Posts tagged 'security'

Meltdown and Spectre patches show negligible impac...

As promised in my  initial blog post on this matter, Apache Ignite community applied security patches against the notorious Meltdown Spectre vulnerabilities and completed performance testing of general operations and workloads that are typical for Ignite deployments. The security patches were applied only for  CVE-2017-5754  (Meltdown) and ... [Read more...]

Protecting Apache Ignite from 'Meltdown' a...

The world was rocked after the recent disclosure of the Meltdown and Spectre vulnerabilities that literally affect almost all software ever developed. Both issues are related to the way all modern CPUs are designed and this is why they have opened unprecedented security breaches -- making the software, including Apache Ignite, vulnerable to... [Read more...]

The case of the different jsch 0.1.54 binaries

As part of the Apache NetBeans IP clearance we are combing through all the code and dependencies. One interesting thing we bumped into was that the jsch 0.1.54 binary JAR we are using has a different hash (and size) than the binary JAR from Maven Central. The old hash is 0D7D8ABA0D11E8CD2F775F47CD3A6CFBF2837DA4, the new one is... [Read more...]

MEDIA ALERT: The Apache Software Foundation Confir...

Who: Apache® Struts™ is a popular Open Source framework for creating enterprise-grade Java Web applications. Apache Struts powers front- and back-end applications and Internet of Things (IoT) devices for many of the world's most visible financial institutions, government organizations, technology service providers, telecommunications agencies, and... [Read more...]

Apache Struts Statement on Equifax Security Breach

UPDATE:  MEDIA ALERT: The Apache Software Foundation Confirms Equifax Data Breach Due to Failure to Install Patches Provided for Apache® Struts™ Exploit The Apache Struts Project Management Committee (PMC) would like to comment on the Equifax security breach, its relation to the Apache Struts Web Framework and associated media coverage. ... [Read more...]

Encrypted Provenance Repositories in Apache NiFi

Encrypted Provenance Repositories in Apache NiFi Andy LoPresto -  @yolopey There has been a surprising level of Twitter demand for more security-focused NiFi blogs. I’ll try to address this underserved market with a post about a new feature in Apache NiFi 1.2.0 – encrypted provenance repositories ( NIFI-3388 ). As... [Read more...]

Search blogs.apache.org

Today's active blogs

Popular blog tags

Related sites

Navigation