Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Security updates for Wednesday
  • Illumos-Powered OmniOS Gets Updated Against MDS / ZombieLoad Vulnerabilities

    While it was just earlier this month that the OpenSolaris/Illumos-based OmniOS saw a big LTS release, it's already been succeeded by a new release given the recent Intel MDS / Zombieload CPU vulnerabilities coming to light.

    There are new spins of OmniOS for all supported releases. These new OmniOS Community Edition releases mitigate against the Multiarchitectural Data Sampling (MDS) vulnerabilities and also bundle in the updated Intel CPU microcode.

  • Hackers Hack A Forum For Hacked Accounts: Here’s How

    A group of hackers failed to deploy security mechanisms to secure the storage where they store hacked accounts and another hacker group hacked it.

    The story is indeed funny and real. Infamous forum named OGUSERS which is popular amongst hackers for obtaining “OG” Instagram, Twitter usernames, hacked accounts of Domino’s Pizza, Steam, PlayStation Network, and other online accounts was hacked by a hacker group and its data was published in another hacker forum.

  • Security Announcement: Disabling SMT by default on affected Intel processors

    This is an important announcement with an upcoming change in the next Core Update of IPFire.

    Because of the recent vulnerabilities in Intel processors, the IPFire team has decided, that - to keep systems as secure as possible - Simultaneous Multi-Processing (SMT) is automatically disabled if the processor is vulnerable to one of the attacks.

    SMT is also called Intel(R) Hyper-Threading Technology and simulates more virtual cores than the system has. This allows to perform faster processing when applications benefit from it. Unfortunately with networking, we benefit from that. Therefore the effect of disabling SMT will be a very signifiant performance impact of around 30% or more. Applications that will be affected in IPFire are the firewall throughput itself as well as other CPU and memory-bound tasks like the web proxy and the Intrusion Prevention System. On systems that are not vulnerable for this attack, SMT is being left enabled. If you still want to disable it, please do so in the BIOS of your firewall.

More in Tux Machines

Android Leftovers

Octa-core MediaTek i700 SoC offers APU 2.0 for edge AI

MediaTek unveiled an “AI IoT platform i700” SoC for edge AI with 2x 2.2GHz Cortex-A75 cores and 6x 2.0GHz -A55 cores plus a PowerVR GM9446, a 970MHz ISP, and a MediaTek APU 2.0 for AI acceleration. MediaTek recently announced a powerful octa-core Arm that is intended not for smartphones but for edge AI systems. The AI IoT platform i700 is designed for applications including facial recognition in retail payment authentication, access control for smart buildings, or as a visual-sensor platform for autonomous vehicles in factories and warehousing. Other possibilities are said to include obstacle detection systems in automated forklifts and 3D human pose detection for augmented reality fitness coaching applications. Read more

Quad-camera rig taps into Jetson AGX Xavier for deep learning

E-con has launched a Linux-driven, AI-enabled “SurveilsQUAD” camera system for the Nvidia Jetson AGX Xavier or TX2 with 4x 2-megapixel cameras with HD or FHD resolution connected via MIPI-CSI-2. E-con Systems has begun shipping a SurveilsQUAD (e-CAM20_CUXVR) camera system with a V4L2 Linux driver and a sample Linux app with source. Like the robotics focused e-CAM130_CUXVR kit it launched in January, the SurveilsQUAD has four 4-lane MIPI-CSI-2 connected cameras and is designed to work with the Linux-powered Nvidia Jetson AGX Xavier Development Kit. Read more

Annual Report 2018: LibreOffice development

Throughout the second half of 2018, the developer community worked on a new major release: LibreOffice 6.2. Details about the end-user-facing new features are provided on this page, and in the following video – so in the rest of this blog post, we’ll focus on developer-related changes. Read more