Security Projects - Page 8 - Results from #140

Discover Security Projects News

Open Source Security Foundation Now Counts 60 Members

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Open Source Security Foundation (OpenSSF) on Tuesday announced that 19 more organizations have joined the initiative, showing commitment towards identifying and addressing vulnerabilities in open source software. OpenSSF now has a total of 60 members.

LinuxSecurity.com Team
Mar 03, 2022

Torvalds moves Linux to C11

Old one out-of-date, but this one goes to 11.

LinuxSecurity.com Team
Mar 02, 2022

GitHub calls for contributions to new cybersecurity Advisory Database

GitHub has announced that their Advisory Database for security data is now open to contributions from experts. The full contents of the Advisory Database have already been published to encourage collaboration.

LinuxSecurity.com Team
Feb 24, 2022

Alpha-Omega Project takes a human-centered approach to open-source software security

The Linux Foundation and OpenSSF Alpha-Omega Project, backed by Microsoft and Google, aims to improve the security of 10,000 open-source projects through a human-centered approach to open-source software security.

LinuxSecurity.com Team
Feb 07, 2022

OpenSSF Announces The Alpha-Omega Project to Improve Software Supply Chain Security for 10,000 OSS Projects

Following a meeting with government and industry leaders at the White House, OpenSSF is excited to announce the Alpha-Omega Project to improve the security posture of open source software (OSS) through direct engagement of software security experts and automated security testing.

LinuxSecurity.com Team
Feb 03, 2022

Rust-Written Replacement To GNU Coreutils Progressing, Some Binaries Now Faster

Along with the broader industry trend of transitioning security-sensitive code to memory-safe languages like Rust, there has been an effort to write a Rust-based replacement to GNU Coreutils. For nearly a year that Rust Coreutils has been able to run a basic Debian system while more recently they have been increasing their level of GNU Coreutils compatibility and in some cases now even outperforming the upstream project.

LinuxSecurity.com Team
Feb 01, 2022

LVFS Exploring Alternate, Open-Source Firmware For Capable End-Of-Life Devices

The Linux Vendor Firmware Service (LVFS) with Fwupd for firmware updating on Linux could soon be making it easier to transition older, end-of-life devices off official firmware packages and onto the likes of open-source Coreboot for capable aging PC hardware. This not only would make the system run on more free software but would extend the life of the hardware with firmware updates where the vendor has ceased their support.

LinuxSecurity.com Team
Jan 26, 2022

Intel's Unaccepted Memory Support Updated For Substantially Faster Booting Of TDX VMs

Way back in August Intel posted a set of Linux kernel patches for supporting "unaccepted memory" by the Linux kernel in preparation for next-generation Xeon processors and speeding up the boot time for guest virtual machines making use of Intel's Trust Domain Extensions (TDX) security feature. Unaccepted memory support hasn't yet made it to the mainline kernel but now a second iteration of the patches have been posted.

LinuxSecurity.com Team
Jan 21, 2022

Cleaning up the Linux kernel's 'Dependency Hell': This developer is proposing 2,200 commit changes

Cleaning off decades of code mess isn't for the faint of heart, but leading Linux kernel developer Ingo Molnar is giving it the old college try in the Linux kernel. The result will make it easier and quicker than ever to make improvements, patches, and add features to Linux.

LinuxSecurity.com Team
Jan 05, 2022

Intel Is Bringing A Feature Upgrade To Linux That Will Make Windows Users Jealous

Intel is bringing a feature upgrade to Linux that will make Windows users jealous. "The upcoming “pfr_update” driver is set to be introduced in Linux kernel 5.17. Sources say it appears to be designed for system firmware updates in cases of critical bugs or security issues, allowing server administrators to patch their hardware without downtime."

LinuxSecurity.com Team
Jan 03, 2022

FGKASLR Is An Exciting Linux Kernel Improvement To Look Forward To In 2022

It's been nearly two years in the making since Intel posted FGKASLR patches for improving Linux kernel security. While that work on Finer Grained / Function Granular KASLR stalled for a year, in recent months work on it was revived and it looks like this security feature is on a path for mainlining in 2022.

LinuxSecurity.com Team
Dec 29, 2021

Guide: How To Detect and Mitigate the Log4Shell Vulnerability (CVE-2021-44228 & CVE-2021-45046)

A few days ago, a serious new vulnerability was identified in Apache log4j v2 and published as CVE-2021-44228. We were one of the first security companies to write about it, and we named it "Log4Shell".

LinuxSecurity.com Team
Dec 20, 2021

Linux Security Simplified: How To Make Linux More Secure (With Less Work)

Linux is a versatile operating system. Its use cases vary greatly, from hosting hundreds of containers across a complex network, to running a single desktop, to the operating systems of TVs, Android phones and most Internet of Things (IoT) devices.

LinuxSecurity.com Team
Dec 19, 2021

Rust takes a major step forward as Linux's second official language

Linux is getting more Rust in it by the day! Why? Because it's more stable and much safer than C - especially at handling memory errors.

LinuxSecurity.com Team
Dec 10, 2021

Linux Kernel 5.14 Reached End of Life, Users Urged to Upgrade to Linux 5.15 LTS

The time has come to say goodbye to another Linux kernel series, Linux 5.14, which is now end-of-life and it won’t receive further updates, so it’s time to upgrade to a newer kernel branch.

LinuxSecurity.com Team
Nov 23, 2021

Rust-proofing the internet with ISRG's Prossimo

The Internet Security Research Group (ISRG)'s new Prossimo project seeks to make many basic internet programs and protocols memory-safe by rewriting them in Rust.

LinuxSecurity.com Team
Nov 10, 2021

Microsoft just expanded its malware protection for Linux servers

Microsoft has announced it's adding even more security features to the protection it offers Linux operating systems for the cloud.

LinuxSecurity.com Team
Nov 08, 2021

Open Source Community Shifts Left With OpenSSF, Google SLSA

Security is becoming an increasingly key piece of the open source puzzle amid industry-wide pushes to shift left and integrate security during early stages of application development. The Linux Foundation’s Open Source Security Foundation (OpenSSF), which encompasses Google’s Supply chain Levels for Software Artifacts (SLSA), is one example of how the open source community is working to improve software security through an ecosystem approach, vying for proactive handling of security by default.

LinuxSecurity.com Team
Oct 26, 2021

Oracle Releases GraalVM 21.3 With Java 17 Support, Other Enhancements

Oracle has published its latest quarterly update to GraalVM, the open-source Java JVM/JDK implemented in Java that also supports other execution modes and programming languages from Python to R to Ruby, adding Java 17 support and featuring a selection of other improvements you don't want to miss!

LinuxSecurity.com Team
Oct 20, 2021

Linux Foundation raises $10M to support open-source security project

The Linux Foundation has raised $10 million in new investments to expand and support its Open Source Security Foundation project. “This industrywide commitment is answering the call from the White House to raise the baseline for our collective cybersecurity well-being, as well as ‘paying it forward’ to open source communities to help them create secure software from which we all benefit,” Jim Zemlin, executive director at the Linux Foundation, said in a statement. “With the tremendous growth and pervasiveness of open source software, building cybersecurity practices and programs that scale is our biggest task at hand.”

LinuxSecurity.com Team
Oct 18, 2021

Security Projects - Page 8

Strengthen Your Linux Software Development Pipeline with Code Security Scanners

Linux Security Modules (LSM): SELinux vs AppArmor vs TOMOYO

OpenSSL's New Governance Structure: A Beacon of Progress for Open-Source Security