Stay Ahead With Linux Security HOWTOs
How to Secure My Network
security advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
How to Secure My Networknetwork monitoring Linux server
network monitoring Linux server When a Linux server initiates an unauthorized outbound connection to an unknown IP address, it rarely triggers an immediate system failure. Instead, the server continues running normally, and the connection is usually only discovered during a routine firewall log review, a DNS audit, or a post-incident investigation. Because there are no obvious system crashes or performance drops, these quiet outbound sessions can easily be overlooked. . However, treating these anomalies lightly is a...
May 27, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found -2 articles for you...
160
data protectionlinux configurationSFTPConfiguring SFTP on Linux for Secure and Efficient File Transfers
FTP (File Transfer Protocol) remains an invaluable component of the business technology landscape for those not quite adept at running an entire build system. While going full cloud may seem appealing, think twice if any files that contain sensitive information need to be uploaded and downloaded through third-party services without your control. . It is crucial to ensure that files are uploaded securely and reliably, and sometimes, that means keeping them within your local area network (LAN). Luckily, as always, Linux has your back. Secure Shell (SSH) makes setting up an FTP server more straightforward than ever. Once set up, files can be moved between servers using Secure FTP for reliable information transmission. SFTP (or Secure File Transfer Protocol) is an alternative to FTP for transferring files, adding a layer of security to the process. Today, I'm sharing an awesome tutorial on how to set up a Secure File Transfer Protocol (SFTP) to move files around your Linux servers (linked at the end of this article. But first, let's examine the security implications and considerations regarding FTP and SFTP that you should be familiar with before proceeding. FTP Security Implications & Considerations There are various security considerations and implications admins should be familiar with regarding FTP: Transmission in Clear Text: FTP does not encrypt its traffic; all transmissions, including login credentials, are made in plain text and thus vulnerable to interception and eavesdropping by third parties. Using FTP over an unprotected network is considered risky regarding Linux security. Secure Alternatives: For secure file transfers, protocols like SFTP (SSH File Transfer Protocol) or FTPS (FTP Secure, an extension of FTP with TLS security) should be utilized. SFTP, in particular, integrates seamlessly with SSH (Secure Shell) and provides encrypted channels that offer authentication and data transfer services. Firewall Configuration: Setting up firewalls to permit FTP trafficcan be complex due to its use of multiple ports and, in active mode, random connections from various clients to random ports on their client systems. Proper firewall configuration is crucial in protecting any Linux system requiring FTP access. User Isolation: Implementing user isolation on FTP servers is essential to prevent authenticated users from accessing unauthorized files, which involves configuring the FTP server to restrict users to specific directories and enforce permission settings. Regular Updates and Audits: Keeping FTP server software current is crucial to protecting against vulnerabilities, so regular security audits should also be undertaken to protect against potential issues. FTP is a popular protocol for file transfers, yet its lack of security features renders it less appropriate when transmitting sensitive information across insecure networks. Linux environments prioritize data confidentiality and integrity and often prefer alternatives like SFTP or FTPS as the transfer protocols for data transmission. What Makes SFTP More Secure than FTP? SFTP is a more secure alternative to FTP for the following reasons: Encryption: SFTP uses the SSH protocol to encrypt data in transit. This means all data, including passwords, files, and commands, are transmitted securely. Authentication: SFTP supports more robust and versatile authentication mechanisms, including passwords, public keys, or a combination of methods. This multi-factor authentication significantly improves security. Single Connection: SFTP uses a single, secure connection for commands and data transfer (over SSH), simplifying the setup. With SFTP, handling multiple ports is unnecessary, which reduces the attack surface. Integrity and Confidentiality: Because it transmits data securely via encrypted packets, SFTP ensures that unauthorized parties cannot easily view or modify data during transmission. Next Steps: Setting Up an SFTP on Linux Due to its secure nature, SFTP isrecommended over FTP in almost all cases involving the transmission of sensitive or confidential information. To get started with SFTP, I encourage you to explore the tutorial linked below to learn how to set up a Secure File Transfer Protocol (SFTP) to move files around your Linux servers. . Establish safe data exchanges by setting up SFTP on Unix systems, ensuring robust security measures for confidential documents.. SFTP Configuration, Secure File Transfer, FTP Security, Linux Data Transfer. . Brittany Day
Jul 20, 2024
•
How to Harden My Filesystem
166
data protectionencryptionfile transferCroc File Transfer: Securely Move Data Between Computers
Croc is a free and open-source command line tool that enables computers to easily and securely transfer files and folders using code phrases. Learn how to install and use croc in this tutorial. . There are lots of ways to transfer files between two or more computers. Today, we will discuss about yet another utility named Croc. This tutorial we’ll show you how to install Croc and how to use it to transfer files between computers. Croc is a file transfer system that sends files securely using end-to-end encryption, via a file transfer relay. If you are curious about the name, it is inspired by the fable of the frog and the crocodile. The Croc key advantages are speed, security, and simplicity, all-in-one. Transferring data using Croc is faster, because it acts as a relay server between the systems. It creates a full-duplex real-time communication layer between the two computers, so the “uploading” and “downloading” tasks occur simultaneously between those computers. . Delve into Croc, a public-source solution designed for safeguarding file exchanges across devices, utilizing end-to-end encryption for enhanced security.. Croc File Transfer, Safe File Sharing, Open Source Security. . Brittany Day
May 14, 2021
•
How to Learn Tips and Tricks
160
information securitydata privacyencryption techniquesEasy File Encryption Methods for Secure Linux Management
Learn how to easily and securely encrypt files on Linux in this tutorial. . As longtime readers know, while I try to stay knowledgeable on the many sub-disciplines of information technology, my passion is for information security. Since it's been a while since I've contributed any InfoSec knowhow, I wanted to rectify that. I couldn't have timed this realization better, because (as you'll see) the techniques on display are perfect for protecting your deluge of tax season documents. In this piece, I aim to provide a range of simple but effective options for encrypting a small number of files. In particular, these options are salient for use cases like tax filing, where users are sending sensitive documents to recipients with an unknown degree of technical proficiency. Fond as I am of PGP, I'll bet you your refund check that your accountant doesn't know the first thing about using it. . Quickly secure your documents on Linux by following this simple guide for effective file encryption.. Linux Encryption, Secure File Management, InfoSec Techniques. . Brittany Day
May 13, 2021
•
How to Harden My Filesystem
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More