Alvaro Castillo: Altura-de-miras

Share Button

Powered by WPeMatico

Share Button

Open Source Security Podcast: Episode 83 – XKCD + CVE = XKCVE

Share Button

Josh and Kurt talk about the XKCD CVE comic and a flight simulator stealing credentials.

https://xkcd.com/1957/

Show Notes

Powered by WPeMatico

Share Button

Ben Williams: F27-20180217 updated isos Released

Share Button

The Fedora Respins SIG is pleased to announce the latest release of Updated 27 Live ISOs, carrying the 4.15.3-300 kernel.

This set of updated isos will save about 894 MB of updates after install.  (for new installs.)

Build Directions: https://fedoraproject.org/wiki/Livemedia-creator-_How_to_create_and_use_a_Live_CD

We would also like to thank Fedora- QA  for running the following Tests on our ISOs.: https://openqa.fedoraproject.org/tests/overview?distri=fedora&version=27&build=FedoraRespin-27-updates-20180204.0&groupid=1

These can be found at  http://tinyurl.com/live-respins .We would also like to thank the following irc nicks for helping test these isos: dowdle, and Southern_Gentlem.

Powered by WPeMatico

Share Button

mythcat: Fedora 27 : selinux and getfattr attributes.

Share Button


In this tutorial I show you how to use the getfattr command to get extended attributes of filesystem objects and security selinux.
One attribute is selinux.security for selinux and other like:

  • security.capability – the security.capability files stores Linux capabilities for the related file and is applies to binaries which are provided one or more capabilities via this file.
  • security.ima – for the Integrity Measurement Architecture (IMA), the file security.ima stores a hash or digital signature.
  • security.evm – this is similar to security.ima, the Extended Verification Module (EVM) stores a hash/HMAC or digital signature in this file ( the different with IMA is that it protects the metadata of the file, not the contents).

Now, about selinux.security :
You can use for example the getfattr command to perform specific security selinux tasks:

# getfattr -m security.selinux -d /etc/passwd
getfattr: Removing leading '/' from absolute path
names
# file: etc/passwd
security.selinux="system_u:object_r:passwd_file_t:s0"
# getfattr -m security.selinux -d /etc/shadow
...
# getfattr -m security.selinux -d /var/www d /var/www
...

Both getfattr and setfattr commands has provided by the POSIX ACL package (Portable Operating Systems Interface).

Powered by WPeMatico

Share Button

Daniel Pocock: Hacking at EPFL Toastmasters, Lausanne, tonight

Share Button

As mentioned in my earlier blog, I give a talk about Hacking at the Toastmasters club at EPFL tonight. Please feel free to join us and remember to turn off your mobile device or leave it at home, you never know when it might ring or become part of a demonstration.

Powered by WPeMatico

Share Button

Fedora Community Blog: Fedora 27 Release Party at Mexico City

Share Button

On December 8, 2017, the ambassadors in Mexico City, Efren Robledo (srkraken) and Alberto Rodríguez (bt0dotninja) hosted a Fedora 27 Release Party. The party took place on the UAM Azcapotzalco in the basic sciences and engineering division. We had three main activities: Introducing Fedora 27 talk , Q&A session and a little trivia session with some gifts.

Mexico City F27 release party poster

Poster

Introducing Fedora 27

A small but dynamic talk by Efren about the news in Fedora 27 from the perspective of casual user, developer and system administrator. Also he did a quick but very demonstrative installation of Fedora 27.

Introducing Fedora 27 talk

SrKraken Talk

Q&A Session

The audience, mostly engineering students and teachers, asked many questions about various use cases including topics on scientific calculation, web services and comparisons on different Linux distributions. This session ended with details of the creation of a FAS account and a trip into WCIDFF and the Fedora Developer Portal.

Q&A session

Q&A session

Trivia

We prepared Fedora / Linux / FOSS-related trivia with questions like:

  • What country has the first Tux monument?
  • What are Fedora’s four foundations?
  • Which page can guide you for becoming a Fedora contributor?

We give away  “I  <3  Fedora” t-shirts, here the winners:

Trivia winners

Conclusion

We are very glad about this release party because Fedora is becoming very popular on the campus. We have at least four computer labs dedicated to teaching computer science, networks and electronics topics using Fedora 27 and this kind of event contributes to arousing curiosity about the Fedora Project and engage new contributors.

I would like to thank all the people who came for this first time, and to our speaker Efren Robledo (srkraken)  for his great effort and commitment and give us a great talk about the Fedora Project in general and this release in particular. I really enjoyed organizing this release party and I am really hoping that this event becomes a tradition. See you in the F28 Release party.

The post Fedora 27 Release Party at Mexico City appeared first on Fedora Community Blog.

Powered by WPeMatico

Share Button

Lukas “lzap” Zapletal: Accessing libvirt VMs via telnet

Share Button

Accessing libvirt VMs via telnet

There are many “tricks” floating around how to connect to VM when you have a
networking issue and ssh is not available. The idea is to use serial console to
get shell access. Here is how to do this properly with RHEL7 host and guest.

First, create a VM with serial console configured with remote TCP
server
. There are
multiple options, I find TCP server in ‘telnet’ mode the most flexible
configuration because most scripting languages has the protocol built-in. You
can use virt-manager or virt-install to do that:


  
    
    
    
  

Boot the VM and then enable getty:

$ systemctl enable serial-getty@ttyS0.service
$ systemctl start serial-getty@ttyS0.service

That’s all, access the console interactively:

$ telnet localhost 4555

To access ‘raw’ console (protocol type in the XML snippet above), use netcat or
similar tool. Other options in libvirt are logfile, UDP, pseudo TTY, named
pipe, unix socket or null. You get the idea.

When creating multiple serial devices, only the first one (ttyS0) is allowed
for root access by default. To enable second one, do:

$ echo ttyS1 >> /etc/securetty

That’s all for today.

Powered by WPeMatico

Share Button

Alvaro Castillo: Conexión RS-232-USB

Share Button


Introducción

En el siguiente artículo, vamos a ver cómo podemos conectarnos mediante fuera de banda a dispositivos de red como puede ser un switch o un router desde Linux.

¿Qué es conexión fuera de banda?

Es un enlace entre un dispositivo (host) hacia el otro dispositivo que queramos acceder como un router o un switch haciendo uso de un cable especial como un RS-232, USB-MicroUSB, o un adaptador RS-232-USB. Esta conexión no requiere ningún tipo de direccionamiento IP y sólo puede acce…

Powered by WPeMatico

Share Button

Fedora Community Blog: EMEA Ambassadors: 2017 Year in Review

Share Button

As 2018 is in full session now, people, companies and organizations are taking stock not only of what’s worked during the past year, but of budding trends and approaches to handling daily business. We also can let this chance pass by knowing that it could help us in our undertakings this year.

All through 2017, the Fedora community in the EMEA region was active promoting Fedora in local events especially at the release party. It was a joy to read out the event reports.

Key Highlights

Fedora Women Day 2017

Photo credit: Bara Bühnová

Photo credit: Bara Bühnová

The Fedora Women Day aims to inspire, educate and connect women and people from underrepresented communities interested in open source software, including Fedora Project. Join us for presentations; information and discussions about contributing to open source and Fedora, career opportunities in open source and how to pursue them; and networking opportunities including connecting with female contributors in open source communities.

By and large the were a few in the region.

FOSDEM 2017

FOSDEM is a two-day event organised by volunteers to promote the widespread use of free and open source software. Taking place in the beautiful city of Brussels (Belgium), FOSDEM is widely recognised as the largest such conference in Europe.

It was a very busy conference. This edition featured 610 speakers, 669 events, and 55 tracks (24 speakers from Fedora). During the event, the live streaming page updated every few minutes to show you what was currently scheduled in each room.

Find Fedora at FOSDEM 2017!

Notable mention: The sponsors, volunteers, planners in fact everyone who made it there is a winner.

PyCon SK 2017: Fedora was there!

PyCon SK 2017 is a community-organized conference for the Python programming language. After successful organization in more than 40 countries, PyCon was in Slovakia in 2016. Second PyCon SK was be held in Bratislava from the  10th to the 12th March, 2017. In short: it was a success.

Fedora was at PyCon SK 2017

Notable mention: Jona Azizaj. You are just awesome!

Top Goals for 2018

  1. More events in African region: Apart from release events, there was little to no action on the ‘major’ event front for us. Ambassadors on the continent need to link up with EMEA.
  2. Encourage report writing: So we have something to fall back on and relive the moments and lessons.
  3. Better tracking of basic metrics: For example, involvement within the community, and a wiki page for things data.

Conclusion

In wrapping up, much has been done and there’s still much to do, so this is a call to all of us to put in more, step up from 2017 and let’s get it done. I want to thank every Ambassador in the region. Special mentions to Mitzelos, Nemanja, Sylvia, Jona, Justin, Giannis, Jiri, Hax, Rhea, Miro, and every event owner and volunteer.

PS: See you all at the next ambassadors meeting!

Links

http://rhea-ayase.eu/articles/2017-10/FWD-Brno

https://fedoraproject.org/wiki/FWD_Brno_2017

https://fedoraproject.org/wiki/PyCon_SK_2017

https://communityblog.fedoraproject.org/fedora-pycon-sk-2017/

https://fedoraproject.org/wiki/Fedora_Women_Day_2017

 

The post EMEA Ambassadors: 2017 Year in Review appeared first on Fedora Community Blog.

Powered by WPeMatico

Share Button

Brian “bex” Exelbierd: Slice of Cake #25

Share Button

A slice of cake

Last week as the FCAIC I:

  • Lots of paperwork and finances. It’s fiscal year-end so it is important that we process as much of our planned spending as possible. Anything we don’t land on time has to come off the top of any budget we are allocated for next year. The fiscal year ends on 28 February.
  • Spent some time with a colleague, Pavel Valena, talking about ruby and how to implement AsciiDoc crossref support in AsciiBinder. The short version is that crossrefs break because of the way AsciiBinder calls AsciiDoctor. This calling sequence can’t be changed without destroying the value proposition of AsciiBinder, so we brainstormed ideas for how to work around it. I think we have a good plan, now to write some code.
  • Lots of one-on-one conversations queuing up cool stuff for the new year. Also lots of preparation for being out of town next week and solely focused on documentation.

À la mode

  • Occupational Health and Safety training is critical. Doing it with translated materials is challenging as they were translated but could not really be localized because of the heterogenous nature of the target audience.
  • Picked up my Czech equivalent of a W2. This was way more exciting to me than this sentence reads to you. 🙂
  • Attended my first concert of the year, Milky Chance, in Prague. I am not normally a fan of live music, so it was interesting to do this again.

Cake Around the World

I’ll be traveling some and hope you’ll ping me for coffee if you’re nearby. If your considering attending and want to collaborate on a talk, let’s … talk :).

  • Fedora Docs and Fedora Mindshare FADs from 26 February – 7 March in Seville, Spain and Bolzano, Italy
  • Red Hat Summit from 8-10 May in San Francisco, CA, USA
  • OSCAL from 19-20 May in Tirana, Albania
  • Open Source Summit Japan (OSS Japan) from 20-22 June in Tokyo, Japan
  • LinuxCon + ContainerCon + CloudOpen (LC3) from 25-27 June in Beijing, China
  • DevConf.us from 17-19 August in Boston, MA, USA
  • Open Source Summit Europe (OSS Europe) from 22-24 October in Edinburgh, United Kingdom

Note: My attendance at a few of the events is still tenative, but I expect most will happen.

Powered by WPeMatico

Share Button