20141211-2 选题

2025-02-03 23:40:14 +08:00 · 2014-12-11 16:52:08 +08:00 · 2014-12-11 16:52:08 +08:00 · ffafaea7f9
commit ffafaea7f9
parent 073e360542
2 changed files with 127 additions and 0 deletions
--- a/sources/news/20141211
+++ b/sources/news/20141211
@ -0,0 +1,53 @@
+Linux Kernel 3.18 Released, This Is What’s New
+================================================================================
+![](http://www.omgubuntu.co.uk/wp-content/uploads/2011/07/Tux-psd3894.jpg)
+
+TuxlogoA new month means a new stable release of the Linux Kernel and today Linus Torvalds has obliged, [announcing the immediate availability of Linux 3.18][1]. 
+
+Posted on the Linux Kernel Mailing List, Torvalds explains that while a few niggling issues persist in 3.17 for a small number of users, there was ‘**absolutely no point in having everybody else twiddling their thumbs when a couple of people are actively trying to bisect an older issue**’.
+
+### What’s New In Linux 3.18? ###
+
+The Linux 3.18 kernel is amped up with some of the latest improvements in  hardware support, power efficiency, bug fixes and reliability.
+
+As ever, these span the breadth of comprehension, going from bamboozling — e.g., multi buffer operations for cryptographic layers — to the air-punchingly understandable, like support for the Razer Sabertooth gamepad.
+
+We’ve compiling some of the notable changes made in this release below. It’s far, far, far from being exhaustive, and cherry picks the more relatable.
+
+- Nouveau (free Nvidia GPU driver) now supports basic DisplayPort audio
+- Support for the Razer Sabertooth gamepad, maps it as Xbox 360 controller
+- Xilinx USB2 peripherals
+- Touchscreen support for Microchip AR1021 i2c, PenMount 6000 touch
+- Audio codecs:  Cirrus Logic CS35L32, Everest ES8328and Freescale ES8328 
+- Audio support: Generic Freescale sound cards, Analog Devices SSM4567 audio amplifier
+- Various filesystem improvements, including Btrfs and F2FS
+- DCTCP congestion control algorithm now supported
+- JIT compilation of eBPF programs on 64-bit builds
+- “Tinification” patches to help developers compile leaner, smaller kernels
+
+#### Installing Linux 3.18 on Ubuntu ####
+
+Although classed as stable and bringing numerous new changes to the table, don’t feel in a rush to try and upgrade your own OS to it anytime soon. Unless you’re adept at handling the sort of monitor-smashing, CPU-charring, rage-inducing issues that arise from swapping out the engine in your OS motor, you shouldn’t.
+
+If you insist, you’ll find source packages available at the kernel.org website.
+
+- [Download the Linux Kernel Source Packages][2]
+
+A mainline kernel archive is maintained by Canonical to provide builds of newer Linux kernels for use by Ubuntu developers. But, and you really should note this, these are not intended for end users, despite what you may read elsewhere. With no guarantee or support, use at your own risk.
+
+- [Visit the Ubuntu Kernel Mainline Archive][3]
+
+--------------------------------------------------------------------------------
+
+via: http://www.omgubuntu.co.uk/2014/12/linux-kernel-3-18-released-whats-new
+
+作者：[Joey-Elijah Sneddon][a]
+译者：[译者ID](https://github.com/译者ID)
+校对：[校对者ID](https://github.com/校对者ID)
+
+本文由 [LCTT](https://github.com/LCTT/TranslateProject) 原创翻译，[Linux中国](http://linux.cn/) 荣誉推出
+
+[a]:https://plus.google.com/117485690627814051450/?rel=author
+[1]:https://lkml.org/lkml/2014/12/7/202
+[2]:https://www.kernel.org/pub/linux/kernel/v3.x/
+[3]:http://kernel.ubuntu.com/~kernel-ppa/mainline/?C=N;O=D
--- a/sources/news/20141211
+++ b/sources/news/20141211
@ -0,0 +1,74 @@
+Yes, This Trojan Infects Linux. No, It’s Not The Tuxpocalypse
+================================================================================
+![Is something watching you?](http://www.omgubuntu.co.uk/wp-content/uploads/2014/12/spyware.jpg)
+
+Is something watching you?
+
+Grab a crate of canned food, start digging a deep underground bunker and prepare to settle into a world that will never be the same again: [a powerful trojan has been uncovered on Linux][1].
+
+Yes, the hitherto impregnable fortress of computing nirvana has been compromised in a way that has left security experts a touch perturbed.
+
+Unplug your PC, disinfect your keyboard and buy a cat (no more YouTube ). The Tuxpocalypse is upon us. We’ve reached the end of days.
+
+Right? RIGHT? Nah, not quite.
+
+### A Terrifying Anomalous Thing! ###
+
+Let me set off by saying that **I am not underplaying the severity of this threat (known by the nickname ‘Turla’)** nor, for the avoidance of doubt, am I suggesting that we as Linux users shouldn’t be concerned by the implications.
+
+The discovery of a silent trojan infecting Linux systems is terrifying. The fact it was tasked with sucking up and sending off all sorts of sensitive information is horrific. And to learn it’s been doing this for at least four years and doesn’t require root privileges? My seat is wet. I’m sorry.
+
+But — and along with hyphens and typos, there’s always a ‘but’ on this site — the panic currently sweeping desktop Linux fans, Mexican wave style, is a little out of context.
+
+Vulnerability may be a new feeling for some of us, yet let’s keep it in check: Linux remains an inherently secure operating system for desktop users. One clever workaround does not negate that and shouldn’t send you scurrying offline.
+
+### State Sponsored, Targeting Governments ###
+
+![Is a penguin snake a ‘Penguake’ or a ‘Snaguin’?](http://www.omgubuntu.co.uk/wp-content/uploads/2014/12/penguin-snakle-by-icao-292x300.jpg)
+
+Is a penguin snake a ‘Penguake’ or a ‘Snaguin’?
+
+‘Turla’ is a complex APT (Advanced Persistent Threat) that has (thus far) targeted government, embassy and pharmaceutical companies’ systems for around four years using a method based on [14 year old code, no less][2].
+
+On Windows, where the superhero security researchers at Symantec and Kaspersky Lab first sighted the slimy snake, Turla and components of it were found to have **infected hundreds (100s) of PCs across 45 countries**, many through unpatched zero-day exploits.
+
+*Nice one Microsoft.* 
+
+Further diligence by Kaspersky Lab has now uncovered that parts of the same trojan have also been active on Linux for some time.
+
+The Trojan doesn’t require elevated privileges and can “intercept incoming packets and run incoming commands on the system”, but it’s not yet clear how deep its tentacles reach or how many Linux systems are infected, nor is the full extent of its capabilities known.
+
+“Turla” (and its children) are presumed to be nation-state sponsored due to its choice of targets. US and UK readers shouldn’t assume it’s “*them*“, either. Our own governments are just as happy to play in the mud, too.
+
+#### Perspective and Responsibility ####
+
+As terrible a breach as this discovery is emotionally, technically and ethically it remains far, far, far away from being an indication that we’re entering a new “free for all” era of viruses and malware aimed at the desktop.
+
+**Turla is not a user-focused “i wantZ ur CredIt carD” virus** bundled inside a faux software download. It’s a complex, finessed and adaptable threat with specific targets in mind (ergo grander ambitions than collecting a bunch of fruity tube dot com passwords, sorry ego!).
+
+Kaspersky Lab explains:
+
+> “The Linux Turla module is a C/C++ executable statically linked against multiple libraries, greatly increasing its file size. It was stripped of symbol information, more likely intended to increase analysis effort than to decrease file size. Its functionality includes hidden network communications, arbitrary remote command execution, and remote management. Much of its code is based on public sources.”
+
+Regardless of impact or infection rate its precedes will still raise big, big questions that clever, clever people will now spend time addressing, analysing and (importantly) solving.
+
+IANACSE (I am not a computer security expert) but IAFOA (I am a fan of acronyms), and AFAICT (as far as I can tell) this news should be viewed as as a cautionary PSA or FYI than the kind of OMGGTFO that some sites are painting it as.
+
+Until more details are known none of us should panic. Let’s continue to practice safe computing. Avoid downloading/running scripts, apps, or binaries from untrusted sites or PPAs, and don’t venture into dodgy dark parts of the web.
+
+If you remain super concerned you can check out the [Kaspersky blog][1] for details on how to check that you’re not infected.
+
+--------------------------------------------------------------------------------
+
+via: http://www.omgubuntu.co.uk/2014/12/government-spying-turla-linux-trojan-found
+
+作者：[Joey-Elijah Sneddon][a]
+译者：[译者ID](https://github.com/译者ID)
+校对：[校对者ID](https://github.com/校对者ID)
+
+本文由 [LCTT](https://github.com/LCTT/TranslateProject) 原创翻译，[Linux中国](http://linux.cn/) 荣誉推出
+
+[a]:https://plus.google.com/117485690627814051450/?rel=author
+[1]:https://securelist.com/blog/research/67962/the-penquin-turla-2/
+[2]:https://twitter.com/joernchen/status/542060412188262400
+[3]:https://securelist.com/blog/research/67962/the-penquin-turla-2/