Slashdot Mirror

← Back to Domains

Domain: bund.de

Stories and comments across the archive that link to bund.de.

Stories · 10

  1. Germany Proposes Router Security Guidelines (zdnet.com)

    Tech · Network · · posted by msmash · from the interesting-moves dept. · 62 comments
    German government would like to regulate what kind of routers are sold and installed across the country. From a report: The German government published at the start of the month an initial draft for rules on securing Small Office and Home Office (SOHO) routers. Published by the German Federal Office for Information Security (BSI), the rules have been put together with input from router vendors, German telecoms, and the German hardware community. Once approved, router manufacturers don't have to abide by these requirements, but if they do, they can use a special sticker on their products showing their compliance. The 22-page document, available in English here, lists tens of recommendations and rules for various router functions and features.

  2. TrueCrypt Safer Than Previously Thought (ec-spride.de)

    It · Encryption · · posted by Soulskill · from the won't-cause-your-toaster-to-explode-after-all dept. · 42 comments
    An anonymous reader writes: Back in September, members of Google's Project Zero team found a pair of flaws in the TrueCrypt disk encryption software that could lead to a system compromise. Their discovery raised concerns that TrueCrypt was unsuitable for use in securing sensitive data. However, the Fraunhofer Institute went ahead with a full audit of TrueCrypt's code, and they found it to be more secure than most people think. They correctly point out that for an attacker to exploit the earlier vulnerabilities (and a couple more vulnerabilities they found themselves), the attacker would already need to have "far-reaching access to the system," with which they could do far worse things than exploit an obscure vulnerability.

    The auditors say, "It does not seem apparent to many people that TrueCrypt is inherently not suitable to protect encrypted data against attackers who can repeatedly access the running system. This is because when a TrueCrypt volume is mounted its data is generally accessible through the file system, and with repeated access one can install key loggers etc. to get hold of the key material in many situations. Only when unmounted, and no key is kept in memory, can a TrueCrypt volume really be secure." For other uses, the software "does what it's designed for," despite its code flaws. Their detailed, 77-page report (PDF) goes into further detail.

  3. Cyberattack On German Steel Factory Causes 'Massive Damage'

    It · Security · · posted by Soulskill · from the social-engineering-is-the-bug-you-can't-fix dept. · 212 comments
    An anonymous reader writes: In a rare case of an online security breach causing real-world destruction, a German steel factory has been severely damaged after its networks were compromised. "The attack used spear phishing and sophisticated social engineering techniques to gain access to the factory's office networks, from which access to production networks was gained. ... After the system was compromised, individual components or even entire systems started to fail frequently. Due to these failures, one of the plant's blast furnaces could not be shut down in a controlled manner, which resulted in 'massive damage to plant,' the BSI said, describing the technical skills of the attacker as 'very advanced.'" The full report (PDF) is available in German.

  4. German Government Advises Public To Stop Using IE

    Tech · Msie · · posted by Soulskill · from the enough-is-enough dept. · 320 comments
    An anonymous reader writes "After McAfee's disclosure of an IE 0-day vulnerability this week that had been used in Operation Aurora, the hack and stealing of data from Google, Adobe and about 3 dozen other major companies, the German government has advised the public to switch to alternative browsers (untranslated statement). Given that the exploit has now been made public and the patch from Microsoft is still nowhere to be seen, how long will it be before other governments follow suit?"

  5. Nanotech Gone Awry?

    · posted by ryuzaki0 · from the always-takes-a-few-problems-to-get-a-closer-look dept. · 173 comments
    westcoaster004 writes "Chemical and Engineering News is reporting what appears to be 'the first recall of a nanotechnology-based product' due to health risks associated with it. The recall of 'Magic Nano' spray, which is for use on glass and ceramic surfaces to make them repel dirt and water, comes after at least 77 people in Germany contacted regional poison control centers after experiencing illness after using the product. The German Federal Institute for Risk Assessment has also issued a warning." Relatedly dolphin558 writes "There is an interesting story in the Washington Post on the unknown dangers facing employees of nanotechnology firms. The jury is still out on whether traditional HAZMAT safeguards are suitable when handling nanomaterials, many of which can be harmful. Research into potential workplace hazards is beginning to ramp up as the industry and government become more aware of this issue."

  6. German Linux Migration White Paper Updated

    Linux · Announcements · · posted by ScuttleMonkey · from the true-path-to-enlightenment dept. · 122 comments
    TheRealDamion writes to let us know that the German Federal Government Co-Ordination and Advisory Agency (KBSt) has released an updated version of their Linux Migration guide whitepaper. This guide, originally released in 2003, is incredibly detailed offering assistance on a wide range of issues that could be faced in a migration from Windows to Linux.

  7. German Linux Migration White Paper Updated

    Linux · Announcements · · posted by ScuttleMonkey · from the true-path-to-enlightenment dept. · 122 comments
    TheRealDamion writes to let us know that the German Federal Government Co-Ordination and Advisory Agency (KBSt) has released an updated version of their Linux Migration guide whitepaper. This guide, originally released in 2003, is incredibly detailed offering assistance on a wide range of issues that could be faced in a migration from Windows to Linux.

  8. University Capitulates, Switches Off Spam Filters

    Yro · Spam · · posted by timothy · from the spammers-should-be-castrated dept. · 470 comments
    Heraklit writes "As reported on German news site Heise, the system administrators of the Technical University of Braunschweig have temporarily given up the fight against spam. Because of the legal obligation to deliver all mail and of the delay time exceeding critical 5 days(!), they decided to switch off all filter mechanisms. Before, the 20 servers dedicated to processing e-mail alone had been breaking down under a load of 100000 unprocessed mail messages, ca. 98% of which had been spam or viruses. ... A similar e-mail jam occurred recently at the IT central of the German Federal Government. Is this the beginning of the end of e-mail?" (The Fish may be useful.)

  9. Germany Publishes Windows to Linux Migration Guide

    Linux · Linuxbusiness · · posted by michael · from the german-efficiency dept. · 221 comments
    Bombcar writes "This Migration Document is also available. It has details on going from WinNT to Linux/FLOSS/Samba et.al, with less detail on RedHat/Ximian/GNOME and more on SuSE/Mandrake/KDE. See Kurt's post to Samba Technical for more details."

  10. German Governmental Agency Says: Use Open Source

    Gnu · · posted by ryuzaki0 · from the gov't-support dept. · 94 comments
    belbo writes "An official team of the German Ministry of the Interior has released a statement which examines the possible use of Open Source software in the German administration. The statement concludes: "Linux and FreeBSD and accompanying Free or commercial software provide a stable, cheap, low-on-resources, safe and sufficiently supported environment even for professional offices." Does this mean I can write my next tax declaration in Vi? ;-) "