Helpful link
For those wondering "Am I affected by this nginx bug?". You might be, if your nginx is running NGINX JavaScript Module. It is not built by default
Here's a quick summary of news in the world of information security beyond everything we've already covered. Docker containers banished to the coin mines Last week was not a great week for the Docker security team, first with the revelation of a race condition flaw, then with a warning from Trend Micro of active attacks …
For those wondering "Am I affected by this nginx bug?". You might be, if your nginx is running NGINX JavaScript Module. It is not built by default
The Kremlin has long been planning to get itself off of Windows and onto its own FSB-approved version of Linux. That effort took a step forward this week when Astra Linux cleared a major security hurdle.
The link to Defense One goes to a page entitled:
Russia’s Would-Be Windows Replacement Gets a Security Upgrade which is OK; yet the url itself includes: russias-microsoft-knockoff-gets-security-upgrade which personally makes me want to lob a mini-nuke to the publishers.
They like their nukes there..
.
EDIT: Plus in the Sour Grapes vein there's some fairly demented dismissal of the Russian government being able to sell their Linux abroad; and various cheap shots about Russian software being dangerous. Especially for Windows.
Malware purposed for the Windows platform is rootless and cosmopolitan.
Really? Nginx nJS needs patching? I know just the person to help out, good old Shrdlu etaioN. He's a colleague of the widely-respected Montuewed Thufrisat. Everyone knows Shrdlu, been in the business for ages.
I realize that this is nothing more than an outburst of sarcasm, but I have watched my beloved profession, which used to use real words and plain language, descend into the tar-pit of novelty-naming. "No! They have an edgier name than we do! Make something up that's all consonants. Yeah, that's the ticket."
[sigh]