By Fahmida Y. Rashid The security and privacy community was abuzz over the weekend after Google said it was open-sourcing E2Email, a Chrome plugin designed to ease the implementation and use of encrypted email. …read more Source:: OpenSource
Tag: Fahmida Y. Rashid
OpenSSL issues new patches as Heartbleed still lurks
by
•By Fahmida Y. Rashid The OpenSSL Project has addressed some moderate-severity security flaws, and administrators should be particularly diligent about applying the patches since there are still 200,000 systems vulnerable to the Heartbleed …read more Source:: OpenSource
Git Hound, Truffle Hog root out GitHub leaks
by
•By Fahmida Y. Rashid It’s App Dev 101: Don’t hard-code API tokens, encryption keys, and user credentials. But if you do, make sure to get them out of your code before committing to GitHub …read more Source:: OpenSource
Time is running out for NTP
by
•By Fahmida Y. Rashid There are two types of open source projects: those with corporate sponsorship and those that fall under the “labor of love” category. Actually, there’s a third variety: projects that get …read more Source:: OpenSource
GPG Sync simplifies encryption key management
by
•By Fahmida Y. Rashid In all the discussion about using encryption, a critical point keeps getting lost: It’s difficult to work with, and it’s even harder to deploy it at scale. Nowhere is the …read more Source:: OpenSource
Jenkins security patches could break plug-ins
by
•By Fahmida Y. Rashid Popular open source automation server Jenkins has fixed multiple security vulnerabilities. The latest version changes how plug-ins use build parameters, though, so developers will need to adapt to the new …read more Source:: OpenSource