Stay Ahead With Linux Security HOWTOs
How to Secure My Network
access control Linux administration
access control Linux administration Most SSH hardening advice ends at the same recommendation: Disable password authentication and use SSH keys. . That's good advice. It removes entire classes of attacks, including password spraying, credential stuffing, and brute-force attempts against exposed servers. The problem is what happens next. Many administrators treat SSH keys as the finish line when they are really the beginning of the hardening process. Attackers rarely care whether they obtained access with a password or a private...
Jun 05, 2026
How to Secure My Networksecurity advisory remote access
security advisory remote access Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem. . When security teams investigate unauthorized access on Linux systems, they often focus on passwords, exposed services, or vulnerable software. Trusted access receives less attention. Yet a single forgotten or unauthorized SSH key can provide the same access as a legitimate user while attracting very...
Jun 03, 2026
How to Secure My Networkintrusion detection application security
intrusion detection application security The wrong IPS rule can look like a security fix right up until it becomes an outage. . On Linux systems, detection and prevention are often discussed together, but they do not carry the same operational risk. One tells admins that something suspicious happened. The other can decide whether traffic is allowed to continue. That is why IDS vs IPS is not just a definition to memorize. It is a deployment decision about where to monitor, where to block, and how much confidence a team needs before...
Jun 01, 2026
How to Secure My Networkunauthorized access security techniques
unauthorized access security techniques Exposed SSH servers are continuously hammered by brute-force attacks, password spraying, credential stuffing, and recycled passwords from infostealer dumps. Attackers rotate usernames, test weak credentials, and probe for anything that gives them initial access. The logs usually look messy long before the compromise happens. . The difficult part is separating harmless failures from actual intrusion activity. One failed login from an internal workstation rarely matters. Repeated failures...
May 28, 2026
How to Secure My Networksecurity advisory incident response
security advisory incident response The first 30 minutes after discovering a compromised Linux server usually decide how much evidence remains available. One rushed reboot or cleanup attempt can wipe logs, terminate malicious processes, or remove network activity that investigators still need to review. Attackers also do not usually stay on one system for long once access is established. Early response is mostly about preserving visibility. Collect process information. Save network connections. Limit access carefully before...
May 28, 2026
Refine HOWTOs
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security HOWTOs
We found -2 articles for you...
160
data protectionLinux administrationencryption utilityHow to Use Cryptmount for Encrypted Filesystems on Linux
Looking for a way to create encrypted filesystems on Linux? Cryptmount is a powerful utility that allows any user to access encrypted filesystems on-demand under GNU/Linux systems without requiring root privileges. . It requires Linux 2.6 or higher. It handles both encrypted partitions as well as encrypted files. It makes it as easy (compared to older approaches such as cryptoloop device driver and dm-cryptdevice-mapper target) for ordinary users to access encrypted filesystems on-demand using the newer devmapper mechanism. Cryptmount helps a system administrator in creating and managing encrypted filesystems based on the kernel’s dm-crypt device-mapper target. . Effortlessly set up and control secure storage areas on Linux with Cryptmount, a robust and intuitive tool.. Encrypted Filesystems, Cryptmount, Linux Encryption Utility, Data Protection, User Access Control. . Brittany Day
Jun 12, 2020
•
How to Harden My Filesystem
166
user access controlLinux configurationrestricted shellUsing Restricted Shell For Access Control In Linux Systems
Learn how to prevent Linux users from executing certain commands and confining them to their home directory by employing rbash. . You have users logging in to your Linux system. Those users might have not have sudo rights, but they quite possibly could have free rein to poke around most of the system directory tree. You don't want that. Why? Although those users might not be able to edit the vast majority of your configuration files, you certainly don't want those users viewing them. Same holds true for your client data--you want that locked down. But how do you prevent users from being able to access your directory hierarchy without having to tweak the permissions of every file and folder on the system, which could seriously complicate things? The link for this article located at TechRepublic is no longer available. . Learn how to restrict Linux users with rbash: limit their command usage and ensure activities are confined to their home directories with our guide.. Linux User Management, Restricted Shells, RBash Usage, Secure Linux Access. . Brittany Day
Feb 21, 2020
•
How to Learn Tips and Tricks
166
security practicesaccess controlPAMImplementing PAM for Authentication: Control Access and Improve Security
Pluggable Authentication Modules is a method for authenticating users.. Pluggable Authentication Modules is a method for authenticating users. Using PAM, programmers can provide a more easy and verstile means of performing authentication functions. The ability to change from basic password authentication to the use of smart cards or even biometrics can be changed without having to recompile programs or require serious modifications. Additionally, PAM can be used to modify the terms of access by users as well as system resources. Just a few of the things you can do with PAM: Use a different encryption method for passwords such as MD5, making them harder to brute force decode; Set resource limits on all your users so they can't perform denial of service attacks (number of processes, amount of memory, etc) Enable shadow passwords on the fly Allow specific users to login only at specific times from specific places Within a few hours of installing and configuring your system, you can prevent many attacks before they even occur. For example, use PAM to disable the system-wide usage of .rhosts files in user's home directories by adding these lines to /etc/pam.d/login : # # Disable rsh/rlogin/rexec for users # login auth required pam_rhosts_auth.so no_rhosts Set filesystem limits instead of allowing unlimited as is the default. You can control the per-user limits using the resource-limits PAM module and /etc/pam.d/limits.conf . For example, limits for group 'users' might look like this: @users hard core 0 @users hard nproc 50 @users hard rss 5000 This says to limit the creation of core files to zero bytes, restrict the number of processes to 50, and restrict memory usage per user to 5 Meg. References The main Linux-PAM has a great deal of (sometimes out-of-date) information on configuring and using PAM. The Linux-PAM System Administrators' Guide is a"draft" document that describes the usage of the default PAM modules. This Red Hat whitepaper on Enhanced Console Access describes how you can configure PAM to authorize ordinary users to access system devices such as the floppy. The Red Hat User Guide contains a section on User Authentication with PAM that explains the basics of PAM as well as some more advanced techniques. Keep in mind that there is the potential to create a situation whereby even root doesn't have access to the system, creating all kinds of configuration headaches. Use caution. . Pluggable Authentication Modules is a method for authenticating users. Using PAM, programmers can pr. pluggable, authentication, modules, method, authenticating, users. . Anthony Pell
Jul 30, 2000
•
How to Learn Tips and Tricks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More