big Data. Chief Security Architect, Office of the CTO, Cloudera.

Fractional CTO

Fractional CTO CTO CTO Hire Big Data

Join Architects, Planners, Program Managers, Data Scientists at 4th Annual Cloudera Federal Forum in DC 25 Feb

CTOvision

JANUARY 18, 2015

Data Security—What’s New and What’s Next? Chief Security Architect, Office of the CTO, Cloudera. Security Spotlight: Focus on HIPAA and PCI Compliance. Chief Security Architect, Office of the CTO, Cloudera. Security and Compliance in the Era of Big Data. Chief Security Architect, Office of the CTO, Cloudera.

Program Management

Program Management Fractional CTO CTO Programming

Top Tech Websites 2019

Galido

SEPTEMBER 25, 2019

These areas of tech include general IT and technology, security, IT feeds, cloud computing, data center, mobile, social media, tips and tricks, virtualization, and operating system and software blogs. Security Tech Blogs. Techworld Security Blog. They offer useful relevant topics on security and tech security news.

Mobile

Mobile Data Center Security Virtualization

Best IT Blogs – Must Read Information Technology Resources 2019

Galido

MARCH 19, 2019

Information technology is the use of any tech devices, infrastructure, software and processes to create and process, store, secure and exchange all forms of digital data. Our articles are typically focused on software recommendations, business, security, interesting topics and search engine optimization and marketing. Search Security.

Resources

Resources Mobile Data Center Security

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago. How then does one start securing it? In 2013, researcher Nitesh Dhanjani found that a popular brand used simple MD5 hashes of the device's MAC addresses for authentication.

Internet

Internet Research Security Tools

10 essential Linux tools for network and security pros

University of Minnesota banned from contributing to Linux kernel

Webinars

Trending Sources

Open-sourced Technology Levels the Playing Field Between Tech Giants and Startups

Webinars

How a university got itself banned from the Linux kernel

Technology Short Take 176

Heptio founder leads Stacklok, a new software supply chain startup that just raised $17.5M

UNCOVERING VULNERABILITIES IN OPEN SOURCE LIBRARIES

Salesforce IT injects generative AI to ease its massive datacenter migration

Uncovering Vulnerabilities In Open Source Libraries (CVE-2019-13499)

Uncovering Vulnerabilities In Open Source Libraries (CVE-2019-13499)

Report Reveals Top Cyber Threats, Trends of 2023 First Half

Wall of Flippers is the way to put a stop to Flipper Zero

Why Fuzzing Is Your Friend For DevSecOps

Why Fuzzing Is Your Friend For DevSecOps

WHY FUZZING IS YOUR FRIEND FOR DEVSECOPS

Los Angeles IT secures the vote with open source and the cloud

Severe flaws in widely used archive library put many projects at risk

Federal Big Data Community Convenes 6 Feb at Apache Hadoop Forum

Top 5 Takeaways From The “ForAllSecure Makes Software Security Automous” Livestream

AWS Careers: On the Road to All 9 AWS Certifications

Technology Short Take 155

Technology Short Take #60

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

CVE-2020-15359: VDALabs Uses Mayhem To Find MP3Gain Stack Overflow

Attend the 6 Feb @Cloudera Federal Forum: For the Analyst, Data Scientist, #BigData Technologist in DC

Top 5 Takeaways From The “ForAllSecure Makes Software Security Automous” Livestream

TOP 5 TAKEAWAYS FROM THE “FORALLSECURE MAKES SOFTWARE SECURITY AUTONOMOUS” LIVESTREAM

Technology Short Take #60

The Hacker Mind Podcast: Hacking the Chrome Sandbox

The Hacker Mind Podcast: Hacking the Chrome Sandbox

Best IT and Tech Blogs – Must Read Information Technology Resources 2019

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Hacker Mind Podcast: Hunting The Next Heartbleed

The Hacker Mind Podcast: Hacking the Chrome Sandbox

Tech Blogs – Best Must Read Tech Resources 2019

Best Tech Blogs – Must Read Tech Resources 2019

What is Virtual Network Computing (VNC)?

The Hacker Mind Podcast: Hunting The Next Heartbleed

25 Feb Cloudera Federal Forum in Tysons Corner: Amazing agenda filled with lessons learned and best practices

Join Architects, Planners, Program Managers, Data Scientists at 4th Annual Cloudera Federal Forum in DC 25 Feb

Top Tech Websites 2019

Best IT Blogs – Must Read Information Technology Resources 2019

The Hacker Mind: Hacking IoT

Stay Connected