Home Tags Kernel

Tag: Kernel

Linux kernel security gurus Grsecurity oust freeloaders from castle

No more test patches without a subscription Linux users, the free lunch is over. Pennsylvania-based Open Source Security on Wednesday decided to stop making test patches of Grsecurity available for free.…

NSA’s DoublePulsar Kernel Exploit In Use Internet-Wide

Scans show tens of thousands of Windows servers infected with the DoublePulsar kernel exploit leaked by the ShadowBrokers two weeks ago.

Hardened Node.js distro comes to Docker-friendly Alpine Linux

NodeSource is releasing a distribution of its enterprise-level, commercially supported NSolid Node.js runtime that works with Docker-friendly Alpine Linux. NSolid for Alpine Linux is intended to work with Alpine’s small footprint and security capabilities, said Joe McCann, NodeSource CEO.With the NSolid Node.js runtime, the company accommodates three critical enterprise technologies: the Linux kernel, Docker containers, and Node.js server-side JavaScript applications.[ The InfoWorld roundup: 5 rock-solid Linux distros for developers. | Stay up on open source with the InfoWorld Linux Report newsletter. ]Containers using Alpine require a maximum of 8MB, and installing it to disk takes up as little as about 130MB.

There has been a rise in Alpine Linux Docker distributions because of Alpine’s tiny footprint, McCann said.

The Alpine kernel also offers security enhancements preventing a class of zero-day and other vulnerabilities. Users get a secure option for running Node apps in containers, said McCann.To read this article in full or to leave a comment, please click here

Linux remote root bug menace: Make sure your servers, PCs, gizmos,...

Ping of pwn: Malicious UDP packets may take over gear A Linux kernel flaw that potentially allows miscreants to remotely control vulnerable servers, desktops, IoT gear, Android handhelds, and more, has been quietly patched.…

SDN dilemma: Linux kernel networking vs. kernel bypass

Sujal Das is chief strategy and marketing officer at Netronome, a provider of high-performance x86 co-processing solutions for networking, security, load balancing, virtualization, and SDN.If we've learned anything in the technology business in the last 25 years, it would be to never underestimate the Linux kernel. Why, then, have so many networking companies been so eager to bypass the Linux kernel -- or more specifically, the Linux kernel networking stack? What could be so wrong with the networking packet arteries in the Linux kernel that motivates so many of us to bypass them?To read this article in full or to leave a comment, please click here

Unraveling the Lamberts Toolkit

The Lamberts is a family of sophisticated attack tools that has been used by one or multiple threat actors against high-profile victims since at least 2008.

The arsenal includes network-driven backdoors, several generations of modular backdoors, harvesting tools, and wipers.

Samsung’s Tizen is riddled with security flaws, amateurishly written

Research calls it the "worst code [he's] ever seen."

Penquin’s Moonlit Maze

Moonlight Maze is the stuff of cyberespionage legend.
In 1996, in the infancy of the Internet, someone was rummaging through military, research, and university networks primarily in the United States, stealing sensitive information on a massive scale.

To say that this historic threat actor is directly related to the modern day Turla would elevate an already formidable modern day attacker to another league altogether.

Cilium leverages Linux kernel for advanced container networking

Networking has always been one of the most persistent headaches when working with containers.

Even Kubernetes—fast becoming the technology of choice for container orchestration—has limitations in how it implements networking.

Tricky stuff like network security is, well, even trickier.Now an open source project named Cilium, which is partly sponsored by Google, is attempting to provide a new networking methodology for containers based on technology used in the Linux kernel.
Its goal is to give containers better network security and a simpler model for networking.To read this article in full or to leave a comment, please click here

Linux kernel holds key for advanced container networking

Networking has always been one of the most persistent headaches when working with containers.

Even Kubernetes—fast becoming the technology of choice for container orchestration—has limitations in how it implements networking.

Tricky stuff like network security is, well, even trickier.Now an open source project named Cilium, which is partly sponsored by Google, is attempting to provide a new networking methodology for containers based on technology used in the Linux kernel.
Its goal is to give containers better network security and a simpler model for networking.To read this article in full or to leave a comment, please click here

VU#600671: PCAUSA Rawether for Windows local privilege escalation

PCAUSA's Rawether framework does not properly validate BPF data,allowing a crafted malicious BPF program to perform operations on memory outside of its typical bounds on the driver's receipt of network packets.

This vulnerability may be exploited to perform local privilege escalation on Windows systems.