Linux Explore » security

Look what Stella brought to CentOS 6.3, Desktop OS based on Centos

linuxexplore — Wed, 08 Aug 2012 16:40:54 +0000

There is a new Linux distribution released almost every week, sometimes, even every day. The latest is one called Stella, and the first version is Stella 6.3. Stella is a desktop-focused remix of CentOS, and Stella 6.3 is based on CentOS 6.3.

If you are familiar with CentOS, you know that out of the box, it is not really designed as a desktop distribution. Stella changes all that, as it is primarily aimed at desktop users, while retaining the core enterprise features and capabilities of CentOS.

And you can see that just by looking at the package manager. The package categories tell you that everything you can find in CentOS is also available in Stella. Plus desktop applications that you will not find in any default installation of CentOS. For example, an application listed in the screen shot below, is ROSA Media Player (ROMP), the default media player in ROSA Desktop, a distribution based on Mandriva Linux.

Because it is loaded with desktop applications and media codecs not available in CentOS, you can play most audio and video file formats out of the box. Here it shows a favorite online video playing in Firefox.

The next few screen shots show what the desktop looks like and some of the applications accessible from the menu. This one shows installed Internet applications.

Installed Office applications.

Installed multimedia applications.

Updates manager.

Read full story.

Mobile Security with Android

linuxexplore — Mon, 30 Jul 2012 16:08:48 +0000

Hacking experts on Wednesday demonstrated ways to attack Android smartphones using methods they said work on virtually all such devices in use today, despite recent efforts by search engine giant Google (GOOG.O) to boost protection. Experts showed off their prowess at the Black Hat hacking conference in Las Vegas, where some 6,500 corporate and government security technology workers gathered to learn about emerging threats to their networks. “Google is making progress, but the authors of malicious software are moving forward,” said Sean Schulte of Trustwave’s SpiderLabs. Google spokeswoman Gina Scigliano declined to comment on the security concerns or the new research. Accuvant researcher Charlie Miller demonstrated a method for delivering malicious code to Android phones using a new Android feature known as near field communications. “I can take over your phone,” Miller said. Near field communications allow users to share photos with friends, make payments or exchange other data by bringing Android phones within a few centimeters of similarly equipped devices such as another phone or a payment terminal. Miller said he figured out how to create a device the size of a postage stamp that could be stuck in an inconspicuous place such as near a cash register at a restaurant. When an Android user walks by, the phone would get infected, said Miller. He spent five years as a global network exploit analyst at the U.S. National Security Agency, where his tasks included breaking into foreign computer systems. “WILD WEST” Miller and another hacking expert, Georg Wicherski of CrowdStrike, have also infected an Android phone with a piece of malicious code that Wicherski unveiled in February.

That piece of software exploits a security flaw in the Android browser that was publicly disclosed by Google’s Chrome browser development team, according to Wicherski.

Google has fixed the flaw in Chrome, which is frequently updated, so that most users are now protected, he said.

But Wicherski said Android users are still vulnerable because carriers and device manufacturers have not pushed those fixes or patches out to users.

Marc Maiffret, chief technology officer of the security firm BeyondTrust, said: “Google has added some great security features, but nobody has them.”

Experts say iPhones and iPads don’t face the same problem because Apple has been able to get carriers to push out security updates fairly quickly after they are released.

Two Trustwave researchers told attendees about a technique they discovered for evading Google’s “Bouncer” technology for identifying malicious programs in its Google Play Store.

They created a text-message blocking application that uses a legitimate programming tool known as java script bridge. Java script bridge lets developers remotely add new features to a program without using the normal Android update process.

Companies including Facebook and LinkedIn use java script bridge for legitimate purposes, according to Trustwave, but it could also be exploited maliciously.

To prove their point, they loaded malicious code onto one of their phones and remotely gained control of the browser. Once they did that, they could force it to download more code and grant them total control.

“Hopefully Google can solve the problem quickly,” said Nicholas Percoco, senior vice president of Trustwave’s SpiderLabs. “For now, Android is the Wild West.”

– Reuters

What is Network Address Translation?

linuxexplore — Fri, 27 Jul 2012 19:18:13 +0000

Network Address Translation (NAT) is the process where a network device, usually a firewall, assigns a public address to a computer (or group of computers) inside a private network. The main use of NAT is to limit the number of public IP addresses an organization or company must use, for both economy and security purposes.

Read complete story