Vancouver Linux Users Group

  • Timeline of the xz Open Source attack

    Timeline of the xz Open Source attack

    Editor’s Note: Linking this very important post-mortem of how a malicious group of hackers created a backdoor on an important OS repository. Full source is at the bottom. Thanks to Kevin G. for sending this to us. Over a period of over two years, an attacker using the name “Jia Tan” worked as a diligent,…

  • Red Hat alerts Fedora on Malicious Code

    Red Hat alerts Fedora on Malicious Code

    Red Hat issues urgent alert for Fedora Linux users due to malicious code. In a recent security announcement, Red Hat’s Information Risk and Security and Product Security teams have identified a critical vulnerability in the latest versions of the “xz” compression tools and libraries. The affected versions, 5.6.0 and 5.6.1, contain malicious code that could…

  • Tails 6.1 Fixes More Bugs

    Tails 6.1 Fixes More Bugs

    Tails 6.1 Is Out to Mitigate the RFDS Intel CPU Vulnerabilities, Fix More Bugs.This release ships with Tor Browser 13.0.13 anonymous web browser and Mozilla Thunderbird 115.9.0 email and calendar client. The Tails 6.1 amnesic incognito live system, a portable operating system that protects you against surveillance and censorship, is now available for download as…

  • New Arch Linux ISO Release with Kernel 6.8

    New Arch Linux ISO Release with Kernel 6.8

    The archinstall menu-based installer received better support for unified kernel images and the KDE Plasma desktop environment. For those of you who want to install Arch Linux, there’s a new official ISO snapshot available for download powered by Linux kernel 6.8 and featuring an improved installation experience. That’s right, the Arch Linux devs were forced…

  • Huge Backdoor Could Compromise SSH logins

    Huge Backdoor Could Compromise SSH logins

    Updates required for Debian sid, Fedora 40, Fedora Rawhide, openSUSE Tumbleweed, and openSUSE MicroOS. Microsoft employee Andres Freund has shared finding odd symptoms in the xz package on Debian installations. Freund noticed that ssh login was requiring a lot of CPU and decided to investigate leading to the discovery. The vulnerability has received the maximum…

  • Ubicloud: An Open Source Alternative to AWS

    Ubicloud: An Open Source Alternative to AWS

    Major cloud providers like AWS (Amazon Web Services), Microsoft Azure, and Google Cloud cannot be denied. Their strong and scalable infrastructure has been a driving force behind the expansion of AI. However, immense authority inevitably leads to a loss of command. Vendor lock-in, unclear pricing structures, and security holes are becoming major business worries. Meet…

Need to ask us a question? Got any book recommendations? Do you use Linux and want to present something?

Get In Touch
Z-Space in Vancouver. At 505 Hamilton Street.

Z-Space
505 Hamilton Street
Vancouver