400,000 Websites Vulnerable Through Exposed .git Directories

Open .git directories are a bigger cybersecurity problem than many might imagine, at least according to a Czech security researcher who discovered almost 400,000 web pages with an open .git directory possibly exposing a wide variety of data. From a report: Vladimir Smitka began his .git directory odyssey in July when he began looking at Czech websites to find how many were improperly configured and allow access to their .git folders within the file versions repository. Open .git directories are a particularly dangerous issue, he said, because they can contain a great deal of sensitive information. “Information about the website’s structure, and sometimes you can get very sensitive data such as database passwords, API keys, development IDE settings, and so on. However, this data shouldn’t be stored in the repository, but in previous scans of various security issues, I have found many developers that do not follow these best practices,”

Original URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/y-PzGUkbweM/400000-websites-vulnerable-through-exposed-git-directories

Original article

Compact thin client runs on Raspberry Pi 3 B+

Clientron has launched an “S-Cube Pi 3 B+ Thin Client” built around the Raspberry Pi 3 B+ SBC with Citrix XenDesktop, Microsoft RDP, and VMware Horizon View support. The S-Cube Pi 3 B+ Thin Client is the first thin client we’ve seen built around the new Raspberry Pi 3 B+ SBC. This is Clientron’s first […]

Original URL: http://linuxgizmos.com/compact-thin-client-runs-on-raspberry-pi-3-b/

Original article

The Servers Are Burning

by Dale Markowitz

An engineer pushes a small change and OkCupid goes up in flames.

A fire truck extinguishes a fire at Tyndall Air Force Base in Florida.

One of the first things I learned after learning how to write software was how to write tests for that software. First you wrote code to perform a certain task—say, find the square root of a number. Then you wrote more code to test whether the first piece of code did what you wanted. Does the function return the correct value? Is two the square root of four?

I thought this type of testing was ridiculous. If you wrote buggy software, why would the software you wrote to check that software be any less buggy? That happened to me a lot: I’d spend twenty minutes trying to figure out why my tests said my programs were broken only to realize that the tests themselves were

Original URL: http://feedproxy.google.com/~r/feedsapi/BwPx/~3/yT0Y54A4uC8/

Original article

Tor Browser Gets a Redesign, Switches To New Firefox Quantum Engine

The Tor Browser has rolled out a new interface with the release of v8. From a report: The Tor Browser has always been based on the Firefox codebase, but it lagged behind a few releases. Mozilla rolled out a major overhaul of the Firefox codebase in November 2017, with the release of Firefox 57, the first release in the Firefox Quantum series. Firefox Quantum came with a new page rendering engine, a new add-ons API, and a new user interface called the Photon UI. Because these were major, code-breaking changes, it took the smaller Tor team some time to integrate all of them into the Tor Browser codebase and make sure everything worked as intended. The new Tor Browser 8, released yesterday, is now in sync with the most recent version of Firefox, the Quantum release, and also supports all of its features. This means the Tor Browser now uses

Original URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/FduTNhu3aYQ/tor-browser-gets-a-redesign-switches-to-new-firefox-quantum-engine

Original article

Extending AWS CloudFormation with AWS Lambda Powered Macros

Today I’m really excited to show you a powerful new feature of AWS CloudFormation called Macros. CloudFormation Macros allow developers to extend the native syntax of CloudFormation templates by calling out to AWS Lambda powered transformations. This is the same technology that powers the popular Serverless Application Model functionality but the transforms run in your own accounts, on your own lambda functions, and they’re completely customizable. CloudFormation, if you’re new to AWS, is an absolutely essential tool for modeling and defining your infrastructure as code (YAML or JSON). It is a core building block for all of AWS and many of our services depend on it.
There are two major steps for using macros. First, we need to define a macro, which of course, we do with a CloudFormation template. Second, to use the created macro in our template we need to add it as a transform for the entire

Original URL: http://feedproxy.google.com/~r/AmazonWebServicesBlog/~3/yPSa-b3HdsY/

Original article

Robot Operating System – A flexible framework for writing robot software

What is ROS?The Robot Operating System (ROS) is a set of software libraries and tools that help you build robot applications. From drivers to state-of-the-art algorithms, and with powerful developer tools, ROS has what you need for your next robotics project. And it’s all open source.Read MoreROS in Research”…Even at that early stage of development, it was impressive to see the extent of the capabilities offered by ROS, as well as the level of their integration. The low-level tasks, from sensor access, to diagnostics reporting, to power management, were transparently handled by ROS. And so were higher-level tasks, from a variety of arm controllers,over 1-D and 3-D perception, to autonomous navigation…” — Pieter Abbeel, UC BerkeleyRead MoreROS in Products”When we set out five years ago to reinvent the manufacturing industry, we knew that smart, flexible automation was the key. We built our Baxter robot to work not just for people,

Original URL: http://feedproxy.google.com/~r/feedsapi/BwPx/~3/f8nZlJU9vXk/

Original article

Tor Browser 8.0 released

For the past year, we have been collecting feedback on how we can make Tor Browser work better for you.

Tor Browser 8.0, our first stable release based on Firefox 60 ESR, is now available from the Tor Browser Project page and also from our distribution directory. This release is all about users first.

Tor Browser 8.0 comes with a series of user experience improvements that address a set of long-term Tor Browser issues you’ve told us about. To meet our users’ needs, Tor Browser has a new user onboarding experience; an updated landing page that follows our styleguide; additional language support; and new behaviors for bridge fetching, displaying a circuit, and visiting .onion sites.

New User Onboarding

For the most part, using Tor is like using any other browser (and it is based on Firefox), but there are some usage differences and cool things happening behind the scenes that users should be aware

Original URL: http://feedproxy.google.com/~r/feedsapi/BwPx/~3/kzHov6uWIn0/new-release-tor-browser-80

Original article

Proudly powered by WordPress | Theme: Baskerville 2 by Anders Noren.

Up ↑

%d bloggers like this: