Tag

Security

Fedora’s not DROWNing

In the continuing line of security vulnerabilities with cute names like Heartbleed or Shellshock, today we have “DROWN.”

Stickers, Metrics, Security, and More — it’s Five Things in Fedora This Week

Fedora is a big project, and it’s hard to keep up with everything. This series highlights interesting happenings in five different areas every week. It isn’t comprehensive news coverage — just quick summaries with links to each. Get Fedora Stickers… Continue Reading →

GPG key management, part 2

Welcome back to the GPG series, where we are exploring how to make use of GPG with other applications to secure and protect your data. In the first installment, we covered the functions of GPG. You learned about integrity, non-repudiation… Continue Reading →

GPG: Using Your Key

Welcome back to the GPG series, where we explore how to make use of GPG with other applications to secure and protect your data. In the first installment, we covered the functions of GPG. You learned about integrity, non-repudiation and… Continue Reading →

GPG key management, part 1

Welcome back to the GPG series, where we are exploring how to make use of GPG with other applications to secure and protect your data.This installment will cover key creation, key revocation certificate creation, and sending the public key to… Continue Reading →

GPG: a Fedora primer

GPG, or GnuPG, refers to the Gnu Privacy Guard utility. GPG is a freely available implementation of the OpenPGP standard that was released by Werner Koch in 1999. The security and privacy of data and individuals is an important topic in modern culture. The… Continue Reading →

OpenSSH vulnerability could expose private credentials

There’s nothing as jarring for a sysadmin as seeing this kind of message on a mailing list: This is the most serious bug you’ll hear about this week: the issues identified and fixed in OpenSSH are dubbed CVE-2016-0777 and CVE-2016-0778…. Continue Reading →

Fedora Security Lab – hack yourself!

Fedora Security Lab is probably one of the most unknown Fedora Labs for the public. It is typically used for a very specific task. But what exactly is that task? This article aims to answer that question!

Elections (Vote Now!), Atomic, OpenQA, Let’s Encrypt, and GNOME shortcut key design

Don’t Forget to Vote! The 2015 November / December Fedora Elections officially began last Monday, and voting closes today (December 14th) at 23:59:00 UTC. Watch the timezone —  that’s a lot sooner than midnight in many parts of the world…. Continue Reading →

LetsEncrypt now available in Fedora

LetsEncrypt recently entered into a public beta. Thanks to the work of the LetsEncrypt team and Fedora packagers, the official LetsEncrypt client is now available in both Fedora 23 and Rawhide. To learn how LetsEncrypt works or what it is, you can read… Continue Reading →

LetsEncrypt enters public beta

LetsEncrypt is an initiative being sponsored by several different organizations including Mozilla and the Electronic Frontier Foundation following from recent privacy discussions in various communities last year. The key goal is to provide free, easy encryption via free SSL certificates… Continue Reading →

The Security Wranglers of Fedora

The deluge of software vulnerabilities creates challenges for system administrators, developers, and users. Although many vulnerabilities are corner cases that are often difficult to exploit and have limited effects, there are the occasional vulnerabilities that become front page news. Many… Continue Reading →

F22 Beta, feedback for Fedora Workstation, security challenge, better Spins website, and PyCon report

Fedora is a big project, and it’s hard to keep up with everything. This series highlights interesting happenings in five different areas every week. It isn’t comprehensive news coverage — just quick summaries with links to each. Here are the… Continue Reading →

Worried about GHOST? Don’t be, on supported Fedora versions.

There’s a quite serious security vulnerability making the news today (ZDNet, Ars Technica), CVE-2015-0235, nicknamed “GHOST”. It happens that this flaw was fixed in glibc-2.18 (but quietly, and the full implications don’t seem to have been widely noticed). That means… Continue Reading →

More CVE-2014-3566 information on Red Hat’s Security Blog

I mentioned earlier that I’d update on this, and here we go. Our friends over in the Red Hat security team have posted POODLE – An SSL 3.0 Vulnerability (CVE-2014-3566), an article explaining the vulnerability in (not terribly technical) depth…. Continue Reading →

What you need to know about the SSLv3 “POODLE” flaw (CVE-2014-3566)

Good morning everyone! Another security vulnerability is hitting the tech (and mainstream!) press, and we want to make Fedora users get straight, simple information. This one is CVE-2014-3466, and the cute nickname of the day is “POODLE”. Here’s the basics:… Continue Reading →

The opinions expressed on this website are those of each author, not of the author's employer or of Red Hat. Fedora Magazine aspires to publish all content under a Creative Commons license but may not be able to do so in all cases. You are responsible for ensuring that you have the necessary permission to reuse any work on this site. The Fedora logo is a trademark of Red Hat, Inc. Terms and Conditions