Linux 3.17 (2014-10-05) learnt a new syscall getrandom() that, well, gets bytes from the entropy pool. Glibc learnt about this with 2.25 (2017-02-05) and two tries and four years after the kernel, OpenSSL used that functionality from release 1.1.1 (2018-09-11). OpenSSH implemented this natively for the 7.8 release (2018-08-24) as well.

Now the getrandom() syscall will block1 if the kernel can't provide enough entropy. And that's frequenty the case during boot. Esp. with VMs that have no input devices or IO jitter to source the pseudo random number generator from.

This article describes a method how to use a #USB memory device as an #authentication token to log in into a #Linux system instead of traditional #password. This can be accomplished by use of Pluggable Authentication Modules ( PAM ) and some sort of USB storage device such as USB memory stick of Mobile phone with SD card attached.

LOTS of stickers, including "Powered by Debian GNU/Linux" metallic sticker.

• Debian Badges
• Tux Badges

privacytools.io provides knowledge and tools to protect your privacy against global mass surveillance.

Proxmox Virtual Environment (environnement virtuel), ou Proxmox VE, est un environnement de virtualisation libre basé sur Debian. Il permet de déployer et de gérer des machines virtuelles et des conteneurs sans les restrictions et sans les coûts de technologies comparables comme VMWare ESxi.

During Jacob Applebaum's talk at DebConf15, he noted that Debian should TLS-enable all services, especially the mirrors.

His reasoning was that when a high-value target downloads a security update for package foo, an adversary knows that they are still using a vulnerable version of foo and try to attack before the security update has been installed.

In this specific case, TLS is not of much use though. If the target downloads 4.7 MiB right after a security update with 4.7 MiB has been released, or downloads from security.debian.org, it's still obvious what's happening. Even padding won't help much as the 5 MiB download will also be suspicious. The mere act of downloading anything from the mirrors after an update has been released is reason enough to try an attack.

The solution, is, of course, Tor.

Neil McGovern was elected as Debian Project Leader in April. The project is going through some major changes such as a switch to systemd. We reached out to McGovern to understand his roles and plans for one of the most revered open source projects.

If you are experiencing issues installing LiveCode within a Linux environment the most likely cause of this is that the installer has not had its executable bit set. This lesson will explain how to do this within the Ubuntu Linux environment