Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found 0 articles for you...
166
access controlSELinuxsecurity trainingLearning About SELinux Denials: Analyze and Correct Access Issues
Learn about SELinux denial messages, where they're logged, and how to parse them in a brief RedHat tutorial. . Security Enhanced Linux (SELinux) is a security framework that allows and denies access to applications, files, etc. within a Linux system. For a full SELinux overview, see What is SELinux . For this article, we will look at what happens when access to a desired file or application is denied. What messages will you see, where are these messages stored, and what does the information actually mean? What are some of the abnormal situations, caused by false positives and ghost denials, that you might find yourself in? We will explore all of that here. . Understanding SELinux denial notifications is vital for Linux security. By logging, interpreting messages, and adjusting policies, admins gain better control.. SELinux, Access Control, Denial Messages, Linux Security. . Brittany Day
Nov 24, 2020
•
How to Learn Tips and Tricks
166
data protectionsecurity frameworksecurity programComprehensive Guide to Crafting an Information Security Policy
An Information Security Policy is the cornerstone of an Information Security Program. It should reflect the organization's objectives for security and the agreed upon management strategy for securing information. Here's a great article on how to implement one in the real-world and how to get management to buy in to your plan. . In order to be useful in providing authority to execute the remainder of the Information Security Program, it must also be formally agreed upon by executive management. This means that, in order to compose an information security policy document, an organization has to have well-defined objectives for security and an agreed-upon management strategy for securing information. If there is debate over the content of the policy, then the debate will continue throughout subsequent attempts to enforce it, with the consequence that the Information Security Program itself will be dysfunctional. Printable version . In order to be useful in providing authority to execute the remainder of the Information Security Pr. information, security, policy, cornerstone, program, should. . Dave Wreski
Jun 17, 2009
•
How to Learn Tips and Tricks
160
security frameworkpenetration testingcustom toolsAdding Custom Modules To BackTrack Penetration Testing Distribution
BackTrack, the penetration testing distribution, is a great LIve-CD to test a system and tear it apart. This HOWTO: One of BackTracks' most appealing features is it's modularity. As an end user, you can add your own modules scripts and tools to the livecd. . The link for this article located at is no longer available. . The link for this article located at is no longer available.. backtrack, penetration, testing, distribution, great, live-cd, system. . LinuxSecurity Contributors
Nov 15, 2007
•
How to Harden My Filesystem
166
risk managementsecurity frameworkcomplianceUnderstanding Sarbanes-Oxley Compliance in IT Governance
Guardian Digital's "Achieving Compliance" white paper will serve as a resource to explain the mandates of Sarbanes-Oxley as it pertains to information technology and to further explain how Guardian Digital, the premier Internet and network security c. . Examine Guardian Digital's comprehensive report regarding the Sarbanes-Oxley Act's requirements for information technology security and corporate governance.. Sarbanes-Oxley Compliance, IT Governance, Security Framework. . Anthony Pell
Dec 02, 2004
•
How to Learn Tips and Tricks
160
open sourceOSSTMMsecurity testingDelving into OSSTMM: An Essential Framework for Security Assessment
The Open-Source Security Testing Methodology Manual (OSSTMM) is an effort to develop an open standard method of performing security tests.. . Delve into the Open-Source Security Testing Methodology Manual (OSSTMM), a comprehensive guide designed to enhance the effectiveness of security assessment practices.. Open-Source Security Testing, OSSTMM Methodology, Security Testing Framework. . Anthony Pell
Nov 30, 2004
•
How to Harden My Filesystem
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More