Archive

Archive for June, 2013

FreeBSD Team Begins Work On Booting On UEFI-Enabled Systems

June 30th, 2013 06:51 admin View Comments

Microsoft

An anonymous reader writes “The FreeBSD project has begun the process of making it possible for the operating system to run alongside Windows 8 on a computer which has secure boot enabled.” Linux distros have taken to using a minimal loader, signed by Microsoft, to enable booting on UEFI systems with secure boot. “Indeed we will likely take the Linux shim loader, put our own key in it, and then ask Microsoft to sign it,” says developer Marshall McKusick in the linked IT Wire article. “Since Microsoft will have already vetted the shim loader code, we hope that there will be little trouble getting them to sign our version for us.”

Source: FreeBSD Team Begins Work On Booting On UEFI-Enabled Systems

Categories: Uncategorized Tags:

Linux 3.10 Officially Released

June 30th, 2013 06:40 admin View Comments

Open Source

hypnosec writes with word that “The Linux 3.10 kernel has been officially released on Sunday evening which makes the 3.10-rc7 the last release candidate of the latest kernel which yields the biggest changes in years. Linus Torvalds was thinking of releasing another rc but, went against the idea and went ahead with official Linux 3.10 commit as anticipated last week. Torvalds notes in the announcement that releases since Linux 3.9 haven’t been prone to problems and 3.10 is no different.”

Source: Linux 3.10 Officially Released

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:

Backdoor Discovered In Atlassian Crowd

June 30th, 2013 06:12 admin View Comments

Security

An anonymous reader writes “Recently published on the Command Five website is a technically detailed threat advisory (PDF) in relation to a recurring vulnerability in Atlassian Crowd. Tucked away inconspicuously at the end of this document in a section entitled ‘Unpatched Vulnerabilities’ is the real security bombshell: Atlassian’s turnkey solution for enterprise single sign-on and secure user authentication contains an unpatched backdoor. The backdoor allows anyone to remotely take full control of a Crowd server and, according to Command Five, successful exploitation ‘invariably’ results in compromise of all application and user credentials as well as accessible data storage, configured directories (for example Active Directory), and dependent systems.”

Source: Backdoor Discovered In Atlassian Crowd

Categories: Uncategorized Tags:
YOYOYOOYOYOYO