Software developers use Linux containers to save time and money, providing a mechanism to build much more manageable applications through development, testing and environments of implementation with a better security in the software life cycle as in their actions and scenarios.
According to Forrester, more than half of operations and IT development responsible see security as the biggest concern when adopting containers.
Corero Network Security identified a zero-day vulnerability in LDAP protocol that enables to amplify Distributed Denial of Service attacks (DDoS) 50 times, making them much more effective and much more difficult to mitigate.
This protocol, mainly used in Windows Server Active Directory administration tool has become an ally for cybercriminals, that leverage vulnerable servers supporting LDAP to bounce junk traffic to a server with a single IP address, so the service is overcrowded and stops working.
Linux security expert Phil Oester discovered a privilege-escalation critical vulnerability affecting the Linux Kernel. This bug is called Dirty COW and identified as CVE-2016-5195 and although it has recently been discovered, it existed since 2007.
This flaw affects the component Kernel Memory Subsystem, allows to manipulate an unknown input and explote the vulnerability that may affect the system’s confidenciality, integrity and availability.
The different uses of UDS Enterprise connection broker, an interesting Open Source software for containers management in Unix OS and UDS Enterprise authentication system have been the most read topics in our blog for the last weeks.
Below you can find the links to the articles about these topics so you can keep up to date with the most outstanding news on Open Source and virtualization according to our community:
Security is one of the top concerns for many users, companies and organizations, that look for the best solutions to keep sensitive data safe.
KeePassX is one of them, an Open Source application both for Windows and Linux with a light interface which saves user names, passwords, urls, attachments and comments in a properly encrypted single database.
