Thu Nov 21 23:58:04 2024
EVENTS
 FREE
SOFTWARE
INSTITUTE
 POLITICS
 JOBS
 MEMBERS'
CORNER
 MAILING
LIST
NYLXS Mailing Lists and Archives
NYLXS Members have a lot to say and share but we don't keep many secrets. Join the Hangout Mailing List and say your peice.

DATE 2016-02-01

HANGOUT

2024-11-21 | 2024-10-21 | 2024-09-21 | 2024-08-21 | 2024-07-21 | 2024-06-21 | 2024-05-21 | 2024-04-21 | 2024-03-21 | 2024-02-21 | 2024-01-21 | 2023-12-21 | 2023-11-21 | 2023-10-21 | 2023-09-21 | 2023-08-21 | 2023-07-21 | 2023-06-21 | 2023-05-21 | 2023-04-21 | 2023-03-21 | 2023-02-21 | 2023-01-21 | 2022-12-21 | 2022-11-21 | 2022-10-21 | 2022-09-21 | 2022-08-21 | 2022-07-21 | 2022-06-21 | 2022-05-21 | 2022-04-21 | 2022-03-21 | 2022-02-21 | 2022-01-21 | 2021-12-21 | 2021-11-21 | 2021-10-21 | 2021-09-21 | 2021-08-21 | 2021-07-21 | 2021-06-21 | 2021-05-21 | 2021-04-21 | 2021-03-21 | 2021-02-21 | 2021-01-21 | 2020-12-21 | 2020-11-21 | 2020-10-21 | 2020-09-21 | 2020-08-21 | 2020-07-21 | 2020-06-21 | 2020-05-21 | 2020-04-21 | 2020-03-21 | 2020-02-21 | 2020-01-21 | 2019-12-21 | 2019-11-21 | 2019-10-21 | 2019-09-21 | 2019-08-21 | 2019-07-21 | 2019-06-21 | 2019-05-21 | 2019-04-21 | 2019-03-21 | 2019-02-21 | 2019-01-21 | 2018-12-21 | 2018-11-21 | 2018-10-21 | 2018-09-21 | 2018-08-21 | 2018-07-21 | 2018-06-21 | 2018-05-21 | 2018-04-21 | 2018-03-21 | 2018-02-21 | 2018-01-21 | 2017-12-21 | 2017-11-21 | 2017-10-21 | 2017-09-21 | 2017-08-21 | 2017-07-21 | 2017-06-21 | 2017-05-21 | 2017-04-21 | 2017-03-21 | 2017-02-21 | 2017-01-21 | 2016-12-21 | 2016-11-21 | 2016-10-21 | 2016-09-21 | 2016-08-21 | 2016-07-21 | 2016-06-21 | 2016-05-21 | 2016-04-21 | 2016-03-21 | 2016-02-21 | 2016-01-21 | 2015-12-21 | 2015-11-21 | 2015-10-21 | 2015-09-21 | 2015-08-21 | 2015-07-21 | 2015-06-21 | 2015-05-21 | 2015-04-21 | 2015-03-21 | 2015-02-21 | 2015-01-21 | 2014-12-21 | 2014-11-21 | 2014-10-21 | 2014-09-21 | 2014-08-21 | 2014-07-21 | 2014-06-21 | 2014-05-21 | 2014-04-21 | 2014-03-21 | 2014-02-21 | 2014-01-21 | 2013-12-21 | 2013-11-21 | 2013-10-21 | 2013-09-21 | 2013-08-21 | 2013-07-21 | 2013-06-21 | 2013-05-21 | 2013-04-21 | 2013-03-21 | 2013-02-21 | 2013-01-21 | 2012-12-21 | 2012-11-21 | 2012-10-21 | 2012-09-21 | 2012-08-21 | 2012-07-21 | 2012-06-21 | 2012-05-21 | 2012-04-21 | 2012-03-21 | 2012-02-21 | 2012-01-21 | 2011-12-21 | 2011-11-21 | 2011-10-21 | 2011-09-21 | 2011-08-21 | 2011-07-21 | 2011-06-21 | 2011-05-21 | 2011-04-21 | 2011-03-21 | 2011-02-21 | 2011-01-21 | 2010-12-21 | 2010-11-21 | 2010-10-21 | 2010-09-21 | 2010-08-21 | 2010-07-21 | 2010-06-21 | 2010-05-21 | 2010-04-21 | 2010-03-21 | 2010-02-21 | 2010-01-21 | 2009-12-21 | 2009-11-21 | 2009-10-21 | 2009-09-21 | 2009-08-21 | 2009-07-21 | 2009-06-21 | 2009-05-21 | 2009-04-21 | 2009-03-21 | 2009-02-21 | 2009-01-21 | 2008-12-21 | 2008-11-21 | 2008-10-21 | 2008-09-21 | 2008-08-21 | 2008-07-21 | 2008-06-21 | 2008-05-21 | 2008-04-21 | 2008-03-21 | 2008-02-21 | 2008-01-21 | 2007-12-21 | 2007-11-21 | 2007-10-21 | 2007-09-21 | 2007-08-21 | 2007-07-21 | 2007-06-21 | 2007-05-21 | 2007-04-21 | 2007-03-21 | 2007-02-21 | 2007-01-21 | 2006-12-21 | 2006-11-21 | 2006-10-21 | 2006-09-21 | 2006-08-21 | 2006-07-21 | 2006-06-21 | 2006-05-21 | 2006-04-21 | 2006-03-21 | 2006-02-21 | 2006-01-21 | 2005-12-21 | 2005-11-21 | 2005-10-21 | 2005-09-21 | 2005-08-21 | 2005-07-21 | 2005-06-21 | 2005-05-21 | 2005-04-21 | 2005-03-21 | 2005-02-21 | 2005-01-21 | 2004-12-21 | 2004-11-21 | 2004-10-21 | 2004-09-21 | 2004-08-21 | 2004-07-21 | 2004-06-21 | 2004-05-21 | 2004-04-21 | 2004-03-21 | 2004-02-21 | 2004-01-21 | 2003-12-21 | 2003-11-21 | 2003-10-21 | 2003-09-21 | 2003-08-21 | 2003-07-21 | 2003-06-21 | 2003-05-21 | 2003-04-21 | 2003-03-21 | 2003-02-21 | 2003-01-21 | 2002-12-21 | 2002-11-21 | 2002-10-21 | 2002-09-21 | 2002-08-21 | 2002-07-21 | 2002-06-21 | 2002-05-21 | 2002-04-21 | 2002-03-21 | 2002-02-21 | 2002-01-21 | 2001-12-21 | 2001-11-21 | 2001-10-21 | 2001-09-21 | 2001-08-21 | 2001-07-21 | 2001-06-21 | 2001-05-21 | 2001-04-21 | 2001-03-21 | 2001-02-21 | 2001-01-21 | 2000-12-21 | 2000-11-21 | 2000-10-21 | 2000-09-21 | 2000-08-21 | 2000-07-21 | 2000-06-21 | 2000-05-21 | 2000-04-21 | 2000-03-21 | 2000-02-21 | 2000-01-21 | 1999-12-21

Key: Value:

Key: Value:

MESSAGE
DATE 2016-02-21
FROM Rick Moen
SUBJECT Re: [Hangout-NYLXS] Linux Mint security breach
Quoting Ruben Safir (ruben-at-mrbrklyn.com):

> http://news.softpedia.com/news/linux-mint-website-hacked-users-pointed-to-download-isos-with-backdoors-in-them-500707.shtml

news.softpedia.com has a history of really terrible coverage that
doesn't even aspire to address basics -- presumably because it is
pitched at ignorant readers.

1. Story doesn't mention whether Linux Mint normally supplies checksums
(e.g., sha1sums) with the images and whether it has a public gpg key to
sign downloads.

(In fact, this intrusion was so sloppy that intruders didn't even bother
to replace posted checksums, which IIRC are present along with a public
signing key. Site appears to be offline ATM.)

2. Story therefore also doesn't mention whether the trojaned images
match signing keys posted for them by the intruders. (Didn't happen.)

3. Story doesn't even attempt to address why users wouldn't become
suspicious when the download links foe the Cinnamon edition (only)
suddenly pointed to Bulgaria.

4. Story also fails to mention the one interesting bit, that remote
attackers took advantage of a locally-unfixed bug in Wordpress to spawn
www-data - owned processes under intruder control.


In short, bad coverage as usual.
_______________________________________________
hangout mailing list
hangout-at-nylxs.com
http://www.nylxs.com/

  1. 2016-02-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] some insight
  2. 2016-02-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] getting out of the US
  3. 2016-02-01 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Fwd: [Perlweekly] #236 - Grants,
  4. 2016-02-02 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] [alleyboost1-at-gmail.com: AlleyBoost: Mixer TONIGHT,
  5. 2016-02-04 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] EOF
  6. 2016-02-05 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] the Power of Comic Books!
  7. 2016-02-08 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] Fwd: This is Your LIU Brooklyn - February 8, 2016
  8. 2016-02-08 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] new free software businesses?
  9. 2016-02-09 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] [contact-at-ncfairs.com: Edison Career Fair- February
  10. 2016-02-10 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] [fgreco-at-crossroadstech.com: [wwwac] -at-NYJavaSIG -
  11. 2016-02-11 From: "ballantrae101 ." <ronny.coder-at-gmail.com> Subject: [Hangout-NYLXS] deactivate mailing list
  12. 2016-02-12 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] [jkeen-at-verizon.net: [YAPC::NA Announce] Call for
  13. 2016-02-12 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Advanced Linux Programming essentials
  14. 2016-02-17 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] security with glibc and gethostbyname
  15. 2016-02-17 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Fwd: Register and Meet a Nerdy Dinosaur!
  16. 2016-02-17 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] Fwd: Free presentation: New Ways to Deploy and
  17. 2016-02-18 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] glibc vernability
  18. 2016-02-18 From: "Chris Davis" <contact-at-ncfairs.com> Subject: [Hangout-NYLXS] Edison Career Fair- February 24,
  19. 2016-02-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] gcc graghics tools
  20. 2016-02-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Tech Learning in Israel
  21. 2016-02-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Programming tutorials - massive
  22. 2016-02-20 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Linux Mint security breach
  23. 2016-02-21 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] Jim Henson - eat your heart out
  24. 2016-02-09 ruben safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Fighting bigoted and antisemitic editing on
  25. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] new free software businesses?
  26. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Fwd: Register and Meet a Nerdy Dinosaur!
  27. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] glibc vernability
  28. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] gcc graghics tools
  29. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Tech Learning in Israel
  30. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Programming tutorials - massive
  31. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Linux Mint security breach
  32. 2016-02-21 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout-NYLXS] security with glibc and gethostbyname
  33. 2016-02-21 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout-NYLXS] Linux Mint security breach
  34. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] security with glibc and gethostbyname
  35. 2016-02-21 Ruben Safir <ruben.safir-at-my.liu.edu> Re: [Hangout-NYLXS] security with glibc and gethostbyname
  36. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] security with glibc and gethostbyname
  37. 2016-02-21 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Antlr
  38. 2016-02-21 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout-NYLXS] security with glibc and gethostbyname
  39. 2016-02-22 Rick Moen <rick-at-linuxmafia.com> Subject: [Hangout-NYLXS] (forw) [luv-talk] Halt efforts that compel Apple
  40. 2016-02-22 Ruben Safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] 200 dollar ethernet cards
  41. 2016-02-23 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Inflation Rate and the price of an Orange
  42. 2016-02-23 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Time for a Field Trip to Boston
  43. 2016-02-24 ruben safir <ruben.safir-at-my.liu.edu> Subject: [Hangout-NYLXS] cant believe my eyes...
  44. 2016-02-25 eminker-at-gmail.com Re: [Hangout-NYLXS] cant believe my eyes...
  45. 2016-02-26 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] encrypted and signed mail
  46. 2016-02-26 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout-NYLXS] encrypted and signed mail
  47. 2016-02-26 From: "Free Software Foundation" <info-at-fsf.org> Subject: [Hangout-NYLXS] UPDATE: U.S. Copyright Office requiring proprietary
  48. 2016-02-26 Rick Moen <rick-at-linuxmafia.com> Re: [Hangout-NYLXS] UPDATE: U.S. Copyright Office requiring
  49. 2016-02-27 Rick Moen <rick-at-linuxmafia.com> Subject: [Hangout-NYLXS] (forw) Re: UPDATE: U.S. Copyright Office requiring
  50. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] C, C++ and Kernel Programming
  51. 2016-02-28 Asia Suarez <as9795-at-nyu.edu> Re: [Hangout-NYLXS] C, C++ and Kernel Programming
  52. 2016-02-28 Maneesh Kongara <maneeshkongara-at-gmail.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  53. 2016-02-28 Maneesh Kongara <maneeshkongara-at-gmail.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  54. 2016-02-28 Maneesh Kongara <maneeshkongara-at-gmail.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  55. 2016-02-28 as9795-at-nyu.edu Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  56. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] C, C++ and Kernel Programming
  57. 2016-02-28 as9795-at-nyu.edu Re: [Hangout-NYLXS] C, C++ and Kernel Programming
  58. 2016-02-28 Ruben Safir <ruben.safir-at-my.liu.edu> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  59. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Signing up for classes.
  60. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Hi
  61. 2016-02-28 Ruben Safir <ruben.safir-at-my.liu.edu> Re: [Hangout-NYLXS] C, C++ and Kernel Programming
  62. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  63. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] date
  64. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  65. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] little sunshine when your down
  66. 2016-02-28 Trevor Ashley <trevor.ashley-at-my.liu.edu> Re: [Hangout-NYLXS] Networking HW
  67. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] C, C++ and Kernel Programming
  68. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Networking HW
  69. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  70. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Networking HW
  71. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Networking HW
  72. 2016-02-28 Frank Greco <fgreco-at-crossroadstech.com> Subject: [Hangout-NYLXS] [wwwac] [#NYJavaSIG] - Mar 7 - Blockchain for Java
  73. 2016-02-28 James E Keenan <jkeen-at-verizon.net> Subject: [Hangout-NYLXS] NYC Perl 6 Beginners Study Group Session 2: Sat Mar
  74. 2016-02-22 ISOC-NY announcements <announce-at-lists.isoc-ny.org> Subject: [Hangout-NYLXS] [isoc-ny] NYC Don't Break Our Phones Rally -
  75. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] [mailman-at-nylxs.com: Bounce action notification]
  76. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] Networking HW
  77. 2016-02-22 Gabor Szabo <gabor-at-szabgab.com> Subject: [Hangout-NYLXS] [Perlweekly] #239 - Of Tabletop and Desktop Games
  78. 2016-02-28 James E Keenan <jkeen-at-verizon.net> Re: [Hangout-NYLXS] NYC Perl 6 Beginners Study Group Session 2: Sat
  79. 2016-02-28 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  80. 2016-02-28 as9795-at-nyu.edu Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  81. 2016-02-29 Ruben Safir <ruben-at-mrbrklyn.com> Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  82. 2016-02-29 as9795-at-nyu.edu Re: [Hangout-NYLXS] [Learn] C++ and C workshop
  83. 2016-02-29 Ruben Safir <mrbrklyn-at-panix.com> Subject: [Hangout-NYLXS] Fwd: Re: [Mailman-Users] speed up mailman
  84. 2016-02-29 Gabor Szabo <gabor-at-szabgab.com> Subject: [Hangout-NYLXS] [Perlweekly] #240 - YAPC is coming!
  85. 2016-02-29 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Change to Tuesday at 7PM C++ and C workshop
  86. 2016-02-29 Gabor Szabo <gabor-at-szabgab.com> Subject: [Hangout-NYLXS] [Perlweekly] #240 - YAPC is coming!
  87. 2016-02-29 From: "soledad.esteban" <soledad.esteban-at-icp.cat> Subject: [Hangout-NYLXS] Course R Without Fear: Applied R for Biologists,
  88. 2016-02-29 Ruben Safir <ruben-at-mrbrklyn.com> Subject: [Hangout-NYLXS] Robotics in the popular press
  89. 2016-02-29 Ruben Safir <mrbrklyn-at-panix.com> Re: [Hangout-NYLXS] [Mailman-Users] Config dump? - WAS Re: speed up

NYLXS are Do'ers and the first step of Doing is Joining! Join NYLXS and make a difference in your community today!