Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found -2 articles for you...
161
network securityencryptionfirewallEnhance Privacy And Security With OPNsense DNS Over TLS Setup
OPNsense is an open-source, FreeBSD-based firewall and routing security software that also acts as a DNS resolver for all of your desktops and mobile devices. Learn how to configure the OPNsense DNS resolver to encrypt all DNS queries to protect from eavesdropping and increase your privacy and security online in this tutorial. . All DNS queries routed using plaintext. We either use UDP and TCP protocol 53 in plaintext, and your ISP or an attacker/hacker can monitor transmissions even if you use HTTPS, the DNS queries and answers of the site leaked. Hence we need to encrypt our DNS queries to protect ourselves. DNS over TLS (DoT) is nothing but a security protocol for encrypting DNS traffic using the Transport Layer Security (TLS) protocol. The main objective is to increase your security and privacy. Some benefits of DNS over TLS: Avoid manipulation DNS. Get rid of man-in-the-middle attacks. No more eavesdropping. The link for this article located at DNS Knowledge is no longer available. . Enhance your web safety by configuring OPNsense DNS Over TLS to safeguard your internet privacy and security.. OPNsense Configuration,TLS Encryption,DNS Security,Network Privacy,Firewall Setup. . Brittany Day
Mar 10, 2021
•
How to Secure My Firewall
166
security testingdnscommand lineTesting DNSSEC Using Dig Command Line on Linux and Unix Systems
How do I test and validate DNSSEC using thedig commandline under Linux, macOS, *BSD, and Unix-like systems? Learn how to test and validateDNSSEC using dig command line: . The DNSSEC is an acronym for Domain Name System Security Extensions. It is a suite of Internet Engineering Task Force (IETF) specifications for securing certain kinds of information provided by the Domain Name System (DNS). Dig is a DNS lookup tool to query dns servers for DNS records. For instance, dig can tell you the IP address of the mail server or website using a DNS resolver. One can use DNSSEC to mitigate security risk and helps prevent malicious motions like cache poisoning, pharming, and man-in-the-middle attacks. With DNSSEC, one can verify and authentication of DNS data and DNS integrity. This page explains how to test and validate DNSSEC issues that affect DNS resolution using thedig command. The link for this article located at nixCraft is no longer available. . DNSSEC secures DNS information against attacks using the dig command line. Learn how to test and validate DNSSEC effectively.. validate, dnssec, using, thedig, commandline, under, linux, macos, unix-like. . Brittany Day
Dec 20, 2019
•
How to Learn Tips and Tricks
163
bindconfigurationadministrationBIND V9 Administrator Manual: Security And Troubleshooting Tips
This is the administrators manual for BIND version 9. Includes security considerations, troubleshooting, and more. Great document.. . A comprehensive manual for managing BIND version 9, emphasizing troubleshooting strategies and security practices to optimize DNS configurations and enhance resilience. BIND Configuration,DNS Security,Troubleshooting BIND. . Anthony Pell
Nov 23, 2004
•
How to Secure My Webserver
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More