[syndicated profile] mobileread_feed

Posted by Alexander Turcic

Ladies and Gentlemen,

This coming Wednesday at 4:00am EDT, MobileRead will be offline for approximately one hour. We're going to move our server equipment to a new location in Germany. That's right, good bye New York, you served us well. The new hardware is a somewhat beefed-up version of the current one, ready to serve us for the long-awaiting switch to a new forum software.

In preparation, we lowered the time-to-live values of our DNS entries. This will allow your local ISP to pick up more quickly our new IP addresses.

Until then... enjoy and fingers crossed!

Kind regards,
Alex

[image credit: Blondinrikard Fröberg/Flickr]

DNSSEC Key Signing Key Rollover

Aug. 21st, 2017 15:38
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 21, 2017

On October 11, 2017, the Internet Corporation for Assigned Names and Numbers (ICANN) will be changing the Root Zone Key Signing Key (KSK) used in the domain name system (DNS) Security Extensions (DNSSEC) protocol. 

DNSSEC is a set of DNS protocol extensions used to digitally sign DNS information, which is an important part of preventing domain name hijacking. Updating the DNSSEC KSK is a crucial security step, similar to updating a PKI Root Certificate. Maintaining an up-to-date Root KSK as a trust anchor is essential to ensuring DNSSEC-validating DNS resolvers continue to function after the rollover. While DNSSEC validation is mandatory for federal agencies, it is not required of the private sector. Systems of organizations that do not use DNSSEC validation will be unaffected by the rollover.

US-CERT encourages administrators to update their DNSSEC KSK before October 11, 2017. See the NIST/NTIA Roll Ready site and the ICANN Root Zone KSK Rollover resources page for more information.


This product is provided subject to this Notification and this Privacy & Use policy.


Mozilla Releases Security Update

Aug. 21st, 2017 11:32
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 21, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird 52.3 and apply the necessary update.


This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] mobileread_feed

Posted by WT Sharpe

Help us select the book that the MobileRead Book Club will read for September, 2017.

The nominations will run through midnight EST August 26 or until 10 books have made the list. The poll will then be posted and will remain open for five days.

The book selection category for September is: The Classics.

For a book to be included in the poll it needs THREE NOMINATIONS (original nomination, a second and a third).

How Does This Work?
The Mobile Read Book Club (MRBC) is an informal club that requires nothing of you. Each month a book is selected by polling. On the last week of that month a discussion thread is started for the book. If you want to participate feel free. There is no need to "join" or sign up. All are welcome.

How Does a Book Get Selected?
Each book that is nominated will be listed in a poll at the end of the nomination period. The book that polls the most votes will be the official selection.

How Many Nominations Can I Make?
Each participant has 3 nominations. You can nominate a new book for consideration or nominate (second, third) one that has already been nominated by another person.

How Do I Nominate a Book?
Please just post a message with your nomination. If you are the FIRST to nominate a book, please try to provide an abstract to the book so others may consider their level of interest.

How Do I Know What Has Been Nominated?
Just follow the thread. This message will be updated with the status of the nominations as often as I can. If one is missed, please just post a message with a multi-quote of the 3 nominations and it will be added to the list ASAP.

When is the Poll?
The poll thread will open at the end of the nomination period, or once there have been 10 books with 3 nominations each. At that time a link to the initial poll thread will be posted here and this thread will be closed.

The floor is open to nominations. Please comment if you discover a nomination is not available as an ebook in your area.


Official choices with three nominations each:

- None -

Drupal Releases Security Updates

Aug. 16th, 2017 23:08
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 16, 2017

Drupal has released an advisory to address several vulnerabilities in Drupal 8.x. A remote attacker could exploit one of these vulnerabilities to obtain or modify sensitive information.

US-CERT encourages users and administrators to review Drupal's Security Advisory and upgrade to version 8.3.7.


This product is provided subject to this Notification and this Privacy & Use policy.


Cisco Releases Security Updates

Aug. 16th, 2017 22:36
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 16, 2017

Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:

  • Cisco Application Policy Infrastructure Controller SSH Privilege Escalation Vulnerability cisco-sa-20170816-apic1
  • Cisco Application Policy Infrastructure Controller Custom Binary Privilege Escalation Vulnerability cisco-sa-20170816-apic2
  • Cisco Virtual Network Function Element Manager Arbitrary Command Execution Vulnerability cisco-sa-20170816-em

This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] dubious_prospects_feed

Posted by Graydon

One really unfortunate consequence of the way the Enlightenment happened is a whole bunch of creationist worldview hangovers.  If you, and everyone around you, just supposes that of course everything was created by a perfect divine being, you go all essentialist about types.  This is not a factually well-supported position, but the conceptual hangover goes on and on.  (In part because it's easy;

Symantec Releases Security Update

Aug. 11th, 2017 12:40
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 11, 2017

Symantec has released an update to address vulnerabilities in the Symantec Messaging Gateway. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the Symantec Security Advisory and apply the necessary update.


This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 09, 2017 | Last revised: August 10, 2017

Juniper Networks has released a security advisory that addresses a vulnerability in Junos OS. A remote attacker could exploit this vulnerability to cause a denial-of-service condition.

US-CERT encourages users and administrators to review the Juniper Security Advisory and apply necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 08, 2017

The Federal Trade Commission (FTC) has released an alert on government grant scams. In these schemes, scammers pose as government officials to get consumers to send them money. Anytime someone asks you to pay money to get money, stop and think twice.

US-CERT encourages consumers to refer to the FTC Alert and the US-CERT Tip on Real-World Warnings Keep You Safe Online for more information.


This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 08, 2017

Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system.

US-CERT encourages users and administrators to review Microsoft's August 2017 Security Update Summary and Deployment Information and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 08, 2017

Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 55 and Firefox ESR 52.3 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


Adobe Releases Security Updates

Aug. 8th, 2017 16:41
[syndicated profile] us_cert_current_feed

Posted by US-CERT

Original release date: August 08, 2017

Adobe has released security updates to address vulnerabilities in Adobe Flash Player, Acrobat, Reader, Experience Manager, and Digital Editions. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review Adobe Security Bulletins APSB17-23, APSB17-24, APSB17-26, and APSB17-27 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


Profile

piranha: red origami crane (Default)
renaissance poisson

July 2015

S M T W T F S
   123 4
567891011
12131415161718
19202122232425
262728293031 

Most Popular Tags

Expand Cut Tags

No cut tags