Topic: SECURITY - on March 5, 2014 at 4:24:00 PM CET
Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
Hundreds of open source packages, including the Red Hat, Ubuntu, and Debian distributions of Linux, are susceptible to attacks that circumvent the most widely used technology to prevent eavesdropping on the Internet, thanks to an extremely critical vulnerability in a widely used cryptographic code library.
The bug in the GnuTLS library makes it trivial for attackers to bypass secure sockets layer (SSL) and Transport Layer Security (TLS) protections available on websites that depend on the open source package. Initial estimates included in Internet discussions such as this one indicate that more than 200 different operating systems or applications rely on GnuTLS to implement crucial SSL and TLS operations, but it wouldn't be surprising if the actual number is much higher. Web applications, e-mail programs, and other code that use the library are vulnerable to exploits that allow attackers monitoring connections to silently decode encrypted traffic passing between end users and servers.
... Link (0 comments) ... Comment
Topic: DRUGS - on March 5, 2014 at 4:22:00 PM CET
D.C. Council votes to eliminate jail time for marijuana possession
Possessing marijuana and smoking it in the privacy of one’s home would no longer be criminal offenses in the nation’s capital under a bill passed Tuesday by the D.C. Council, putting the District at the forefront of a simmering national debate over decriminalization.
Mayor Vincent C. Gray (D) intends to sign the bill, which would partially decriminalize pot by imposing civil fines rather than jail time for most offenses. The District joins 17 states that have taken similar action but doesn’t go as far as Colorado or Washington state, where voters have legalized the sale and taxation of marijuana.
... Link (0 comments) ... Comment
