SUSE Conversations


Tag Archives: Security

OpenSSL vulnerability — not a problem for SUSE

Bryan Lunduke

By: Bryan Lunduke

July 9, 2015 11:47 am

Reads:683

Score:5

A new vulnerability in OpenSSL has been discovered — specifically only if you are running OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.  This vulnerability relates to certificate validation, and could allow an attacker to bypass that validation. That’s the bad news. The good news is that no releases of SUSE Linux Enterprise (or openSUSE) are affected by …

+read more

Tags: , ,
Categories: Enterprise Linux, SUSE Linux Enterprise

Of Venoms and Antidotes



By: Olaf Kirch

May 13, 2015 10:49 am

Reads:1,527

Score:5

Today, a new vulnerability was disclosed by the name of VENOM (CVE-2015-3456), already seeing a fair amount of media attention. In order to help you assess the impact of this vulnerability on your systems, we are collecting background information and provide a prelimary risk assessment for our products. What this attack is all about The …

+read more

Tags: , , , , , ,
Categories: Cloud Computing, News, OpenStack, Server, SUSE Cloud, SUSE Linux Enterprise, SUSE Linux Enterprise Server, Technical Solutions, Virtualization

The GHOST Vulnerability : What to know

Bryan Lunduke

By: Bryan Lunduke

January 29, 2015 9:47 pm

Reads:4,296

Score:5

On January 27th, security researchers announced the discovery of a potential security vulnerability that has been nicknamed “GHOST“.  In short, GHOST takes advantage of an earlier version of glibc that could allow an attacker to cause a buffer overflow, allowing the execution of arbitrary code. This vulnerability is not present in SUSE Linux Enterprise Server …

+read more

Tags: , , ,
Categories: Enterprise Linux, SUSE Linux Enterprise, SUSE Linux Enterprise Server

The POODLE weakness in the SSL protocol (CVE-2014-3566)

mge1512

By: mge1512

October 15, 2014 9:17 am

Reads:7,357

Score:Unrated

Your immediate action is required In short: The POODLE attack to the SSL 3.0 protocol, published last night (https://www.openssl.org/~bodo/ssl-poodle.pdf) requires server and desktop administrators and desktop users to carefully review their security protocol settings in packages such as HTTP Servers (such as Apache, Tomcat), SMTP Servers (such as Postfix), IMAP Servers, … as well as …

+read more

Tags: , , , , ,
Categories: Enterprise Linux, Expert Views, openSUSE, SUSE Linux Enterprise, SUSE Linux Enterprise Desktop, SUSE Linux Enterprise Server, Technical Solutions

ShellShock, SUSE and You

Bryan Lunduke

By: Bryan Lunduke

September 29, 2014 10:51 am

Reads:1,610

Score:1

This last week, a security vulnerability in the Bash shell — known as the “Bash Bug” or “ShellShock” — was reported.  This vulnerability could allow for executing code on a remote machine and, as such, fixing this security issue was a top priority. Luckily, patches to resolve this vulnerability were created, tested and made available …

+read more

Tags: , , ,
Categories: Expert Views, SUSE Linux Enterprise, SUSE Linux Enterprise Server, Technical Solutions

Introducing the SUSE Linux Enterprise 11 Security Module

mge1512

By: mge1512

August 22, 2014 2:47 pm

Reads:5,515

Score:5

More on TLS and SSL SUSE has released the “SUSE Linux Enterprise 11 Security Module”, providing enhancements to SUSE Linux Enterprise 11 SP3, which allow customers and partners to build TLS 1.2 compliant infrastructures beyond the https protocol. Looking back … As discussed in my former blog about TLS 1.2, we do not provide OpenSSL …

+read more

Tags: ,
Categories: Announcements, Enterprise Linux, Server, SUSE Linux Enterprise, SUSE Linux Enterprise Server, SUSE Linux Enterprise Server for SAP Applications, SUSE Linux Enterprise Server for System z, Technical Solutions

I know I sound like an infomercial…



By: davidbyte

May 19, 2014 7:28 am

Reads:872

Score:5

Working with OEMs and IHV partners, I get a lot of opportunities to share our unique story.  One of the most exciting parts of our story is around what we do to enable rapid development and deployment of partner solutions.  As we all know, time to market is a key factor in the successful launch …

+read more

Tags: , , , , , , ,
Categories: Alliance Partners, Appliances, Cloud Computing, Enterprise Linux, Integrated Systems, Server, SLES on Azure, SUSE Cloud, SUSE in the Cloud, SUSE Linux Enterprise, SUSE Linux Enterprise Server, SUSE Studio, Technical Solutions, Virtualization

ClamSAP – SUSE Linux Enterprise Server Integrates Virus Protection for SAP

Peter Schinagl

By: Peter Schinagl

March 24, 2014 11:15 am

Reads:2,470

Score:Unrated

Daily press reports show that increased networking and digitalization of the business world are subjecting companies’ IT systems to ever more serious security risks. The latest Cybercrime study undertaken by PwC – the largest of its kind – comes to the conclusion that the number of global security incidents has risen by 25% over the …

+read more

Tags: , , , ,
Categories: Alliance Partners, Enterprise Linux, Expert Views, SUSE Linux Enterprise, SUSE Linux Enterprise Server, SUSE Linux Enterprise Server for SAP Applications, Technical Solutions

SUSE Linux Gives SAP HANA® Wings

Naji Almahmoud

By: Naji Almahmoud

January 9, 2014 4:03 pm

Reads:1,961

Score:5

Over 2,100 companies of different sizes and from all sectors of industry already use SAP’s in-memory appliance, HANA – benefitting from quicker transactions, analysis, planning, as well as forecast and trend evaluation. This is backed up by countless practical examples. In its latest reference customer blog, SAP writes that HANA has enabled the Mercedes subsidiary, AMG, …

+read more

Tags: , , , , , , , , , , , , , , , , , ,
Categories: Alliance Partners, Appliances, Cloud Computing, Enterprise Linux, Expert Views, Server, SUSE Cloud, SUSE Linux Enterprise, SUSE Linux Enterprise High Availability Extension, SUSE Linux Enterprise Server for SAP Applications, SUSE Manager, Virtualization

TLS 1.2

mge1512

By: mge1512

December 3, 2013 12:44 pm

Reads:7,973

Score:5

Summary SUSE has just released a new Apache webserver module, which supports the “Transport Layer Security” (TLS 1.2) standard for HTTPS, the primary use case of the TLS cryptographic protocol. Details Background Governmental agencies around the world, such as the US American NIST (NIST SP 800-52 Rev.1) and the German BSI (BSI TR-02102-2) have recently …

+read more

Tags: ,
Categories: Announcements, Enterprise Linux, Expert Views, Server, SUSE Linux Enterprise, SUSE Linux Enterprise Server, Technical Solutions

RSS