Rohan Timalsina

TuxCare

Web servers handle static content (HTML, CSS, images) and focus on fast, efficient delivery using HTTP/HTTPS. Application servers manage dynamic content, execute business logic, and provide features like transaction management, security, and scalability. In enterprise environments, web servers and application servers often work together, with the web server acting as ... Read More

The choice between CentOS vs Ubuntu depends on your specific needs: stability, support, security, and software ecosystem. While Ubuntu receives official support from Canonical, the last supported version of CentOS Linux, CentOS 7, reached end of life on June 30, 2024. TuxCare offers Extended Lifecycle Support for CentOS 6, 7, ... Read More

Recently, Canonical issued security updates to address several Emacs vulnerabilities in multiple Ubuntu releases. Emacs is one of the popular text editors in Linux operating systems. The identified vulnerabilities primarily revolve around improper input and filename sanitization. Attackers could use these issues to execute arbitrary code, putting systems at risk ... Read More

Canonical has released security updates for Ubuntu 16.04 ESM and Ubuntu 18.04 ESM to address multiple vulnerabilities in Git, a powerful and widely-used distributed version control system. These vulnerabilities may allow malicious attackers to overwrite files outside the repository, inject arbitrary configuration, or even execute arbitrary code. In this article, ... Read More

As of June 30, 2024, the CentOS Project ceased all updates and releases for CentOS Linux. CentOS Stream serves as the upstream development platform for future RHEL releases. CentOS Stream 9 will continue to receive regular updates, providing users with the latest features and security patches. In December 2020, Red ... Read More

Cross-site scripting (XSS) vulnerabilities continue to be a major concern in today’s software landscape, despite being preventable. CISA and FBI have issued a Secure by Design alert to reduce the prevalence of these vulnerabilities. While XSS attacks have been around for years, they remain a persistent threat due to improper ... Read More

Multiple vulnerabilities in Python have been identified and patched, with updates available for several Ubuntu releases, including Ubuntu 24.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 20.04 LTS. These vulnerabilities pose serious security risks, such as denial of service (DoS) and the ability to bypass protection mechanisms. In this article, we ... Read More

Open-source security requires a multi-faceted approach due to the transparency of open-source software exposing potential vulnerabilities. Malicious actors can target the supply chain to introduce compromised components into open-source projects. Misunderstanding or non-compliance with open-source licenses can lead to legal issues and potential financial losses.    Open-source software has revolutionized the ... Read More

Linux kernel 6.11 was released on September 15, 2024, introducing a lot of new features, performance improvements, and better hardware support. While it is a short-lived release, expected to be superseded by Linux 6.12 in just a few months, it brings significant changes worth noting.   Key Highlights of Linux ... Read More

CISA has issued a warning about three new vulnerabilities that are being actively exploited. These vulnerabilities pose a significant risk to organizations and should be patched immediately. Among them, CVE-2017-1000253 is a critical Linux kernel vulnerability that could lead to privilege escalation by a local attacker. As a frequent target ... Read More