From Fedora Project Wiki

< FWN‎ | Beats
No edit summary
 
(11 intermediate revisions by 2 users not shown)
Line 6: Line 6:
Contributing Writer: [[JoshBressers]]
Contributing Writer: [[JoshBressers]]


=== Encryption Security ===
=== Phrack 66 ===
With all the recent talk of encrypting hard drives, the cold boot method, and using proper passwords, this xkcd comic reminds us of the weakest link in all cryptography, the person with the password:
Phrack 66<ref>http://www.phrack.com/issues.html?issue=66</ref> came out this week. If you're not aware, Phrack is the longest running hacker zine, it's impressive that after more than 20 years, it's still going.
http://xkcd.com/538/[1]


=== Running things as root is a bad idea ===
=== Firefox 3.0.11 ===
While I always knew this, this article still sort of blows my mind:
Yet another security update for Firefox was released, be sure to update, it's important.
''Windows Security Improved By Denial Of Administrative Rights''[2]
<ref>http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.11</ref>
To quote the article:
<pre>... configuring users to operate without administrative rights mitigates the impact of 92% of "critical" Microsoft vulnerabilities ...</pre>
92%, that is mind boggling. It's been sound advice for a long time in the Linux world, not to do things as root. I suspect if we expected everyone to be doing everything as root, virtual any minor security flaw would suddenly become a very serious matter.


[1] http://xkcd.com/538/
<references/>
[2] http://www.informationweek.com/news/security/app-security/showArticle.jhtml?articleID=213001021&subSection=Enterprise+Applications

Latest revision as of 00:23, 14 June 2009

Security Week

In this section, we highlight the security stories from the week in Fedora.

Contributing Writer: JoshBressers

Phrack 66

Phrack 66[1] came out this week. If you're not aware, Phrack is the longest running hacker zine, it's impressive that after more than 20 years, it's still going.

Firefox 3.0.11

Yet another security update for Firefox was released, be sure to update, it's important. [2]

  1. http://www.phrack.com/issues.html?issue=66
  2. http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.11
Retrieved from "https://fedoraproject.org/w/index.php?title=FWN/Beats/SecurityWeek&oldid=108162"