Practical Technology

Wikipedia states that Log4Shell was a zero-day vulnerability in Log4j, the popular Apache logging program. The key word is “was.” Log4Shell, even though there have been patches for it since Log4j2 2.17.1 was released in February, is still alive, well…Read More

Your first question when you read that headline was probably my first question. What is “Out-of-Band” security? Usually, I consider it to be an emergency security patch for a zero-day disaster. For example, when Microsoft steps on its foot and issues…Read More

Software Bill of Materials (SBOM)s aren’t optional anymore. If we really want the applications we’re running in containers to be secure, we must know what’s what within them. To make that easier, Codenotary, a leading software supply chain security…Read More

We can all agree today that we really need to know what’s what with your software supply chain. If you don’t know why I recommend you to look up the SolarWinds security fiasco and the ongoing Log4Shell dumpster fire. But, what’s in a good, secure…Read More

For over three decades, Linux has been written in the C programming language. Indeed, Linux is C’s most outstanding accomplishment. But the last few years have seen a growing momentum to make the Rust programming language Linux’s second Linux…Read More

The Linux Foundation finds open source jobs are growing ever more popular. Boomerang employees could be your best bet for fighting the talent shortage Read now The tech unemployment rate reached 2.1% in May. That was a slight drop from April, but…Read More