Google Gives WebView the Cold Shoulder

By Richard Adhikari

Google has decided not to fix vulnerabilities in WebView for Android 4.3 and older, sparking heated discussions among developers. Those versions of WebView run on the WebKit browser. Fixing them “required changes to significant portions of the code and was no longer practical to do so safely,” explained Adrian Ludwig, lead engineer for Android security. Ludwig recommended steps users and developers can take to mitigate the potential exploitation of WebView vulnerabilities without updating to Lollipop, or Android 5.0.

From: Linux Insider

Share

PostgreSQL, the NoSQL Database

By Reuven Lerner

One of the most interesting trends in the computer world during the past
few years has been the rapid growth of NoSQL databases. The term may
be accurate, in that NoSQL databases don’t use SQL in order to store
and retrieve data, but that’s about where the commonalities end. NoSQL
databases range from key-value stores to columnar databases to
document databases to graph databases.
more>>

From: Linux Journal

Share

There’s a GHOST in Linux’s Library

By Jack M. Germain

Patches for GHOST, a critical vulnerability in glibc, the Linux GNU C Library, now are available through vendor communities for a variety of Linux server and desktop distributions. Qualys earlier this week reported its discovery of GHOST, a vulnerability that allows attackers to remotely take control of an entire system without having any prior knowledge of system credentials. Qualys security researchers found the GHOST flaw and worked closely with Linux distribution vendors in a coordinated effort to develop a patch for all affected systems.

From: Linux Insider

Share

HPC Cluster Grant Accepting Applications!

By John Grogan

Silicon Mechanics, Inc. has announced the open
submission period for its 4
th annual Research Cluster
Grant Program. This competitive grant will award two complete high performance compute clusters to two
institutions of higher education and research. The competition is open to all US and Canadian qualified post-secondary
institutions, university-affiliated research institutions, non-profit research institutions, and researchers at federal
labs with university affiliations.

more>>

From: Linux Journal

Share

Debian Forked: All for Devuan and Devuan for All?

By Jack M. Germain

A group of developers made good on their threats to fork Debian Linux late last year, after the community’s leadership voted to replace sysvinit with systemd, making systemd the default init boot process. The Debian Technical Committee’s decision spurred several key Debian developers and project maintainers to resign. Some of them formed a new community dedicated to developing a forked Debian Linux distro called “Devuan,” pronounced “DevOne.” The split is largely philosophical.

From: Linux Insider

Share

Zenwalk Linux – A Walk on the Quirky Side

By Jack M. Germain

The developmental path and sketchy developer website may cast an unfavorable impression about Zenwalk’s trustworthiness as a serious computing platform. The ho-hum impression when first running the live edition does little to encourage users to take this Linux OS for a stroll. Zenwalk Linux becomes a bit more impressive once you get beyond the awkward first-time experience, but it comes with a number of problems that might be prohibitive for a new user looking for an all-purpose Linux OS.

From: Linux Insider

Share