SUSE Blog

Tag Archives: Security

Lenovo™ and SUSE® deliver the first integrated enterprise Linux TPM 2.0 solution

Drew

By: Drew

March 9, 2017 1:17 pm

Reads:1,640

Score:5

The Trusted Platform Module (TPM) is a cryptographic component of many enterprise-class servers.  TPM is an integral part of hardware-based security in these servers, providing tasks such as user authentication, remote access and data protection. System functions such as Intel® Trusted Execution Technology (Intel TXT) use TPM enhancements to help deliver system security. TPM 2.0 …

+read more

Tags: , , , , , ,
Categories: Alliance Partners, Announcements, Enterprise Linux, Expert Views, IT Infrastructure Management, Server, SUSE Linux Enterprise, SUSE Linux Enterprise Server, Technical Solutions

SUSE will move to CVSS v3.0



By: Alexander Bergmann

January 16, 2017 9:17 am

Reads:1,214

Score:5

One aspect of IT security is risk assessment and risk management. Newly announced or discovered vulnerabilities need to be evaluated and put into context to understand the impact they have. A widely-used framework to measure such issues is the Common Vulnerability Scoring System (CVSS). In practice currently two versions – CVSS v2 released in 2007 …

+read more

Tags: , , , ,
Categories: SUSE Cloud, SUSE Linux Enterprise, SUSE Linux Enterprise Desktop, SUSE Linux Enterprise Server

Pi Aims for Large Slice of the Cloud Market with OpenStack

Mark_Smith

By: Mark_Smith

January 12, 2017 11:54 am

Reads:1,996

Score:Unrated

Just in case anyone thinks there’s a typo in the title, I’m referring to “Pi” as in the 16th letter of Greek alphabet or the mathematical constant. Not “Pie” as in apple pie. More specifically, this is about Pi DATACENTERS, a cloud service provider in India who is aiming to capture a large slice of …

+read more

Tags: , , ,
Categories: Cloud Computing, Cloud Solutions, OpenStack, SUSE OpenStack Cloud, Technical Solutions

Two Highlight Sessions From openSUSE Conference – Day One

chabowski

By: chabowski

June 23, 2016 9:07 am

Reads:703

Score:5

My colleague Frank already shared his impressions from the first half of day one at openSUSE Conference, and I just can second his words about the keynote from Tom, Dave, and Joe about Saltstack and SUSE Manager. (BTW – I always thought a “Reactor Architecture” is something kind of a bit more scary, but yesterday …

+read more

Tags: , , , , , , , ,
Categories: openSUSE, Technical Solutions

Availability of SAP HANA important to you?



By: joanneharris

May 19, 2016 11:26 am

Reads:804

Score:Unrated

How would zero planned downtime for SAP sound to you? Well now that could actually be attainable. SUSE just introduced SUSE Linux Enterprise Live Patching to help customers running workloads on the SAP HANA platform, SAP NetWeaver technology platform and other SAP applications reduce the business disruption caused by planned downtime, while maintaining a highly secure IT environment. …

+read more

Tags: , , , ,
Categories: SUSE Linux Enterprise Server for SAP Applications

DROWN patches available for SUSE Linux Enterprise

Bryan Lunduke

By: Bryan Lunduke

March 1, 2016 10:24 am

Reads:5,640

Score:5

Earlier today a security vulnerability known as “DROWN” was announced.  SUSE was on top of it and already has patches available for SUSE Linux Enterprise. What is “DROWN”? “DROWN” is an acronym that stands for “Decrypting RSA using Obsolete and Weakened eNcryption”.  Also known as CVE-2016-0800. It allows an attacker to decrypt a TLS connection …

+read more

Tags: , , , ,
Categories: Enterprise Linux, Expert Views, SUSE Linux Enterprise Server, Technical Solutions

OpenSSH Security Vulnerability information and patch details.

Bryan Lunduke

By: Bryan Lunduke

January 14, 2016 10:24 am

Reads:3,776

Score:5

There’s a new security vulnerability in town that goes by the name of CVE-2016-0777 (and CVE-2016-0778). Catchy, I know. In a nutshell, this is a leak in the OpenSSH client that can allow malicious servers to get the private key of a roaming client. Obviously that is not a good thing. This vulnerability works by exploiting an undocumented …

+read more

Tags: , , ,
Categories: Expert Views, SUSE Linux Enterprise, Technical Solutions

Block and Tackle: SUSE Enterprise Storage 2

davidbyte

By: davidbyte

November 3, 2015 7:07 am

Reads:2,591

Score:5

Here at SUSE, we are proud to continue our rapid pace of innovation in bringing the best to our customers with the release of SUSE Enterprise Storage 2.  This release does far more than just update the code base to the Ceph Hammer release, and I will attempt to outline some of the great new …

+read more

Tags: , , , , , , , , ,
Categories: Announcements, Expert Views, SUSE Enterprise Storage, Technical Solutions

OpenSSL vulnerability — not a problem for SUSE

Bryan Lunduke

By: Bryan Lunduke

July 9, 2015 11:47 am

Reads:2,356

Score:5

A new vulnerability in OpenSSL has been discovered — specifically only if you are running OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.  This vulnerability relates to certificate validation, and could allow an attacker to bypass that validation. That’s the bad news. The good news is that no releases of SUSE Linux Enterprise (or openSUSE) are affected by …

+read more

Tags: , ,
Categories: Enterprise Linux, SUSE Linux Enterprise

Of Venoms and Antidotes



By: Olaf Kirch

May 13, 2015 10:49 am

Reads:2,689

Score:5

Today, a new vulnerability was disclosed by the name of VENOM (CVE-2015-3456), already seeing a fair amount of media attention. In order to help you assess the impact of this vulnerability on your systems, we are collecting background information and provide a prelimary risk assessment for our products. What this attack is all about The …

+read more

Tags: , , , , , ,
Categories: Cloud Computing, News, OpenStack, Server, SUSE Cloud, SUSE Linux Enterprise, SUSE Linux Enterprise Server, Technical Solutions, Virtualization

RSS