Featured Linux Articles

Need an in-depth introduction to a new security topic? Our features articles will bring up up-to-date on everything from buffer overflows to SE Linux policy development.

Examining Open-Source Security: Benefits and Risks for the Future

Open-source security sits right in the middle of how we build software now. Most teams grab code from public repos, plug it in, and move fast. That’s fine until something deep in the stack breaks or turns out to be risky. Transparency helps, but that...
Nov 03, 2025
  4419

Linux: Tee.Fail Moderate TEE Side-Channel Attack for 2024-001

The tee.fail attack targets how Linux handles trusted e...
Oct 29, 2025
  1116
2.Motherboard Esm H115

The Linux Command Line: Bridging Security Awareness for Sysadmins

I’ve been around Linux long enough to stop expecting mu...
Oct 28, 2025
  693
8.Locks HexConnections CodeGlobe Esm H115

Discover LinuxSecurity Features

Examining Open-Source Security: Benefits and Risks for the Future

Examining Open-Source Security: Benefits and Risks for the Future

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Open-source security sits right in the middle of how we build software now. Most teams grab code from public repos, plug it in, and move fast. That’s fine until something deep in the stack breaks or turns out to be risky. Transparency helps, but that value depends on the people behind it.

Linux: Tee.Fail Moderate TEE Side-Channel Attack for 2024-001

Linux: Tee.Fail Moderate TEE Side-Channel Attack for 2024-001

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The tee.fail attack targets how Linux handles trusted execution environments. Think of it as a way to peek inside hardware-backed enclaves that should be locked tight. The attack plays with timing and cache behavior to pull data from those protected spaces, and researchers proved it works without needing full kernel access. That’s what makes it unsettling — it sidesteps the layers we usually rely on to keep sensitive code and keys safe.

Contribute to LinuxSecurity

Don’t sit on the sidelines of history. Join the Linux Security community
and write real news & articles about Linux that matters the most.

Contribute Now
PAM: Important Risks in Linux Authentication Trust Chain

PAM: Important Risks in Linux Authentication Trust Chain

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

PAM sits at the center of Linux authentication. Every login, SSH session, and privilege escalation request runs through it. It checks credentials, enforces policy, and chains together modules that decide who can access the system. Most teams rely on it daily without ever tracing what actually happens inside.

What is an Out-of-Bounds Write Linux Security Vulnerability?

What is an Out-of-Bounds Write Linux Security Vulnerability?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It starts as an innocuous bug. A developer miscalculates an offset, a boundary check is missing, a buffer is too small—just a simple oversight in code. But in the world of software security, even the smallest mistakes can rip holes in your defenses. Enter the out-of-bounds write Linux security vulnerability: a coding flaw with the potential to destabilize systems, corrupt data, or worse, create a direct path for attackers to execute malicious code. If you’re managing Linux systems—whether in production, testing, or anywhere in between—this is the kind of vulnerability you don’t ignore.

Linux eBPF Security Advisory Addresses Kernel Visibility Concerns

Linux eBPF Security Advisory Addresses Kernel Visibility Concerns

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The Extended Berkeley Packet Filter (eBPF) was created to make Linux more observable and secure. It extends kernel functionality without requiring new modules or recompilation, enabling precise monitoring, tracing, and policy enforcement at runtime. For defenders, it promised transparency. For attackers, it opened a new space to hide.

Why Software Supply Chain Security Matters in Linux Systems

Why Software Supply Chain Security Matters in Linux Systems

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

For Linux users, software supply chain security means protecting the entire path from source to install. It covers who authors and reviews the code, how it is built, how artifacts and metadata are signed, where they are mirrored, and which keys the client trusts. In short: provenance, freshness, and scoped trust across the package pipeline.

Supply Chain Attacks Are Spreading: NPM, PyPI, and Docker Hub All Hit in 2025

Supply Chain Attacks Are Spreading: NPM, PyPI, and Docker Hub All Hit in 2025

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

When npm was hit in September, it was tempting to see it as an isolated supply chain attack. A maintainer fell for a phish, popular packages were swapped out, and downstream projects scrambled. But npm wasn’t the only ecosystem in the spotlight this year. PyPI and Docker Hub both faced their own compromises in 2025, and the overlaps are impossible to ignore.

Disk Encryption: An Authoritative Guide for Linux Users

Disk Encryption: An Authoritative Guide for Linux Users

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A lost Linux laptop or a recycled server drive can leak everything on it — from system files to sensitive data. Disk encryption changes that.  It locks the entire drive, and nothing can be read until the right key is supplied. In this guide, we’ll look at what disk encryption does, how it works on Linux, where it helps most, and the options that are still worth using in 2025.

What Is a Container Escape Vulnerability?

What Is a Container Escape Vulnerability?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

For Linux admins and security professionals, containers are often the backbone of modern infrastructure. They’re lightweight, portable, and isolate applications in predictable, well-defined environments. But here's the flipside: containers aren’t impermeable fortresses. They have their flaws, and one of the most critical is the container escape vulnerability—a type of weakness that lets an attacker break out of the container’s restricted environment and gain unauthorized access to the host system.

Linux Rootkits: Detecting, Preventing, and Surviving an Attack

Linux Rootkits: Detecting, Preventing, and Surviving an Attack

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Let’s talk about a threat that’s smart, sneaky, and dangerous to your Linux systems: rootkits. If you’ve ever heard the term tossed around and wondered what a rootkit is and why it’s such a headache, you’re in the right place. These are not your usual malware nuisances—they’re tools that let attackers dig into a system, stay hidden for the long game, and potentially wreak havoc without leaving many breadcrumbs. For Linux admins and infosec pros, rootkits aren’t just pests; they’re an adversary that requires awareness, vigilance, and a specific approach to deal with.

What Is A Virtual Private Network (VPN)?

What Is A Virtual Private Network (VPN)?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

If you're managing a Linux environment, on-prem or in the cloud, chances are you've already tangled with questions of network security: firewalls, SSH hardening, package integrity checks — all the usual suspects. But Virtual Private Networks (VPNs)?

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved