The LWN.net Weekly Edition for March 20, 2014 is available.
Version 6.5 of the OpenSSH suite was released in late January, bringing
with it a host of new features. A 6.6 release followed, primarily to
provide an important bug fix, but most users will still find the
feature set introduced in OpenSSH 6.5 to be the more significant
enhancement. That feature set includes support for additional key
exchange and signature functions, configuration improvements, and
dropping support for several out-of-date options that are no longer
regarded as secure.
John Cartwright, the administrator of the venerable full-disclosure
security-oriented mailing list, has announced that it is shutting down. "The list has had its fair share of trolling, flooding,
furry porn, fake exploits and DoS attacks over the years, but none of
those things really affected the integrity of the list itself.
However, taking a virtual hatchet to the list archives on the whim of
an individual just doesn't feel right. That 'one of our own' would
undermine the efforts of the last 12 years is really the straw that
broke the camel's back."
CAcert is an SSL/TLS certificate
authority (CA) that seeks to be community driven and to provide
certificates for free (gratis), which stands in sharp contrast to the other
CAs. But, in order for CAcert-signed certificates to be accepted by web
browsers and other TLS-using applications, the CAcert root certificate must
in the "trusted certificate store" that operating systems use to determine
which CAs to trust.
Ars technica takes
a look at an ongoing criminal operation infecting more than 10,000 Unix
and Linux servers with malware that sends spam and redirects end users to
malicious Web pages.
Version 2.0.10 of the GNU Guile language, an implementation of the "Scheme"
Lisp dialect, is out. New features include
better GDB integration, HTTP proxy support,
better runtime error reporting, a new vector operations library, and a lot
of changes to support the upcoming "R7RS" version of the Scheme language
(information about which can be found on scheme-reports.org).