news aggregator

Dustin Kirkland: Ubuntu 14.04 LTS -- Security for Human Beings

Planet Ubuntu - Wed, 2014-04-09 15:08


In about an hour, I have the distinct honor to address a room full of federal sector security researchers and scientists at the US Department of Energy's Oak Ridge National Labs, within the Cyber and Information Security Research Conference.

I'm delighted to share with you the slide deck I have prepared for this presentation.  You can download a PDF here.

To a great extent, I have simply reformatted the excellent Ubuntu Security Features wiki page our esteemed Ubuntu Security Team maintains, into a format by which I can deliver as a presentation.

Hopefully you'll learn something!  I certainly did, as I researched and built this presentation ;-)
On a related security note, it's probably worth mentioning that Canonical's IS team have updated all SSL services with patched OpenSSL from the Ubuntu security archive, and have restarted all relevant services (using Landscape, for the win), against the Heartbleed vulnerability. I will release an updated pollinate package in a few minutes, to ship the new public key for entropy.ubuntu.com.


Stay safe,
Dustin

Julian Andres Klode: ThinkPad X230 UEFI broken by setting a setting

Planet Ubuntu - Wed, 2014-04-09 12:57

Today, I decided to set my X230 back to UEFI-only boot, after having changed that for a bios upgrade recently (to fix a resume bug). I then choose to save the settings and received several error messages telling me that the system ran out of resources (probably storage space for UEFI variables).

I rebooted my machine, and saw no logo appearing. Just something like an underscore on a text console. The system appears to boot normally otherwise, and once the i915 module is loaded (and we’re switching away from UEFI’s Graphical Output Protocol [GOP]) the screen works correctly.

So it seems the GOP broke.

What should I do next?


Filed under: General

Stephan Adig: We are hiring

Planet Ubuntu - Wed, 2014-04-09 08:03

Normally I don’t write this type of post, but I know what’s coming up here, and we need people.

As long as you have a European Passport and/or a Visa which entitles you to travel across Europe without issues, you are already interesting.

You are even more interesting when

  • you like working in a fast paced environment
  • you like working with Hardware
  • you are not afraid of moving several hundreds of racks (yes, racks, not servers) of baremetal
  • you like working in an environment where OpenSource is one of the main drivers
  • you like working with a the smartest people in our business
  • you like automation
  • you like being in a Datacenter
  • you like gaming
  • you like streaming
  • you like traveling
  • you read/write/speak English (technically and socially)
  • you like Sony PlayStation (oh well, that’s a plus but not a must ;))
  • you are not afraid

If most of this applies to you, we want to hear from you.

You’ll work from Berlin, Germanies Capital. Our office is in the Heart of Berlin, one of the nicest places in this City.

We are a team of French, Italian, Spanish and German People.

You’ll work closely with the US Southern California Based team and as well with the EU SRE Team.

If you think you are the right person, what are you waiting for?

Applying for this job is easy as installing Ubuntu.

Two ways to apply:

  1. You apply for the job on our LinkedIn Page and refer to Me (Stephan Adig) (you can also mention where you read this post)
  2. Or you send me an email with all your details and your CV (PDF or ASCII and Picture Attached) and I’ll put you in top of the stack.

Anyways, I know some people are scared of LinkedIn so here is the official job description from our HR Department:

Data Center Operations Engineer Job description

Gaikai (外海?, lit. “open sea”, i.e. an expansive outdoor space) is a company which provides technology for the streaming of high-end video games.[2] Founded in 2008, it was acquired by Sony Computer Entertainment in 2012. Its technology has multiple applications, including in-home streaming over a local wired or wireless network (as in Remote Play between the PlayStation 4 and PlayStation Vita), as well as cloud-based gaming where video games are rendered on remote servers and delivered to end users via internet streaming (such as the PlayStation Now game streaming service.[3]) As a startup, before its acquisition by Sony, the company announced many partners using the technology from 2010 through 2012 including game publishers, web portals, retailers and consumer electronics manufacturers

Gaikai is looking for a talented Data Center Operations Engineer to be based in our Berlin office. This position is for an experienced candidate who will work within the Data Center Operations team and have hands on responsibility for ensuring our production datacenter environments are operating efficiently. This position will work closely with the System Engineering and Network Operations teams and provide hands on support for them. The primary responsibility of this job role is to rack and cable new hardware, upgrade existing servers and network equipment and keep accurate inventory information for all systems. You will also be responsible for assisting in the development of processes and procedures related hardware deployment, upgrades and break/fix issues. Key Responsibilities:

  • Support existing hardware in multiple datacenter locations
  • Plan and execute installations in multiple datacenter locations in a timely manner
  • Ensure accurate inventory information for multiple datacenter locations
  • Work closely with Data Center Operations team to track orders and deliveries to multiple datacenter locations
  • Work with the Director of Data Center Operations on datacenter status reports for Senior Management for each datacenter location
  • Refine and document support process for each location including the handling of RMA requests
Desired Skills and Experience

Requirements:

  • BA degree or equivalent experience
  • 1-3 years working in a production datacenter environment
  • Experience with asset management and reporting
  • Knowledge of various vendor RMA processes to deal with repairs and returns
  • Keen understanding of data center operations, maintenance and technical requirements including replacement of components such as hard drives, RAM, CPUs, motherboards and power supplies.
  • Understanding of the importance of Change Management in an online production environment
  • High energy and an intense desire to positively impact the business
  • Ability to rack equipment up to 50 lbs unassisted
  • High aptitude for technology
  • Highly refined organizational skills
  • Strong interpersonal and communication skills and the ability to work collaboratively
  • Ability to manage multiple tasks at one time

Up to 50% travel required with this position.

Ubuntu GNOME: Upgrade Testing

Planet Ubuntu - Wed, 2014-04-09 07:44

Hi,

Ubuntu GNOME as an official flavour of Ubuntu, it has the same Release Schedule of Ubuntu and the same goes for all the other official flavours as well.

When it comes to Testing Ubuntu GNOME, we need to make sure everything is working as expected without any problem.

That said, we would like to invite you to help Ubuntu GNOME with Upgrade Testing.

How to help Ubuntu GNOME with Upgrade Testing?
The idea is very simple. We need to upgrade Ubuntu GNOME 13.10 to Ubuntu GNOME Trusty Tahr and test the upgrade process.

If you have Ubuntu GNOME 13.10 installed already, we would really appreciate your help in this regard.

If Ubuntu GNOME 13.10 is not installed, then kindly install it and do the upgrade. Installing Ubuntu GNOME from LiveUSB should not take more than 10 minutes.

How to do an upgrade from 13.10 to Trusty Tahr?
Before we get into this, kindly have a read at Upgrades Documentation.

Whether you’re helping Ubuntu GNOME Team with Testing or you’re a fan of running unstable releases on your machine, kindly make sure to backup your important files before anything else.

To upgrade Ubuntu GNOME 13.10 Stable to Ubuntu GNOME Trusty Tahr Development Release, kindly have a read at Upgrading to Development Releases.

Share your Testing Results
Please make sure to share your Testing Results with Ubuntu GNOME QA Team. The more feedback in this regard, the better.

Let’s make sure that our very first LTS Release of Ubuntu GNOME is solid as rock.

Thank you for helping, supporting and testing Ubuntu GNOME!

As always, for more information about testing, please see Ubuntu GNOME Testing Wiki Page.

Should you have any question, please don’t hesitate to Contact Us.

Happy Testing

Daniel Pocock: Double whammy for CACert.org users

Planet Ubuntu - Wed, 2014-04-09 05:47

If you are using OpenSSL (or ever did use it with any of your current keypairs in the last 3-4 years), you are probably in a rush to upgrade all your systems and replace all your private keys right now.

If your certificate authority is CACert.org then there is an extra surprise in store for you. CACert.org has changed their hash to SHA-512 recently and some client/server connections silently fail to authenticate with this hash. Any replacement certificates you obtain from CACert.org today are likely to be signed using the new hash. Amongst other things, if you use CACert.org as the CA for a distributed LDAP authentication system, you will find users unable to log in until you upgrade all SSL client code or change all clients to trust an alternative root.

Pages

Subscribe to Free Software Magazine aggregator