Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found -2 articles for you...
167
risk assessmentsystem compromisesecurity checklistComprehensive Intruder Detection Checklist For System Security
This document outlines suggested steps for determining if your system has been compromised.. . This document outlines suggested steps for determining if your system has been compromised.. document, outlines, suggested, steps, determining, system, compromised. . Anthony Pell
Jan 10, 2005
•
How to Secure My Network
163
apacheopen sourceconfigurationEssential Configuration Steps for Securing Apache Web Server
This documentation will discuss the certain configuration steps that are needed to ensure the Web server's security.. . Enhance your Apache server's security and performance with crucial steps like updating, access restrictions, disabling listings, using firewalls, and SSL/TLS. Apache Security, Web Server Configuration, Security Steps. . Anthony Pell
Nov 29, 2004
•
How to Secure My Webserver
166
security advisorymysqluser managementEssential Steps For Securing MySQL Installation And Management
Several steps can be taken to secure the default mysql installation.. Introduction mysql is a free DBMS for many platforms. When you install it there are various unnecessary features enabled that should be disabled to enhance security. Root Password When you first install mysql , be it from a source tarball or from a RPM, you must set the 'root' password. This is the password that can be used to control all of the tables, mysql startup/shutdown, etc. To do this type the command; mysqladmin -u root password 'new-password' Default Users and Tables mysql also ships with two default users and default 'test' tables. The default users are for connecting to the DBMS without specifying a password, so removing these users is obviously a very good security measure. There are also entries so that tables called or starting with 'test' can be world-writable. These should also be disabled for obvious reasons. To do so, you must first go into the DBMS: mysql -uroot -p mysql Enter password: Reading table information for completion of table and column names You can turn off this feature to get a quicker startup with -A Welcome to the MySQL monitor. Commands end with ; or g. Your MySQL connection id is 1 to server version: 3.22.32 Type 'help' for help. Now we execute the two commands to delete the desired entries: mysql> DELETE FROM user WHERE User = ''; mysql> DELETE FROM db WHERE Host = '%'; Disable TCP Networking If the database only needs to be accessable from the local machine then you should disable TCP networking. By doing so you eliminate the possiblity of people connecting to your daemon without an account on the machine the daemon is running on. To do this you must edit the file 'safe_mysqld', which is a script file that starts up the daemon for you. It may be in '/usr/bin' or '/usr/local/bin'. Once you locate the file change the following lines (approximate line numbers are included, but they may vary from version to version) byincluding the --skip-networking flag: 119: --skip-locking > > $err_log 2> &1 119: --skip-networking --skip-locking > > $err_log 2> &1 122: --skip-locking "$@" > > $err_log 2> &1 122: --skip-networking --skip-locking "$@" > > $err_log 2> &1 Resources General MySQL Security The MySQL access privilege system . Follow key practices to protect your MySQL setup, enhance account administration, and turn off unused functionalities.. MySQL Security, Database Management, User Access Control. . Anthony Pell
Aug 24, 2000
•
How to Learn Tips and Tricks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More