University of Minnesota attempted our security!

LightDestory · Posted by: LightDestory - 04-26-2021, 12:10 PM - Forum: Software - Replies (10)

I know that this news is a bit old, 4 days ago, but I touches me at the core and I wanted to write about it.
If you didn't read it, don't worry I will provide a "offensive-less" summary of what the researchers of Minnesota tried to do.

On 21 April 2021 an email from Greg Kroah-Hartman announced his decision to ban University of Minnesota from the Linux development contributors and the revert their commits (= nullify all their code changes). The researchers tried to intentionally insert bugs in an unauthorised Penetration test to perform an experiement described on one of their scientific article... THEY COULD HAVE AFFECTED YOUR SECURITY.

These ***** researcher just used the trust of the open source community to just to perform a dangerous experiment to boost their own paper-career. It is disgusting.
We should thanks the numerous reviewers who protect us by inspecting the code.

I will stop here my personal summary because I could use a offensive tone, so I would just append the "polite" email from Greg Kroah-Hartman:

Code:
I have been meaning to do this for a while, but recent events have

finally forced me to do so.

Commits from @umn.edu addresses have been found to be submitted in "bad

faith" to try to test the kernel community's ability to review "known

malicious" changes.  The result of these submissions can be found in a

paper published at the 42nd IEEE Symposium on Security and Privacy

entitled, "Open Source Insecurity: Stealthily Introducing

Vulnerabilities via Hypocrite Commits" written by Qiushi Wu (University

of Minnesota) and Kangjie Lu (University of Minnesota).

Because of this, all submissions from this group must be reverted from

the kernel tree and will need to be re-reviewed again to determine if

they actually are a valid fix.  Until that work is complete, remove this

change to ensure that no problems are being introduced into the

codebase.

This patchset has the "easy" reverts, there are 68 remaining ones that

need to be manually reviewed.  Some of them are not able to be reverted

as they already have been reverted, or fixed up with follow-on patches

as they were determined to be invalid.  Proof that these submissions

were almost universally wrong.

I will be working with some other kernel developers to determine if any

of these reverts were actually valid changes, were actually valid, and

if so, will resubmit them properly later.  For now, it's better to be

safe.

I'll take this through my tree, so no need for any maintainer to worry

about this, but they should be aware that future submissions from anyone

with a umn.edu address should be by default-rejected unless otherwise

determined to actually be a valid fix (i.e. they provide proof and you

can verify it, but really, why waste your time doing that extra work?)

thanks,

greg k-h

What do you think about it?
The open source community is always friendly and open minded to new and senior contributor, but these reseachers just decided on their own to do something so dangerous that could have been affected our daily usage devices.

xdude · Posted by: xdude - 04-24-2021, 01:05 PM - Forum: Web Development - Replies (6)

I need to change URL of a forum from www. Website to www. website/forum/. I think I should do it by changing 'bburl' file /inc/settings.php. But I don't remember if there anything else. Maybe something in Admin control panel too?

hamed · Posted by: hamed - 04-24-2021, 12:44 PM - Forum: VPS Protection - Replies (9)

Hi friends, I had a few questions.
What is the best VPS Anti attack and Website anti ddos (free) and how can I get it, does it need a visa card or is it completely free?
Please share the sites that offer this package for free. Thank you

fChk

As the title suggest this thread's goal is to track the vaccination status of the Post4VPS community. The poll has 4 exclusive options and you're invited to select the one that applies to you:
> 1- Fully vaccinated (2 shots)
> 2- Vaccinated (1 dose)
> 3- Not vaccinated but willing to get vaxxed and waiting my turn
> 4- Not vaccinated and not intending to get vaxxed!

In case you're vaccinated, can you please specify which vaccine did you get in your post.

Thanks!

For me, I'm fully vaccinated with the Oxford/AstraZeneca COVID-19 vaccine.

NB : The poll is public(/not anonymous.)

Pacific Spirit

Instafree is a free hosting provider, but with very strict rules that they pay attention to and in my view I think the administrator is a big racist, he bans approximately 47 countries worldwide and he also slowly adds more, I think if you want a good hosting you should give everyone access instead of banning 47 countries, I honestly think they are a bunch of racists! As if all foreigners abuse everything, sure, in every country there are people who like to abuse everything, so I had a member of Post4VPS who did that to me and had broken the rules and I got a report from RSA about his domain, later he wanted to use a reseller and I rocked that because he also abused the place last time but that makes no reason to ban the whole country, because the administrator Bryan claims that in America there are no abusers on his server, well Bryan is himself as blind and dumb as a baboon's buttocks, in America you have a lot of abusers and he won't admit that, but anyway. Currently they are going to replace cPanel with DirectAdmin but when is unknown, but watch out if you use them, if you want a reseller and you are in their list you could buy it from me, but here are the specifications of the server.

Disadvanced:
Banned Countries
Free Domains are not allowed + WHOIS must be not hidden (BROKEN FOR PRIVACY)
Your website must be in english for reseller must all sub-user website also in english

Banned Countries:
AFGANISTAN AFRICA - CONTINENT, ALBANIA, ALGERIA, ARGENTINA
BANGLADESH, BELARUS, BRAZIL
CHINA, COLOMBIA
EGYPT
INDIA, INDONESIA, IRAN, IRAQ, ITALY, IVORY COAST
KOSOVO, KUWAIT
LIBYA
MALAYSIA, MOROCCO,MYANMAR
NIGERIA
OMAN
PAKISTAN, PHILIPPINES, POLAND, PORTUGAL
ROMANIA, RUSSIA
SAUDI ARABIA, SERBIA, SINGAPORE, SOMALIA, SPAIN, SRI LANKA, SUDAN, SYRIA
TAIWAN ,THAILAND, TUNISIA, TURKEY
UKRAINE
VENEZUELA, VIETNAM
YEMEN

SHARED:
10 GB SSD Disk Space
100 GB Bandwidth
5 Databases
cPanel -> Becomes DirectAdmin
Softaculous
Litespeed
Daily R1Soft Backups
DDoS Protection

RESELLER:
10 GB SSD Disk Space
100 GB Bandwidth
5 Resold Accounts + Your Own
cPanel / WHM -> DirectAdmin
Softaculous
Litespeed
Daily R1Soft Backups
DDoS Protection

VPS:
5 GB SSD Disk Space
50 GB Bandwidth
256MB RAM
256MB vSWAP
1 CPU Core
1 IPv6 Address
DDoS Protection

LINKS:
https://instafree.com

NOTE! I DO NOT OWN THEM AND WE ARE TOTALLY NOT RELATED WITH INSTAFREE AT ANY WAY

debjit · Posted by: debjit - 04-23-2021, 06:16 AM - Forum: Web Development - Replies (5)

Hello, do you use a paid one or a free code editor? I don't use freemium one. I use sublime text it's free to use for life, but I am thinking to give VS Code a try.
What do you use?
VS Code, sublime, atom, brackets, or any others? Share with me.

debjit · Posted by: debjit - 04-19-2021, 03:26 PM - Forum: Web Development - Replies (14)

Hello,
I am building another app, a free exam-taking app. This will be free for all. Anyone can install it to Heroku and vercel for free. The SASS version will have a free plan but will have more feature and options. I will be opensource this app soon no date is yet fixed. Please if you wanted to test here is the URL.

Vercel App For OpenExam

sAmI · Posted by: sAmI - 04-16-2021, 06:34 PM - Forum: General - Replies (12)

Hello, I hope everyone is doing good.
So as far as everyone must have read the title i was just trying to get a little bit of idea of in how much time people often complete their posts and how they manage it up. I have seen people here doing it on the last day some of them and one of them made a record even. I have seen people it doing it for like the community not for the VPS specifically and they usually have a high number of posts at the end of the month.

Another question is that, People here are also having Jobs , Studies etc etc. How do you guys make time for posting and how you manage it up in a month?

So, I have college and i'm not really a good student though and i play games semi-professionally so basically i divide my posts into 4 quarters like at the start of i try to do 5 posts each 5 days.
I have been less active for 2 months now haven't been doing this but yes i use to achieve my post that way and it helped me balance the loa!

debjit · Posted by: debjit - 04-16-2021, 07:17 AM - Forum: Web Development - Replies (23)

Hello,
This is my first public open-source free to use app. It is made using laravel. The blood donation crisis is big and with time it's getting worse. This app will help groups or manager to solve and take requisition and share them publicly over social media. For the full feature please visit the website. Your opinion is very valuable please let me know how do I improve the code or have some great idea.

I am currently making a tutorial for this app, how a user can deploy it to Heroku and vercel, as they are a free hosting provider and stable ones.

Thank you.

GitHub repo for Blood Donation Diary

hamed · Posted by: hamed - 04-14-2021, 07:07 AM - Forum: General - Replies (12)

Hello . I burned my computer hard drive a few days ago and Windows shut down and never came back up. Now can I recover and restore hard drive data?

This is a photo of the hard drive and its specifications. And my second question is what hard drive can I get for the game and how much does it cost

photo of hard . [Image: 161838384857881.jpg]

Login

Sponsors: VirMach - Host4Fun - CubeData - Evolution-Host - HostDare - Hyper Expert - Shadow Hosting - Bladenode - Hostlease - RackNerd - ReadyDedis - Limitless Hosting