Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Ahead With Linux Security HOWTOs

Detect Unauthorised Ssh Keys Hero Esm H350
How to Secure My NetworkPrice Tag 1security advisory remote access

Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
1 min read How to Secure My Network
IDS VS IPS Esm H350
How to Secure My NetworkPrice Tag 1intrusion detection application security

The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
4 - 8 min read How to Secure My Network
8.Locks HexConnections CodeGlobe Esm H350
How to Secure My NetworkPrice Tag 1unauthorized access security techniques

Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
5 - 9 min read How to Secure My Network
7.Locks HexConnections Esm H350
How to Secure My NetworkPrice Tag 1security advisory incident response

The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
6 - 11 min read How to Secure My Network
How To Diagnose Suspicious Outbound Connections On Linux Servers Hero Esm H350
How to Secure My NetworkPrice Tag 1network monitoring Linux server

When a Linux server initiates an unauthorized outbound connection to an unknown IP address, it rarely triggers an immediate system failure. Instead, the server continues running normally, and the connection is usually only discovered during a routine firewall log review, a DNS audit, or a post-incident investigation. Because there are no obvious system crashes or performance drops, these quiet outbound sessions can easily be overlooked. . However, treating these anomalies lightly is a...
6 - 11 min read How to Secure My Network
Filter Icon Refine HOWTOs
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security HOWTOs

We found -2 articles for you...
166
Systemd Service Strengthening Esm H240
Price Tag 1Linux administrationsecurity techniquesservice hardening

Hardening Systemd Services To Secure Linux Systems Against Threats

Learn how to reduce the attack surface of your Linux system by hardening the Systemd service in this tutotal. . In an age where hacker attacks are a daily occurrence, it is of fundamental importance to minimize the attack surface. Containerization is probably the best way to isolate a service provided for the public, but this is not always possible for several reasons. For example, think of a legacy system application developed on systemd. This could make the most of the capabilities provided by a systemd-based operative system and it could be managed via a systemd unit, or it could automatically pull updates using a systemd timer, and so on. For this reason, we are going to explain how to improve the security of a systemd service. But first, we need to step back for a moment. With the latest releases systemd has implemented some interesting features relating to security, especially sandboxing. In this article we are going to show step-by-step how to strengthen services using specific directives, and how to check them with the provided systemd suite. . Discover pivotal strategies to fortify systemd services and effectively minimize your Linux environment's vulnerability footprint.. Systemd Hardening, Linux Security Solutions, Minimize Attack Surface, Service Management. . Brittany Day

Calendar 2 May 18, 2021 User Avatar Brittany Day How to Learn Tips and Tricks
163
13.Lock StylizedMotherboard Esm H240
Price Tag 1security practicessecure shellssh security

Guide To Securing SSH: Best Practices For Infrastructure Security

It is 2020, and we can say for sure, that ssh-server is still one of the most popular services on Linux systems. During various meetings, I was often asked: How to secure SSH? Even though this question seems trivial, it is not. There are a lot of things to remember to accomplish well-designed service security. . Secure shell is used not only for a remote-shell, per se. Many other technologies depend on it, for various reasons. For example: Git to download and push the code. ​[1]​ Ansible to apply tasks. ​[2]​ Cloudera for installation procedures. ​[3]​ (Do not ask us, we do not understand it too.) I have decided to answer the above question once and forever, and always refer to this document, trying to keep it up-date and consistent with current security practices. The purpose of this post is to answer the question: How to secure SSH? It is a comprehensive document for infosec and devops teams, that will guide them through all known best-practices and hardening rules. Thanks to Kamil Zabielski ( This email address is being protected from spambots. You need JavaScript enabled to view it. ) for submitting this article. The link for this article located at Sysdogs is no longer available. . Uncover essential techniques for safeguarding SSH connections, complemented by vital advice for information security and DevOps teams aiming to bolstered protection.. SSH Security, Infosec Best Practices, Secure Shell Hardening, DevOps Guide. . Brittany Day

Calendar 2 Aug 28, 2020 User Avatar Brittany Day How to Secure My Webserver
Banner 3 1028x280 1708121785 1771599793
160
General Esm H240
Price Tag 1access controlsecurity featurechrooting

Enhance Security in Linux Using Chrooted Services for System Hardening

Chrooted system services improve security by limiting damage that someone who broke into the system can possibly do. This article discusses, in depth, how to do so.. . Establish secure chroot environments for critical system services to bolster protection against unauthorized access and limit the extent of damage in the event of a breach.. Chroot Security, Linux Access Control, System Configuration, Secure Services. . Anthony Pell

Calendar 2 Nov 23, 2004 User Avatar Anthony Pell How to Harden My Filesystem
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here