The Tails project announced the release of version 2.12 of the operating system which focuses on "privacy and anonymity."
The new version includes Gnome Sound Recorder, removes I2P, runs on version 4.9.13 of the Linux kernel, and as per usual remedies "numerous security holes" in the previous release. Distro Watch has additional coverage.
Related story:
TAILS 2.11: The Last Release to Support the I2P Anonymizing Network
(Score: 2) by butthurt on Friday April 21 2017, @08:55PM (1 child)
> They absolutely refused to comment on either issue, do you see?
Thank you for the links. In the mailing list discussion I see replies from two writers, "intrigeri" and "ForgottenBeast" who have addresses at boum.org and riseup.net. I would assume that those are members of the project (because the project's Web sites are on those hosts).
https://mailman.boum.org/pipermail/tails-support/2016-March/000347.html [boum.org]
https://mailman.boum.org/pipermail/tails-support/2016-March/000361.html [boum.org]
https://mailman.boum.org/pipermail/tails-support/2016-March/000372.html [boum.org]
https://mailman.boum.org/pipermail/tails-support/2016-March/000380.html [boum.org]
(Score: 2) by melikamp on Saturday April 22 2017, @02:19AM
I don't know whether ForgottenBeast is affiliated with Tails, but his answer does not address my question. I asked them for an estimate of the amount of malware they distribute, and he told me that an actively and massively exploited backdoor would have probably been detected fast. I tend to agree, but it does nothing to answer my question.
With his last post intrigeri explicitly refused to issue any comment whatsoever.
It's an implicit wontfix, or so it seems to me. I would even say, they actually seem to believe the risk is zero, and there is no malware or (reported to law enforcement) zero-days in those blobs, but for some reason they also refuse to state that explicitly :)