OpenSSH-7.1p2 fixes client vulnerability which can leak your private keys

The new openssh-7.1p2 release fixes a vulnerability in openssh clients from versions 5.4 to 7.1 which lets a malicious server to read private keys from the clients memory. For more information and mitigation see, http://www.openssh.com/txt/release-7.1p2

Be safe out there!

GNUnet e.V. Assembly 2015

The annual GNUnet e.V. assembly is upon us. We'll meet on December 29th at 20:30 in Hall F at 32c3 in Hamburg. Below is the agenda.

YBTI @ 32c3

The "YBTI/We Fix the Net" assembly" is to be the perfect place at 32c3 for all hackers to do something about replacing today's broken Internet with secure alternatives. We hope to have some talks and panels like in previous years. Details will be posted here closer to the congress, for now, please contact us at wefixthenet@gnunet.org if you are interested to present your work or organize something practical. Topics include:

Video: Reproducible Software Deployment with GNU Guix

Ludovic Courtès presented his vision for future secure operating system distributions using GNU Guix today, including a surprising number of GNUnet references.

Abstract

“It used to work perfectly, then I upgraded something, and somehow...”. Sounds like a déjà vu? Sometimes feel like software deployment is unpredictable? You think reproducible research demands reproducible software deployment? Ever wondered if you can trust your compiler or the integrity of those binary packages you have downloaded?

IETF getting cold feet about P2P Names?

With broad support from the P2P community, we have been trying for a while to follow RFC 6761 to register special use domain names for ".bit", ".exit", ".gnu", ".i2p", ".onion" and ".zkey" to reduce the likelihood of ICANN accidentally creating a conflicting gTLD assignment.

6th Dev Mumble - April 27th, 9pm CEST @ gnunet.org

Hi devs,

On the 27th we get to officially announce the results from the GSoC application process to the students, so we should probably use this opportunity to also have a first discussion with those that have been selected. So, let's have the 6th develper Mumble on Monday, April 27th, 9pm CEST, as usual using the Mumble server on gnunet.org. Agenda items include:

  • GSoC announcements and planning
  • GNUnet 0.10.2 release: To CADET or not to CADET?

I hope all GSoC applicants, mentors and Bart can make it, naturally everybody is welcome to join.

Video: 31c3: We Fix the Net

In December 2014 we organized the "We Fix The Net" workshop at 31c3. You can now finally find the videos from the talks that we were allowed to record below.

5th Dev Mumble - March 20th, 9pm CET @ gnunet.org

Hi devs,

The 5th develper Mumble will be on Friday, March 20th, 9pm CET, as usual using the mumble server on gnunet.org. Agenda items include:

  • GSoC application deadline is March 27th, students should discuss their proposals with us!
  • GNUnet 0.10.2 release: known bugs still fix vs. bugs to add to release notes

Before the meeting (if possible) students should upload their GSoC proposal to Melange, and it would be great if all known open bugs were entered into the bugtracker, and all known resolved bugs marked as resolved in the bugtracker.

Pages

Subscribe to GNUnet RSS