Feed aggregator
Linux Distribution Nitrux3.9.1 Releaed – What’s New - GBHackers News
Linux Distribution Nitrux3.9.1 Releaed – What’s New GBHackers News
Categories: Linux
Linux Distribution Nitrux3.9.1 Releaed – What’s New - GBHackers News
Linux Distribution Nitrux3.9.1 Releaed – What’s New GBHackers News
Categories: Linux
Linux Distribution Nitrux3.9.1 Releaed – What’s New - GBHackers News
Linux Distribution Nitrux3.9.1 Releaed – What’s New GBHackers News
Categories: Linux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source - GamingOnLinux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source GamingOnLinux
Categories: Linux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source - GamingOnLinux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source GamingOnLinux
Categories: Linux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source - GamingOnLinux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source GamingOnLinux
Categories: Linux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source - GamingOnLinux
Linux support for Command & Conquer Generals Zero Hour is coming along now it's open source GamingOnLinux
Categories: Linux
Intel-Started Cloud Hypervisor Project Adds Experimental RISC-V Support - Phoronix
Categories: Linux
Torvalds fumes over "code turds" in Intel graphics code in Linux 6.15 - Fudzilla.com
Categories: Linux
Historical strategy game Old World switches to Vulkan for Linux / Steam Deck - GamingOnLinux
Categories: Linux
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe - PR Newswire
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe PR Newswire
Categories: Linux
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe - PR Newswire
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe PR Newswire
Categories: Linux
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe - PR Newswire
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe PR Newswire
Categories: Linux
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe - PR Newswire
The Linux Foundation Announces the Launch of NeoNephos to Advance Digital Autonomy in Europe PR Newswire
Categories: Linux
HTTPS Certificate Industry Adopts New Security Requirements
The Certification Authority/Browser Forum "is a cross-industry group that works together to develop minimum requirements for TLS certificates," writes Google's Security blog. And earlier this month two proposals from Google's forward-looking roadmap "became required practices in the CA/Browser Forum Baseline Requirements," improving the security and agility of TLS connections...
Multi-Perspective Issuance Corroboration
Before issuing a certificate to a website, a Certification Authority (CA) must verify the requestor legitimately controls the domain whose name will be represented in the certificate. This process is referred to as "domain control validation" and there are several well-defined methods that can be used. For example, a CA can specify a random value to be placed on a website, and then perform a check to verify the value's presence has been published by the certificate requestor.
Despite the existing domain control validation requirements defined by the CA/Browser Forum, peer-reviewed research authored by the Center for Information Technology Policy of Princeton University and others highlighted the risk of Border Gateway Protocol (BGP) attacks and prefix-hijacking resulting in fraudulently issued certificates. This risk was not merely theoretical, as it was demonstrated that attackers successfully exploited this vulnerability on numerous occasions, with just one of these attacks resulting in approximately $2 million dollars of direct losses.
The Chrome Root Program led a work team of ecosystem participants, which culminated in a CA/Browser Forum Ballot to require adoption of MPIC via Ballot SC-067. The ballot received unanimous support from organizations who participated in voting. Beginning March 15, 2025, CAs issuing publicly-trusted certificates must now rely on MPIC as part of their certificate issuance process. Some of these CAs are relying on the Open MPIC Project to ensure their implementations are robust and consistent with ecosystem expectations...
Linting
Linting refers to the automated process of analyzing X.509 certificates to detect and prevent errors, inconsistencies, and non-compliance with requirements and industry standards. Linting ensures certificates are well-formatted and include the necessary data for their intended use, such as website authentication. Linting can expose the use of weak or obsolete cryptographic algorithms and other known insecure practices, improving overall security... The ballot received unanimous support from organizations who participated in voting. Beginning March 15, 2025, CAs issuing publicly-trusted certificates must now rely on linting as part of their certificate issuance process.
Linting also improves interoperability, according to the blog post, and helps reduce the risk of non-compliance with standards that can result in certificates being "mis-issued".
And coming up, weak domain control validation methods (currently permitted by the CA/Browser Forum TLS Baseline Requirements) will be prohibited beginning July 15, 2025.
"Looking forward, we're excited to explore a reimagined Web PKI and Chrome Root Program with even stronger security assurances for the web as we navigate the transition to post-quantum cryptography."
Read more of this story at Slashdot.
