So this week this entry isn't syndicated in Fedora Weekly News. I was very busy this weekend working on my yard and missed the deadline. If any of you ever think that planting ivy on the side of you house is a good idea, don't do it. It's horrible to remove.
OpenSSL Security Advisory
A very scary OpenSSL flaw went public last week: http://www.openssl.org/news/secadv_20071012.txt
On the surface this looks like a horrible flaw, which it is. The redeeming factor is that very little uses DTLS in OpenSSL. After an audit of Red Hat Enterprise Linux, we determined that nothing is shipped that actually uses DTLS.
Air Force to get ‘cyber sidearms’ http://www.fcw.com/online/news/150483-1.html
This is a rather odd idea the US Air Force seems to be planning to use. It seems the idea is that if a user thinks their computer has been compromised, they can somehow alert someone who can verify this. I'm going to guess this isn't going to work. It can probably be suggested that most of the machines in the 50 million computers that are part of the Storm Botnet do not have users that know they're a part of the network. No doubt some portion of Air Force personnel will be able to tell if their computer is hacked, but most probably can't.