Practical Technology

A new class of software supply chain vulnerability in GitHub Actions and Rust leverages artifact poisoning to attack the underlying software development pipelines. People are way too inclined to believe that just because some program, language,…Read More

At the Open Source in Finance Forum (OSFF) in New York City, the Fintech Open Source Foundation (FINOS) Dec. 8 announced the results of its 2022 State of Open Source in Financial Services Survey. The results were — to no one’s surprise — that…Read More

Opinion Linus Torvalds is happy to tell you that Linux release numbers aren’t a big deal. As the Linux supremo said of the 6.0 release: “Despite the major number change, there’s nothing fundamentally different about this release – I’ve long eschewed…Read More

It has been about a year since the security hole at the heart of the open source Java logging library Apache Log4j was revealed. The resulting zero-day vulnerability, CVE-2021-44228, aka Log4Shell, is still with us today. That’s crazy! But it’s true.…Read More

Most every organization has been thrust into the future of work. What will determine failure or success in this brave new world? Read now One half of office staff either work in a remote or hybrid capacity. And many of you may have turned to…Read More

Lately, I’ve noticed a lot of confusion about Red Hat’s Red Hat Enterprise Linux (RHEL) and related distros, such as AlmaLinux OS, Oracle Linux, and Rocky Linux. In addition, there are Red Hat’s own RHEL variants, CentOS Stream and Fedora. Mea culpa.…Read More