cron.weekly issue #43: Cryptography, 4.9 kernel, systemd, OpenLambda, Python & more!

cron.weekly is a newsletter about Linux, open source & webdevelopment. Want to get it in your inbox every Sunday? Subscribe below!

I respect your privacy and you won't get spam. Ever. Just a weekly-ish newsletter about Linux and open source.

Want to help support this blog? Try out Oh Dear, the best all-in-one monitoring tool for your entire website, co-founded by me (the guy that wrote this blogpost). Start with a 10-day trial, no strings attached.

We offer uptime monitoring, SSL checks, broken links checking, performance & cronjob monitoring, branded status pages & so much more. Try us out today!

Image of Mattias Geniar

Mattias Geniar, August 28, 2016

Follow me on Twitter as @mattiasgeniar

Welcome to cron.weekly issue #43 for Sunday August 28th, 2016.

This issue was co-written by my 2 year old daughter, so I’ll just blame any typos on her.

Podcast: Application Security & Cryptography

I recored a new SysCast podcast with Scott Arciszewski. We talk about securing online applications, the OWASP top 10, cache timing attacks, cryptography, the state of “secure PHP” and getting hacked.

A fun episode al themed around security.

Interested? Go have a listen.

News

Sweet32: attack on 64bit ciphers in TLS and OpenVPN

A new attack on Triple-DES ciphers has been revealed. Long story short: if possible, disable Triple-DES in your webservers’ configuration. While the attack isn’t very practical to execute, it could compromise HTTPs connections.

Host of Troubles Vulnerabilities

A set of vulnerabilities have been disclosed, targeting HTTP caches (Squid, Apache Traffic Server, Akamai’s CDN, …). By exploiting inconsistenties in the Host-header this can eventually lead to HTTP cache poisoning.

Compilation and Hyperthreading

This is a nice post comparing the speed of parallel compilation with hyperthreading: does hyperthreading help or not?

Happy 25th Birthday, Linux

25 years ago, Linus Torvalds posted the famous “just a hobby, won’t be big and professional like gnu” post on the Minix mailing list. After 25 years, Linux is still going strong.

Wayland the default in Fedora 25

A big change for desktop Linux users: Wayland is going to be the new display server, replacing X after a really long time.

Kernel 4.9 = Long Term Support kernel

The 4.9 kernel is going to be the new LTS kernel, getting 2 years of active maintenance. The previous LTS kernel was 4.4.

Systemd rolls out own mount tool

This one is sure to cause some controversy: there’s a new systemd command called systemd-mount.

Tools & Projects

gron

Make JSON greppable! gron transforms JSON into discrete assignments to make it easier to grep for what you want and see the absolute ‘path’ to it.

ntfy

A utility for sending notifications, on demand and when commands finish.

NeoDNS

It’s a theoretical approach to better DNS: by building it on top of the blockchain with Public Key Infrastructure (PKI). The theory sounds nice!

OpenLambda

‘Serverless’ architectures are growing in size, OpenLambda attempts to be an open source, self-hosted, alternative to services like Amazons’ AWS, Google Cloud Functions and Azure Function.

MISP

The MISP threat sharing platform is a free and open source software helping information sharing of threat and cyber security indicators.

Icinga 2.5 released

Lots of new stuff in this release: support for InfluxDB, timeperiod excludes (ie: when on holiday, don’t send alerts), faster restarts & more cool stuff.

Trailbot Client

Trailbot tracks your server’s logs and files, triggers Smart Policies upon potentially unwanted modifications and generates a tamper-proof audit trail of everything happening in the system.

Guides & Tutorials

A Unix Utility You Should Know About: lsof

Some good examples in this guide on the use of ‘lsof’, with real practical implementations. lsof lists file opened/in use by processes and can help you find the cause of a lot of problems.

Why you should learn python

Python is a really powerful language and many of the tools on Linux are written in python. There are plenty of code snippets and good explanations in this post to help you get started with python.

Working with iptables

Some nice examples of common use patterns when working with iptables.

Evolution of shells in Linux

A slightly older article, but still relevant: how did we get from _sh _to bash and beyond?

Export MySQL Database into Separate Files per Table

Some sample bash code for getting mysqldump to store each table content in its own file, making it easier to do partial database restores.

5 tools for monitoring disk activity

Some good examples on iotop_, dstat, atop, ioping and iostat_.

Want to subscribe to the cron.weekly newsletter?

I write a weekly-ish newsletter on Linux, open source & webdevelopment called cron.weekly.

It features the latest news, guides & tutorials and new open source projects. You can sign up via email below.

No spam. Just some good, practical Linux & open source content.