Last Updated: 2014-10-23 19:36:18 UTC
by Russ McRee (Version: 1)
A new Snort release is available: Snort 2.97.
VMWare has released a security advisory: VMSA-2014-0011 - VMware vSphere Data Protection product update addresses a critical information disclosure vulnerability.
There's a Whitehouse petition to unlock public access to research on software safety through DMCA and CFAA reform. Needs 98,000 signatures, currently has just over 1000. The synopsis for your consideration:
Software now runs consumer products and critical systems that we trust with our safety and security. For example, cars, medical devices, voting machines, power grids, weapons systems, and stock markets all rely on code. While responsible companies cooperate with the technical community and the public to improve the safety of code, others do not. They instead try to prevent researchers and others from sharing safety research, threatening criminal and civil actions under the Digital Millennium Copyright Act and the Computer Fraud and Abuse Act. Chilling research puts us all at risk. Protect the public from unsafe code and help us to protect ourselves. Reform the DMCA and CFAA to unlock and encourage research about potentially dangerous safety and security weaknesses in software.
If you agree, sign the petition here.
NIST just released a draft of NIST Special Publication 800-125-A Security Recommendations for Hypervisor Deployment. You denizens of the cloud should give this one a good read through.
If you have more information or corrections regarding our diary, please share.