Security Projects - Page 9

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12

The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12. This announcement has significant ramifications for secure Linux system administration, ...
Dec 06, 2024
  0

Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins

The Arch Linux 2024.12.01 ISO release marks&n...
Dec 03, 2024
  0
19.Laptop Bed Esm H115

Deck the Halls with Enhanced Security: Linux Kernel 6.13's Top Features & Improvements

As Linux admins and infosec professionals prepare for t...
Dec 02, 2024
  0
1.Penguin Landscape Esm H115

Discover Security Projects News

Rust-Written Replacement To GNU Coreutils Progressing, Some Binaries Now Faster

Rust-Written Replacement To GNU Coreutils Progressing, Some Binaries Now Faster

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Along with the broader industry trend of transitioning security-sensitive code to memory-safe languages like Rust, there has been an effort to  write a Rust-based replacement to GNU Coreutils. For nearly a year that Rust Coreutils has been able to run a basic Debian system while more recently they have been increasing their level of GNU Coreutils compatibility and in some cases now even outperforming the upstream project.

LVFS Aims to Facilitate Open-Source Firmware for EOL Devices

LVFS Aims to Facilitate Open-Source Firmware for EOL Devices

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Linux Vendor Firmware Service (LVFS) with Fwupd for firmware updating on Linux could soon be making it easier to transition older, end-of-life devices off official firmware packages and onto the likes of open-source Coreboot for capable aging PC hardware. This not only would make the system run on more free software but would extend the life of the hardware with firmware updates where the vendor has ceased their support.

Intel Updates Unaccepted Memory Support for Faster TDX VM Booting

Intel Updates Unaccepted Memory Support for Faster TDX VM Booting

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Way back in August Intel posted a set of Linux kernel patches for supporting "unaccepted memory" by the Linux kernel in preparation for next-generation Xeon processors and speeding up the boot time for guest virtual machines making use of Intel's Trust Domain Extensions (TDX) security feature. Unaccepted memory support hasn't yet made it to the mainline kernel but now a second iteration of the patches have been posted.

Open Source Community Shifts Left With OpenSSF, Google SLSA

Open Source Community Shifts Left With OpenSSF, Google SLSA

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security is becoming an increasingly key piece of the open source puzzle amid industry-wide pushes to shift left and integrate security during early stages of application development. The Linux Foundation’s Open Source Security Foundation (OpenSSF), which encompasses Google’s Supply chain Levels for Software Artifacts (SLSA), is one example of how the open source community is working to improve software security through an ecosystem approach, vying for proactive handling of security by default.

Open Source Security Foundation Receives $10 Million Boost from Linux Foundation

Open Source Security Foundation Receives $10 Million Boost from Linux Foundation

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Linux Foundation has raised $10 million in new investments to expand and support its Open Source Security Foundation project. “This industrywide commitment is answering the call from the White House to raise the baseline for our collective cybersecurity well-being, as well as ‘paying it forward’ to open source communities to help them create secure software from which we all benefit,” Jim Zemlin, executive director at the Linux Foundation, said in a statement.  “With the tremendous growth and pervasiveness of open source software, building cybersecurity practices and programs that scale is our biggest task at hand.”

pkill_on_warn Proposed For Killing Linux Processes That Cause A Kernel Warning

"pkill_on_warn" Proposed For Killing Linux Processes That Cause A Kernel Warning

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security researcher and Linux kernel contributor Alexander Popov has proposed a new kernel option called "pkill_on_warn" that would kill all threads in a process if that process provoked a kernel warning. This wouldn't change the default kernel behavior but if/when the patch is merged, booting the kernel with pkill_on_warn=1 would enable this new behavior to kill processes causing kernel warnings.

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved