LinuxSecurity.com: The bottom line is this - while this cookie option flag does absolutely nothing to prevent XSS attacks, it does significanly help to prevent the #1 XSS attack goal which is stealing SessionIDs. While HTTPOnly is not a "silver

LinuxSecurity.com: The security issue is caused due to an infinite loop within the "protocol_client_msg()" function in vnc.c when processing certain "SetEncodings" messages. This can be exploited to cause a high CPU load by sending specially crafted messages to a vulnerable

LinuxSecurity.com: smbd in Samba 3.0.29 through 3.2.4 might allow remote attackers to read arbitrary memory and cause a denial of service via crafted (1) trans, (2) trans2, and (3) nttrans requests, related to a "cut&paste error" that causes an improper

LinuxSecurity.com: New seamonkey packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix security issues.

LinuxSecurity.com: Several remote vulnerabilities have been discovered in phpPgAdmin, a tool to administrate PostgreSQL database over the web. The Common Vulnerabilities and Exposures project identifies the following problems: Cross-site scripting vulnerability allows remote attackers to inject arbitrary web script or

The VAR Guy: "Apparently, Psion Teklogix holds a trademark on the netbook term and is sending cease and desist letters to some folks."

LinuxHaxor: "Almost every year end, most blogs - magazines - publications and so called "Linux gurus" makes mostly positive predictions about the future of Linux and it's market share. Following this tradition, it's only fair that I too share with

The Linux and Unix Menagerie: "Todays Unix and Linux humour find brings back a lot of memories from the dotcom days for me. Humungous Stock Option incentives, constant excitement about a possible IPO (Coupled with constant worry about getting laid

Phoronix: "The Linux 2.6.28 kernel was released this past week in time for the holidays. This quarterly update to the Linux kernel brought the stabilization of the EXT4 file-system, the Graphics Execution Manager, a host of new drivers, and a

pleia2's blog: "I've wanted a pink laptop for ages, this Christmas a few of my friends got together and pitched in to buy me the pink Dell Mini9 I'd been drooling over for months. Wow! Thanks again guys, you rock."

Adam's Tech Talk: "Over the past week I've made a couple of hardware improvements, as well as building the majority of the software library, a TCP server and making a good start on a client."

WineHQ: "What works:Literally everything. The game runs very fast with a slight fps downgrade from Windows, however configurable in-game options can completely rectify this issue"

Blog of Helios: "In 2008, it happened on more than one occasion. Three times actually. We had to retrieve some of the computers we donated from pawn shops. Lowlife live-ins or other ner-do wells sometimes find an opportunity to score

EeePc: "The Acer Aspire One netbook comes with the Linplus (customized Linux) Operating System pre-installed, which isn't that good. Linux4one - a modified Ubuntu - offers a good alternative for Linplus."

Phoronix: "Subsequent to the introduction of the Graphics Execution Manager earlier this year, Intel had introduced a new acceleration architecture. UXA, or the UMA Acceleration Architecture, was developed as a temporary solution based upon the EXA architecture but with support

Linux Photography: "I decided he was the man and bugged him for an interview. So here is one of the core contributors to GIMP telling us about the current state of affairs, helping us to understand what is going on

The VAR Guy: "The VAR Guy often crows about his successful predictions. But some of his blog posts -- including a few about emerging open source solutions like Google Android and Ubuntu Server Edition -- missed the mark badly in

Cyber Cynic: "Our intrepid Linux fan tries to record 3 different distros for a video -- and finds himself hitting some hard walls."

LinuxToday Blog: "I took the plunge and decided to upgrade my two Gutsy boxes to Hardy. These are real working PCs, not experimental test boxes, so I was hoping for a straightforward dist-upgrade that preserved all of my settings and