Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found 0 articles for you...
162
remote accesskey managementsecurity configurationSecure Linux With SSH Key Authentication Setup for Remote Access
Here's how easy it is to add a layer of security to your secure shell logins on Linux. . Secure Shell (SSH) is the de facto standard for gaining access to remote Linux machines. SSH took the place of telnet long ago, to add a much-needed layer of security for remote logins. That doesn't mean, however, that the default SSH configuration is the best option for those who are a bit more concerned about the security of their systems. Out of the box, SSH works with traditional user and password logins. And even though those logins are far more secure than they were with telnet, you're still typing and sending a password across the internet. . Uncover strategies to bolster access protection on Linux systems via SSH key authentication techniques.. SSH Authentication, Secure Shell, Linux Security, Key Management, Remote Access. . Brittany Day
Nov 04, 2022
•
How to Strengthen My Privacy
166
access controlSELinuxsecurity configurationEnhancing Security With SELinux Configuration for Linux Servers
SELinux can help you secure your server from malfunctioning processes or applications. Developed by the NSA (National Security Agency) to secure government devices from attackers, the security enhanced (SE) Linux architecture uses security protocols to restrict access to system resources. Find out how you can use it for your own server. . SELinux is a kernel module that can be enabled or disabled by the system admin. As the access to files and network ports is limited following a security policy, a faulty program or a misconfigured daemon can’t make a huge impact on system security. When an application or process requests file access in the SELinux system, first it checks the access vector cache (AVC). If permission is previously cached, then it returns with the file that the application is requested for. If the permission is not cached, then it sends the request to the security server. The security server checks all the security policies in its database. Depending on the security policy, permission is then granted or declined. . Leverage AppArmor to bolster your Ubuntu system's defense through stringent authorization and profile oversight.. SELinux, Access Control, Security Policies, Server Hardening, System Administration. . Brittany Day
Aug 02, 2022
•
How to Learn Tips and Tricks
166
open sourceconfigurationubuntuInstalling Fail2ban On Ubuntu 20.04 LTS For Enhanced Security
Learn how to install and configure Fail2ban server, client, and services on an Ubuntu 20.04 or 18.04 LTS Linux server in this tutorial. . Bloggers and Developers who are running and managing their own servers, well of course they are responsible for its security as well. If in today’s world we don’t give heed to security then there is the possibility that our server would become a target of attackers – and cause damage. Well, although there are various online WAF, however, to harden the server an open-source program is available called Fail2Ban. It ensures that the IP address of an attacker is blocked for a certain period of time after several unsuccessful attempts and thus prevents an unlimited number of attempts that could later lead to finding out the password. The link for this article located at How 2 Shout is no longer available. . Learn the steps to configure Fail2ban on your Ubuntu system to improve protection against unauthorized access attempts.. Fail2ban, Ubuntu Security, Server Protection, IP Blocking. . Brittany Day
May 24, 2021
•
How to Learn Tips and Tricks
163
security configurationIP spoofingLinux hardeningSecure Sysctl Settings On Linux Against SYN Flood And Spoofing Attacks
Protecting Linux servers against SYN attacks and IP spoofing is surprisingly simple. Jack Wallen shows you how in a great tutorial. . The sysctl system allows you to make changes to a running Linux kernel. This utility reads and modifies various attributes of the kernel, such as version number, maximum limits, and a number of security settings. The sysctl system also allows you to prevent things like SYN flood attacks and IP address spoofing. It also logs several types of suspicious packets--spoofed packets, source-routed packets, and redirects. You can modify kernel parameters at runtime with the sysctl command or you can make changes within the system's configuration file so those changes are more of a permanent nature. . Fortify your Linux servers effectively by adjusting sysctl parameters to safeguard against SYN flood attacks and IP address spoofing through simple yet impactful changes.. Linux Security, Kernel Protection, Sysctl Configuration. . Brittany Day
May 08, 2020
•
How to Secure My Webserver
160
security updatesecurity patchkernel enhancementsNew Linux Kernel Security Enhancements Through Openwall Project Features
This patch is a collection of security-related features for the Linux kernel, all configurable via the new 'Security options' configuration section. In addition to the new features, some versions of the patch contain various security fixes. The numbe. . Discover the latest enhancements in security mechanisms and functionalities introduced in the Linux kernel update aimed at bolstering system defenses.. Linux Kernel Patch, Openwall Security Features, Kernel Protection, Security Enhancements. . Anthony Pell
Dec 02, 2004
•
How to Harden My Filesystem
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More