Linux Top 3: Tails 1.5, Kali Linux 2.0 and LibreOffice 5
A big week for Linux security distributions…
1) Kali Linux 2.0
Kali, formerly known as BackTrack Linux, has long been one of the most popular security focused Linux distributions. Kali Linux is Debian based and now with Kali LInux 2.0 it's moving to Debian Jessie as a base for a rolling distribution.
According to the Kali Linux 2.0 release notes:
What this means is that we are pulling our packages continuously from Debian Testing (after making sure that all packages are installable) – essentially upgrading the Kali core system, while allowing us to take advantage of newer Debian packages as they roll out. This move is where our choice in Debian as a base system really pays off – we get to enjoy the stability of Debian, while still remaining on the cutting edge.
While there are lots of new tools and updating mechanisms in Kali, there is one key tool that is being removed- the Metasploit community/pro package.
In addition, the Rapid7 team no longer maintains the Metasploit package in Kali, which has brought with it some substantial changes – we’ve moved to a “native” setup, where rather than bundling all the required software needed to run Metasploit in one big package, we use native dependencies within Kali to support the metasploit-framework package. This results in a faster, smoother work experience and easier integration with Metasploit dependencies.
2) Tails 1.5
Tails, The Amnesic Incognito Live System, preferred by NSA whistleblower Ed Snowden is getting an update to version 1.5 this week.
The biggest new feature - is actually not really a feature - but a really good best practice default configuration:
Disable access to the local network in the Tor Browser. You should now use the Unsafe Browser to access the local network.
Beyond that there is a long list of security updates from the various projects that make up TAILS including:
Linux: Debian Security Advisory 3313, CVE-2015-3290, CVE-2015-3291, CVE-2015-4167, CVE-2015-5157, CVE-2015-5364, CVE-2015-5366, Debian Security Advisory 3329, CVE-2015-1333, CVE-2015-3212, CVE-2015-4692, CVE-2015-4700, CVE-2015-5364, CVE-2015-5366, CVE-2015-5697, CVE-2015-5706, CVE-2015-5707 ghostscript: Debian Security Advisory 3326 CVE-2015-3228 bind9-host: Debian Security Advisory 3319, CVE-2015-5477 Debian Security Advisory 3304, CVE-2015-4620 expat: Debian Security Advisory 3318, CVE-2015-1283 cups-filters: Debian Security Advisory 3303, CVE-2015-3258, CVE-2015-3279 icu: Debian Security Advisory 3323, CVE-2014-6585, CVE-2014-8146, CVE-2014-8147, CVE-2015-4760 wmf: Debian Security Advisory 3302, CVE-2015-0848, CVE-2015-4588, CVE-2015-4695, CVE-2015-4696 openjdk-7: Debian Security Advisory 3316, CVE-2014-8873, CVE-2015-0460, CVE-2015-0469, CVE-2015-0470, CVE-2015-0477, CVE-2015-0478, CVE-2015-0480, CVE-2015-0488, CVE-2015-2590, CVE-2015-2601, CVE-2015-2613, CVE-2015-2621, CVE-2015-2625, CVE-2015-2628, CVE-2015-2632, CVE-2015-2808, CVE-2015-4000, CVE-2015-4731, CVE-2015-4732, CVE-2015-4733, CVE-2015-4748, CVE-2015-4749, CVE-2015-4760
3) LibreOffice 5.0
While not a Linux distribution - expect to see every major Linux distribution pick up the new LibreOffice 5.0 suite in the coming weeks. LibreOffice 5.0 is loaded with new features detailed in the expansive Release notes.
Sean Michael Kerner is a senior editor at LinuxPlanet and InternetNews.com. Follow him on Twitter @TechJournalist