133: Linux Action News
24 November 2019
Google, Mozilla, and GitLab make serious upgrades to their bug bounty programs, insights into Debian's renewed systemd debate, and how Microsoft and IBM are working together to fight patent trolls.
Hosts
Episode Links
- Updates to the Mozilla Web Security Bounty Program — To celebrate the 15 years of the 1.0 release of Firefox, we are making significant enhancements to the web bug bounty program.
- GitLab: We are increasing bounties in our bug bounty program — Since we opened our bug bounty program to the public in December 2018, our community of external security researchers submitted 1,282 reports and we paid out $515,899 in bounties.
- Expanding the Android Security Rewards Program
- Google will pay $1.5 million for the most severe Android exploits
- Google and fwupd sitting in a tree
- [Google To Require “Designed For Chromebook” Devices Support Fwupd Firmware Updates](https://www.phoronix.com/scan.php?page=news_item&px=Google-Require-Chromebook-Fwupd “Google To Require “Designed For Chromebook” Devices Support Fwupd Firmware Updates”)
- Debian init systems - what, another GR ? — Sam Hartman, the Debian Project Leader, has proposed a General Resolution (a plebiscite of the whole project) about init systems. In this posting I am going to try to summarise the situation. This will necessarily be a personal view but I will try to be fair. Also, sorry that it’s so long but there is a lot of ground to cover.
- General Resolution: Init systems and systemd
- Open Invention Network Teams with IBM, Linux Foundation and Microsoft to Further Protect Open Source from Patent Trolls — Open Invention Network announced today it is partnering with IBM, the Linux Foundation and Microsoft to further protect open source software (OSS) from Patent Assertion Entities (PAEs) leveraging low quality patents, also called patent trolls.
- IBM, Microsoft and Linux Foundation link arms to fight patent trolls with ‘multimillion’ scheme
- Official Monero website is hacked to deliver currency-stealing malware — GetMonero.org delivers Linux and Windows binaries that steal users’ funds.