Language Selection

English French German Italian Portuguese Spanish

Tails 3.14 Anonymous Linux OS Adds Mitigations for the Intel MDS Vulnerabilities

Filed under
Security

Tails 3.14 is here two months after the release of Tails 3.13 mainly to address the recently discovered MDS (Microarchitectural Data Sampling) security vulnerabilities in Intel microprocessors. To fully mitigate these flaws and protect you against Fallout, RIDL, and ZombieLoad attacks, the SMT function must be disabled.

Furthermore, Tails 3.14 ships with long-term supported Linux 4.19.37 kernel and the all the latest firmware packages to provide you with up-to-date hardware support and compatibility with newer graphics and Wi-Fi devices, as well as other components, and utilizes the recently released TOR Browser 8.5 anonymous web browser.

Read more

More in Tux Machines

Stable kernels 5.1.10, 4.19.51, and 4.14.126

  • Linux 5.1.10
    I'm announcing the release of the 5.1.10 kernel. All users of the 5.1 kernel series must upgrade. The updated 5.1.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.1.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...
  • Linux 4.19.51
  • Linux 4.14.126

Android Leftovers

My personal journey from MIT to GPL

As I got started writing open source software, I generally preferred the MIT license. I actually made fun of the “copyleft” GPL licenses, on the grounds that they are less free. I still hold this opinion today: the GPL license is less free than the MIT license - but today, I believe this in a good way.

[...]

I don’t plan on relicensing my historical projects, but my new projects have used the GPL family of licenses for a while now. I think you should seriously consider it as well.

Read more

Security Leftovers

  • Yubico recalls government-grade security keys due security bug

    If you buy a government-grade security key, the one thing you really want from it is government-grade security. It's the very dictionary definition of "you had one job." That's why it's somewhat embarrassing that Yubico has put out a recall notice on its FIPS series of authentication keys which, it turns out, aren't completely secure.

  • [Microsoft's] EternalBlue exploit surfaces in bog standard mining attack Featured

    A bog standard attack aimed at planting a cryptocurrency miner has been found to be using advanced targeted attack tools as well, the security firm Trend Micro says, pointing out that this behaviour marks a departure from the norm.