Red Hat Achieves Common Criteria Security Certification for Red Hat Enterprise Linux 7

RALEIGH, N.C. — October 26, 2016 — Red Hat, Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that Red Hat Enterprise Linux 7.1 has been awarded the Common Criteria Certification at Evaluation Assurance Level (EAL) 4+ for an unmodified commercial operating system under the Operating Continue Reading


How the Dyn outage affected Cloudflare

Last Friday the popular DNS service Dyn suffered three waves of DDoS attacks that affected users first on the East Coast of the US, and later users worldwide. Popular websites, some of which are also Cloudflare customers, were inaccessible. Although Cloudflare was not attacked, joint Dyn/Cloudflare customers were affected. Almost Continue Reading


Zimbra Collaboration 8.7.1 is now available

In July of this year, we announced Zimbra Collaboration 8.7 , which included four of my favorite, Admin-related features including Two-Factor Authentication (2FA), a new Zimbra Packaging System, SSL Server Name Identification (SNI) and Zimbra Postscreen. Today, after only three months, I’m thrilled to announce the new minor release: Zimbra Continue Reading


How Cloudflare's Architecture Allows Us to Scale to Stop the Largest Attacks

The last few weeks have seen several high-profile outages in legacy DNS and DDoS-mitigation services due to large scale attacks. Cloudflare’s customers have, understandably, asked how we are positioned to handle similar attacks. While there are limits to any service, including Cloudflare, we are well architected to withstand these recent Continue Reading


Service log paths

Location of the logs on the CWP servers Apache logs are in folder /usr/local/apache/logs CWP server logs: /usr/local/cwpsrv/logs/ CSF & LFD firewall logs /var/log/lfd-log SSH logs /var/log/secure Yum logs /var/log/yum.log FTP logs /var/log/messages Postfix / Mail /var/log/maillog Dovecot and Dovecot debug logs dovecot.log dovecot-info.log dovecot-debug.log MySQL logs /var/lib/mysql/HOSTNAME.err


Scaling the Cloud: OpenStack and Security

OpenStack is the open-source cloud management platform software that can be used to build a low-cost private cloud for development, and cloud infrastructure as a service (IaaS) offering. Enterprises are also turning to OpenStack for data center and cloud deployment alternatives. Fortinet’s Cynthia Hsieh offers some perspective about OpenStack and Continue Reading


Communications Leaders Choose Red Hat OpenStack Platform for Powering Cloud Deployments to Deliver New Services

BARCELONA – OPENSTACK SUMMIT — October 26, 2016 — Red Hat, Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that communications leaders from around the world, including FreeBit, KazTransCom and Turkcell have deployed Red Hat OpenStack Platform, a highly scalable Infrastructure-as-a-Service (IaaS) solution, as the Continue Reading

hacklu-toothbrush 2016 Wrap-Up

This year I again attended Hack.Lu 2016. Whether it’s free workshops, CTF, or lightning or regular talks, there are many ways to learn new stuff. Not to mention the kind and informal atmosphere of the conference. Let me give you an example that perfectly illustrates the atmosphere: during lunch I started Continue Reading

[20161002] – Core – Elevated Privileges

Project: Joomla! SubProject: CMS Severity: High Versions: 3.4.4 through 3.6.3 Exploit type: Elevated Privileges Reported Date: 2016-October-21 Fixed Date: 2016-October-25 CVE Number: CVE-2016-8869 Description Incorrect use of unfiltered data allows for users to register on a site with elevated privileges. Affected Installs Joomla! CMS versions 3.4.4 through 3.6.3 Solution Upgrade to version 3.6.4 Continue Reading


Joomla! 3.6.4 Released

Joomla! 3.6.4 is now available. This is a security release for the 3.x series of Joomla! which addresses two critical security vulnerabilities and a bug fix for two-factor authentication. We strongly recommend that you update your sites immediately. This release only contains the security fixes and bug fix; no other Continue Reading

[20161001] – Core – Account Creation

Project: Joomla! SubProject: CMS Severity: High Versions: 3.4.4 through 3.6.3 Exploit type: Account Creation Reported Date: 2016-October-18 Fixed Date: 2016-October-25 CVE Number: CVE-2016-8870 Description Inadequate checks allows for users to register on a site when registration has been disabled. Affected Installs Joomla! CMS versions 3.4.4 through 3.6.3 Solution Upgrade to version 3.6.4 Contact Continue Reading


ISPConfig 3.1.1 Released

What’s new in ISPConfig 3.1.1 ISPConfig 3.1.1 adds support for Ubuntu 16.10 and fixes several bugs that were found in ISPConfig 3.1. This version contains an updated apache vhost template file. In case that you created a custom vhost override file, then ensure to add the modifications of the SSL Continue Reading


The Perfect Server – Ubuntu 16.10 (Yakkety Yak) with Apache, PHP, MySQL, PureFTPD, BIND, Postfix, Dovecot and ISPConfig 3.1

This tutorial shows the installation of an Ubuntu 16.10 (Yakkety Yak) web hosting server with Apache2, Postfix, Dovecot, Bind and PureFTPD to prepare it for the installation of ISPConfig 3.1. The resulting system will provide a Web, Mail, Mailinglist, DNS and FTP Server.


CubeCart 6.1.0 Released

We are excited to announce the release of CubeCart 6.1.0 which comes with a number of great new features.  What’s New? Dashboard notifications for extension updates (see upgrade notes). Font Awesome replaced with SVG in Foundation skin for optimisation with smaller page loads (up to 107KB smaller). SVG support for logo. Redis cache support. Continue Reading

Le Slip Français Explains Its Phenomenal Success

“If you want to change the world, start by changing your briefs”.The slogan says a lot about the identity and reputation of Le Slip Français, known for their made-in-France briefs — but not just that! Le Slip Français was launched through PrestaShop by Guillaume Gibault five years ago, and has Continue Reading


MailEnable Version 9.51 Release

RSS: MailEnable Version 9.51 Release MailEnable version 9.51 for Standard, Professional, Enterprise and Premium Editions is available for download from the MailEnable Web Site. The following change list outlines changes in version 9.51: RECENT CHANGES ADD: Migration Centre now allows importing of Contacts and Appointments via CalDAV and CardDAV ADD: Continue Reading


Produban Chooses Red Hat as Technology Partner to Deliver Modern Cloud Services with Kubernetes and Containers on OpenStack

BARCELONA — October 25, 2016 — Red Hat, Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that Produban, the IT services arm of the Spanish banking leader Grupo Santander, has picked Red Hat as its technology partner to create a modern cloud infrastructure with Red Continue Reading


Locky Happens: Notorious Ransomware Leaves an Unpleasant Trace

We attended the recent VB 2016 conference to present our findings on the development and evolution of Locky ransomware. In that same presentation we also discussed an automation system designed by Fortiguard to extract its configuration and hunt for new variants. Locky-ly (*wink*), while improving the system we couldn’t help Continue Reading


Mirai Botnet ­: Protect Your Infrastructure with FortiDDoS

As further details become available for the massive distributed denial of service attack against Dyn on Oct 21 2016, here are some things FortiDDoS customers can do to protect themselves from a potential Internet of Things (IoT) botnet-based DDoS attack like Mirai. Mirai spreads by compromising vulnerable IoT devices such Continue Reading


IoT malware are coming. Will you listen to me now?

It happened again. This past weekend we witnessed another record-setting DDoS attack, probably primarily caused by infected IoT devices. This attack is attributed to the same piece of code – Linux/Mirai – which and OVH in September. List of Attacks Attributed to Linux/Mirai Date Where Rate Comments Oct 21, 2016 Dyn DNS ? Continue Reading


Information-stealing Malware Is Spread Via Word Document

Recently we received a SPAM with an attachment, which is a password-protected Word document. Its MD5 is 6619356e9e0c9d2445bf777a8bea5d6a, which is detected as “WM/Agent.60F9!tr” by the Fortinet AntiVirus service. When the document is opened, the attached malicious VB script code is executed and additional malware is created and executed. Based on Continue Reading


Microsoft and Intel squeezed hyper-convergence into the overhead bin

This post was authored by Cosmos Darwin, Program Manager, Windows Server. The Challenge In the Windows Server team, we tend to focus on going big. Our enterprise customers and service providers are increasingly relying on Windows as the foundation of their software-defined datacenters, and needless to say, our hyperscale public Continue Reading


ClamAV v0.97 included in ZCS 8.0.6 and below tags all messages as **UNCHECKED**

Hello Everyone. If you are using ZCS 8.0.6 and prior: starting 22 October 2016, anti-virus definitions will no longer update, and your ClamAV instance will stop working entirely. This is a real risk for all outdated ZCS versions, and as a visual symptom, all your messages are being tagged as Continue Reading


Swisscom Guides Customers into the Digital Age with Red Hat OpenStack Platform and Red Hat Virtualization

BARCELONA – OPENSTACK SUMMIT — October 24, 2016 — Red Hat, Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that Swisscom has selected Red Hat as its technology partner to help the company deliver a modern, agile, and highly scalable cloud platform. Deploying Red Hat Continue Reading


UKCloud Creates an Open Source Alternative for UK Public Sector with Red Hat OpenStack Platform

BARCELONA – OPENSTACK SUMMIT — October 24, 2016 — Red Hat, Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that UKCloud, the foremost public cloud provider for UK government, has standardized on Red Hat OpenStack Platform with Red Hat Ceph Storage to lead its public Continue Reading


GitLab 8.13 Released with Multiple Issue Boards and Merge Conflict Editor

We’re traveling around the world and having the pleasure of meeting so many of you. This month we’re proud to present many changes that have been highly requested both in person and on our issue tracker. You’re now able to create multiple issue boards and quickly create issues from them. Continue Reading


When Half the Internet Goes Down Due to a Cyber-Assault on DNS Infrastructure

On Oct 21, 2016, yet another cyber assault happened on a large DNS provider’s infrastructure, bringing down websites and services on the east coast of the United States. While it is easy to launch these attacks, the solutions available in the market have not kept pace. FortiDDoS is the only hardware Continue Reading


cPanel Security Team: Dirty COW (CVE-2016-5195)

Dirty COW (CVE-2016-5195) Dirty COW (CVE-2016-5195) is a privilege escalation vulnerability in the Linux Kernel. A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access Continue Reading


Fortinet Researchers Discover Two Critical Vulnerabilities in Adobe Acrobat and Reader 

Fortinet researchers recently discovered two critical zero-day vulnerabilities in Adobe Acrobat and Reader. They are identified as CVE-2016-6939 and CVE-2016-6948. Adobe released a patch to fix these vulnerabilities on October 6, 2016. CVE-2016-6939 This vulnerability was discovered by Kai Lu. CVE-2016-6939 is a heap overflow vulnerability. The vulnerability is caused by Continue Reading

Page 1 of 6812345...102030...Last »