Security Projects

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12

The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12. This announcement has significant ramifications for secure Linux system administration, ...
Dec 06, 2024
  0

Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins

The Arch Linux 2024.12.01 ISO release marks&n...
Dec 03, 2024
  0
19.Laptop Bed Esm H115

Deck the Halls with Enhanced Security: Linux Kernel 6.13's Top Features & Improvements

As Linux admins and infosec professionals prepare for t...
Dec 02, 2024
  0
1.Penguin Landscape Esm H115

Discover Security Projects News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12. This announcement has significant ramifications for secure Linux system administration, as operating outdated kernels can expose systems to unpatched security flaws and associated risks.

Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins

Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline installation, and increase security. Arch Linux offers three enhancements that simplify deployments, increase security, and ensure smooth operations across various hardware configurations. These include the powerful capabilities of the Linux Kernel 6.12 installer, the revamped and intuitive Archinstall 3.0 installation package, and many new software packages.

Deck the Halls with Enhanced Security: Linux Kernel 6.13s Top Features & Improvements

Deck the Halls with Enhanced Security: Linux Kernel 6.13's Top Features & Improvements

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made headlines when he unveiled the initial release candidate of Linux Kernel 6.13 (6.13-rc1) on December 1, 2024. Its final version is due for a mid-to-late January 2025 release. This gives ample opportunity for testing, resource planning, and resource allocation during an otherwise slower season.

From Compliance to Cyber Resilience: How CMMC Enhances Your Security Framework

From Compliance to Cyber Resilience: How CMMC Enhances Your Security Framework

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

As the world becomes increasingly digital—transforming education, healthcare, and businesses—cybersecurity threats are keeping pace. These challenges aren’t just growing in number; they’re becoming more complex, and the consequences of a single attack can be devastating, both financially and reputationally.

Examining the Significance of the Recent Real-time Linux Kernel v6.12 Release

Examining the Significance of the Recent Real-time Linux Kernel v6.12 Release

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux Kernel v6.12 marks a historic event in its 22-year history as it continues to meet the needs of developers, businesses, and end-users alike. Of particular note is its inclusion of long-awaited real-time "PREEMPT_RT" support - something developers had been working towards for two decades prior - in its mainline kernel version. This marks an important step toward improving real-time application performance by making kernel processes preemptible and improving real-time application performance overall.

AMD ERAPS: A New Era for Zen 5 Performance and Security

AMD ERAPS: A New Era for Zen 5 Performance and Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

AMD's Zen 5 architecture has earned wide praise for its robust performance capabilities since introducing the Ryzen 9000 series and EPYC 9005 "Turin" processors. A recent addition is Enhanced Return Address Prediction Security (ERAPS). Although not explicitly covered during initial launch events or official documentation from AMD, posts to Linux kernel mailing lists have begun shedding light on ERAPS' significance.

Evaluating TPM Bus Encryption and Integrity Protection: Pros, Cons, and Opting Out in Linux 6.12

Evaluating TPM Bus Encryption and Integrity Protection: Pros, Cons, and Opting Out in Linux 6.12

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux Kernel 6.10 introduced an impressive feature to strengthen the security of the Trusted Platform Module (TPM). Bus encryption and integrity protection safeguard it against potential interposers or sniffing attacks against TPM. Due to performance bottlenecks associated with this feature, the Linux 6.12 update introduced an option to disable its protection. The tpm.disable_pcr_integrity= kernel command line parameter was added to disable PCR integrity protection. PCR integrity protection is enabled by default for Linux x86_64 systems.

Beyond Rust: Safe C++ Takes on Memory Safety Challenges

Beyond Rust: Safe C++ Takes on Memory Safety Challenges

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Software development has always presented long-established programming languages with opportunities and challenges, including C++, which has long been a mainstay. However, C++ has come under scrutiny due to memory safety concerns. Because of its robust security features, developers often use Rust as an alternative language.

Tails 6.9 Release: Emphasizing Privacy and Secure Internet Usage

Tails 6.9 Release: Emphasizing Privacy and Secure Internet Usage

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Privacy and anonymity in today's digital era are critical, making Tails OS an invaluable tool for protecting user data. Tails OS stands out as an integral component in safeguarding data by offering anonymity through Tor and USB stick/DVD usage of Tails to ensure personal information remains shielded from prying eyes. Its ability to run from its operating system adds another level of protection, leaving no trace of its use behind.

Strengthen Your Linux Software Development Pipeline with Code Security Scanners

Strengthen Your Linux Software Development Pipeline with Code Security Scanners

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Developers recognize the critical nature of protecting software systems as cyberattacks grow more sophisticated, thus necessitating robust security measures in development lifecycle processes. Code security scanners play a vital role here. These tools are intended to detect, mitigate, and prevent security vulnerabilities in code, improving integrity, reliability, and security for software systems.

Understanding OpenSSLs New Governance Model and Its Significance for Linux Security

Understanding OpenSSL's New Governance Model and Its Significance for Linux Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

On July 24, 2024, OpenSSL took an extraordinary step toward improving community engagement and realigning with its core values when it announced the implementation of a new governance framework and the launch of several projects under its mission statement. This event marks a historic moment for OpenSSL and Linux administrators worldwide who depend on this foundational technology for secure applications.

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved