Preserving anonymity online is an understandably hot topic these days. But it can be confused with related concepts like privacy and secure communication. A new protocol called Riffle was recently published [PDF] by researchers at MIT; it offers a different take on anonymity than that implemented by other projects. A Riffle network could be used to implement an anonymous but verifiable blogging or publishing platform: one in which the messages are visible to everyone, but the identity of all users remains hidden.
For comparison, the most well-known anonymity project is, no doubt, Tor, which enables users to access Internet services without revealing their physical location on the network. It is possible to use Tor to access publishing services like Twitter and, thus, to broadcast content to the Internet at large without revealing one's identity. But Tor is just as useful at solving other problems, such as accessing remote servers that are blocked by a firewall. While important, that usage of Tor does not necessarily involve anonymity; one could, for instance, use it to log in to Facebook, and Tor alone does not prevent the use of web trackers by sites.
Furthermore, Tor is the focus of near-constant attacks (against the network itself and against the algorithms that keep it working), and it may be vulnerable to large-scale traffic analysis—such as a national ISP could perform. One of the stated goals of Riffle is to prevent such traffic analysis, which has led to popular reports and online discussions referring to Riffle as a Tor competitor.
But Riffle, in fact, tackles a narrower problem set. In a Riffle network, every message sent or file uploaded is eventually published in plaintext form where everyone can see it. The Riffle protocol offers strong guarantees that the identity of the message's uploader cannot be discovered—even in cases where multiple servers in the network have been compromised.
Serval is launching on Tuesday the 2nd of August, 2016. It will be available under the GPLv2 and is completely free to use.
Time is money, as goes an old saying, therefore you need to manage it very well. This then calls for proper planning of your daily schedule, future events, appointments and several other daily activities.
Pithos 1.2.0 was released today and it includes a new explicit content filter option, new dialog design, along with other improvements and important bug fixes.
Terminix was uploaded to the Debian Sid repositories recently. To make it easier to install and stay up to date with the latest Terminix versions, I used the official Debian packaging (thanks to the packagers!) and created a Terminix PPA for Ubuntu 16.04 and Linux Mint 18.
Geary is a free and open source email client. It’s simple to setup and install, in a few minutes your done. No need to add extra features or add ons to install, it just works. The user interface is the easiest and simplest to use.
This post is about love. About the love of the static code analyzer PVS-Studio, for the great open source Linux operating system. This love is young, touching and fragile. It needs help and care. You will help greatly if you volunteer to help testing the beta-version of PVS-Studio for Linux.
Fedora Pushed Graphical upgrade through GNOME Software 3.20.4, users can possible to upgrade a Fedora 23 system to 24 by using the Gnome Software utility
Last October, the Software Freedom Conservancy (SFC) and Free Software Foundation (FSF) jointly published "The Principles of Community-Oriented GPL Enforcement". That document described what those organizations believe the goal of enforcement efforts should be and how those efforts should be carried out. Several other organizations endorsed the principles, including the netfilter project earlier this month. It was, perhaps, a bit puzzling that the project would make that endorsement at that time, but a July 19 SFC blog post sheds some light on the matter.
There have been rumblings for some time about a kernel developer doing enforcement in Germany that might not be particularly "community-oriented", but public information was scarce. Based on the blog post by Bradley Kuhn and Karen Sandler, though, it would seem that Patrick McHardy, who worked on netfilter, is the kernel developer in question. McHardy has also recently been suspended from the netfilter core team pending his reply to "severe allegations" with regard to "the style of his license enforcement activities".
After working for several weeks on our WikiRating:Google Summer of Code project Davide, Alessandro and I have slowly reached up to the level where we can now visualize the entire project in its final stages.
Hey ! I’m making KDE Now, an application for the Plasma Desktop. It would help the user see important stuff from his email, on a plasmoid. It’s similar to what Google Now does on Android.
Just recently I realised that I started contributing 10 years ago. Coming from fvwm2 I had just started using KDE shortly before. Contributing started for me with the German translation of an amaroK 1.4 release announcement with … room for improvement (Yes, Amarok was amaroK back then ). I made some suggestions, the translation team’s coordinator from back then asked for more and I delivered.
Two years later I started contributing to KDEGames a bit, mainly in KShisen to get some practice in software development.
My husband and I started using only Linux on our computers when we got married and I installed all paint programs I had available to test and find something that was close or better than Photoshop. I used GIMP for a couple of years, but more or less in 2012 I found Krita at the Ubuntu Software Center and tried it. And liked it. And never left it.
Gradio is a great little open-source desktop radio player app for Linux — and it just got even better.
The app now offers its own, independent volume control. This means you can adjust sound levels within the app, without affecting your system’s global sound levels, and nixes the need to dive into your desktop’s sound applet.
The development team behind Wireshark, the world's most popular open-source, cross-platform, and free network protocol analyzer software, announced the release of Wireshark 2.0.5 for all supported platforms.
This is the fifth maintenance update to the Wireshark 2.0 series, which is currently the latest stable and most advanced branch of the open source project used by numerous security experts around the globe for analysis and troubleshooting of network issues, with the ultimate goal of hardening the security of their networks.
According to the release notes, Wireshark 2.0.5 is here to resolved over 20 issues reported by users since the previous maintenance update, version 2.0.4, as well as to update the protocol and capture file support. It's worth noting that Wireshark 2.0.5 promises to patch a total of nine security vulnerabilities.
A new app lets Philips Hue users control the colour or brightness of their room straight from the Linux desktop.
So you may have heard the news: we recently released a new development version of GIMP, version 2.9.4 (as well as a bugfix release 2.8.18, but this is not as awesome).
To all you systems administrators out there, wherever and whomever you are: Happy Systems Administrators Day! That's right, ladies, gentlemen and emacs users, the yearly holiday of sysadmin day is upon us!
This year marks the 17th annual sysadmin day and with any luck 17-fold increase in appreciation to some of the most frequently un-and-under appreciated people in any organization. You deserve a hurrah, some cake and – for some among you – your own private island.
No, this article will not be about coding dresses, however, we will show you 11 Linux t-shirts that will make a system administrator to look better, fun and knowledgeable. I promise that the t-shirts that you will see below will make you want to have each one of them.
The Linux operating system is seldom targeted, but it can happen, and whether to play it safe by using anti-virus and anti-malware software is a judgment call, Patrick Marshall writes. He also answers questions about emails that fail to arrive and Windows 10 installation.
This is yet another reason why sanitizing OpenAuth or other token urls to the minimal allowed to resolve (the hostname) is good practice.
So exactly what is the issue at hand?
Well LastPass as with most password managers that in some way connect to a sync or cloud mechanism, uses a cookie of sorts on all sites you setup with autofill ( no typing needed, great defense against keyloggers), however the issue is that the parser to determine if such a site is accessed / logged in leaves cleartext tokens in the url and takes a malformed url as username:password @ foo.tld i.e. email@example.com which allows an attacker on a machine that is logged in (without 2fa –more on this later) to spill the beans about all passwords in 2 ways.
The Aquaris M10 is very much a first attempt for BQ and you would expect future iterations to have some significant improvements. It’s also hard to find compelling reasons why iOS or Android fans would want to switch over to an Ubuntu tablet, but those familiar with the operating system should be excited to finally have their needs met in the tablet market.
One positive factor is that switching between tablet and desktop mode works very well for the most part, so can definitely fulfill professional needs as much as casual ones. This could be a viable option for someone who wants that flexibility and isn’t too fussed about some of the more superficial features.