Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found -3 articles for you...
166
kernel updateLinux administrationautomatic updatesAutomatic Kernel Updates: Configure Rebootless Patching on Linux
Learn how to set up automatic rebootless kernel updates using the live patching solutions from Canonical and CloudLinux in this 3-minute tutorial. . Applying security updates to the Linux kernel is a straightforward process that can be done using tools such as apt , yum , or kexec . However, when managing hundreds or thousands of servers running different Linux distribution to patch, this method can be challenging and time-consuming. Manually updating the kernel requires rebooting the system. This results in downtime, which can be problematic, so reboots are usually scheduled to occur at specific time intervals. Because manual patching is done during these cycles, it provides hackers with a “time window” in which they can attack the server infrastructure. . Explore the approach for smooth kernel updates through live patching methods that guarantee continuous system performance while applying important patches without rebooting. Kernel Updates, Linux Administration, Live Patching Solutions. . Brittany Day
Sep 09, 2020
•
How to Learn Tips and Tricks
166
software managementsystem securityRPMUpdate Strategies For RPM And Debian Systems: Enhance Security
Having Outdated software is just asking for trouble.. Once an error, bug or vulnerability is found in a software package, a patch and an updated RPM are released. If the system does not contain the most current version of the software, a cracker can use an exploit to gain root access and cause damage to your precious data. Several programs exist to assist you in ensuring your host contains the most recent forms of software. AutoRPM is a program that compares the database of RPM packages installed on your host to several different FTP sites looking for new packages. Conveniently enough, there is an RPM of AutoRPM located at Rpmfind mirror . Install the RPM and read the man pages for autorpm and autorpm.conf. The default settings for autorpm.conf should work well. To run AutoRPM, enter this into the command line: /usr/sbin/autorpm --interactive Once that is entered, a screen comes up that gives different options about how to proceed. Just go through the screens, taking actions as needed. For more information, go to AutoRPM's home page: While AutoRPM is a very useful tool, it can only be used on systems that use RPMs. For Debian GNU/Linux, there is a tool called apt-get. Apt-get requires a sources.list file that is in the /etc/apt directory and is similar to *-update files that come already filled out with AutoRPM. The syntax for a line of sources.list goes like this: deb URL release-type package-type The URL can be either a local directory, a CD-ROM, a web site, or an ftp site. The release-type field looks for either stable or unstable. It should probably always be set to stable, except for the very adventurous. The package-type field refers to the type of package. The values can be either main, contrib or non-free. Packages that fall under the category of main are packages that can be found on the Debian GNU/Linux CD. Contrib packages are packages that are GNU packages, but didn't make it onto the Debian CD. Non-Free are packages that do mean the FSF definition of"free." Example lines of sources.list are: deb file:/cdrom stable main deb http://ftp.debian.org/ stable main contrib deb stable main contrib After the sources.list is set up, run apt-get update To update information about packages available. Run apt-get install package-name To install a package. Run apt-get upgrade To bring all of your currently used packages to newest version. To find more information about apt-get, read Learning Debian GNU/Linux by Bill McCarty, published by O'Reilly and associates. . Keep your systems secure by regularly checking for and applying software updates with YUM and apt for RPM and Debian environments.. Software Management,RPM Security,Debian Update Tools. . Anthony Pell
Jul 23, 2000
•
How to Learn Tips and Tricks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More