IBM Maximo Asset Management 7.1 through 220.127.116.11 and 7.5 through 18.104.22.168, Maximo Asset Management 7.5.0 through 22.214.171.124 and 7.5.1 through 126.96.36.199 for SmartCloud Control Desk, and Maximo Asset Management 7.1 and 7.2 for Tivoli IT Asset Management for IT and certain other products allow remote attackers to obtain sensitive directory information by reading an unspecified error message.
IBM WebSphere MQ 8.x before 188.8.131.52 does not properly enforce CHLAUTH rules for blocking client connections in certain circumstances related to the CONNAUTH attribute, which allows remote authenticated users to bypass intended queue-manager access restrictions via unspecified vectors.
The LWN.net Weekly Edition for October 2, 2014 is available.
Nixcraft: It is a little known fact that you can use the TOTP algorithm to secure your user accounts in Linux systems.
The VAR Guy: StackEngine, which says it is building solutions for automating the deployment and maintenance of container-based virtual apps such as Docker's, has announced seed funding.
LinuxGizmos: ITTIA has added bidirectional sync to ITTIA DB SQL for Android
How to install OpenLDAP Server on Debian or Ubuntu
This document describes how to install and configure OpenLDAP in Debian/Ubuntu Server. I will use OpenLDAP to configure a corporate organizational structure through OpenLDAP.
It's been a crazy week for the Bash shell, its maintainer,
and many Linux distributions that use the shell. A remote code-execution
vulnerability that was reported on September 24 has now morphed
into multiple related vulnerabilities, which have now mostly been fixed and
updates released by distributions. The
vulnerabilities have been dubbed "Shellshock" and the technical (and
mainstream) press has had a field day reporting on the incident.
LinuxBSDos: GNOME Boxes is a native GNOME 3 application for accessing remote machines and local virtual systems