Linux Network Security - Page 13

Discover Network Security News

Warning: Undefined property: stdClass::$helix_ultimate_image in /var/www/www.linuxsecurity.com-443/html/templates/newsberg/html/com_content/category/blog_item.php on line 54

Warning: Undefined property: stdClass::$helix_ultimate_image in /var/www/www.linuxsecurity.com-443/html/templates/newsberg/html/com_content/category/blog_item.php on line 55

Root Servers Implement DNSSEC: A Major Step in Domain Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

On Wednesday (5th May) the last of the 13 authoritative root servers for the domain name system switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed.

Anthony Pell
May 10, 2010

IPv6 Tunnels: Transitioning from IPv4 to IPv6 Addressing

More Internet traffic is expected to be carried via tunnels as the Internet infrastructure migrates from IPv4, the current version of the Internet protocol, to the long-anticipated upgrade known as IPv6.

Anthony Pell
May 07, 2010

Google Apps Enhances Security: Remote Cookie Reset Tool For Admins

Google has released a new tool that allows administrators at firms using Google Apps to remotely reset cookies to ensure that sensitive data cannot be accessed if a device is lost or stolen.

Alex
May 04, 2010

Understanding Malware Impact On Enterprises And Their Risks

Malware attacks are a growing concern amongst enterprises. It not only results in downtime but also poses the threat of data theft. In the second of this four part series on malware attacks on enterprises, we bring to you the implications of malware attacks on businesses.

Alex
Apr 27, 2010

Exploring New Features in Metasploit Express for Improved Testing

A new version of the open source Metasploit Framework penetration testing tool is set to debut next month with the release of Metasploit Express -- ushering in new enhancements for ease-of-use and management that come courtesy of its new commercial underpinnings.

Anthony Pell
Apr 23, 2010

Dimension Data Study: 38% Of Enterprise Devices Exposed To Attacks

Nearly 40 percent of enterprise network devices exhibit some form of security vulnerability, according to a study published today.

Anthony Pell
Apr 22, 2010

Gunnar Hellekson Discusses Open Source Strategies for Cloud Migration

We continue our conversation today with Gunnar Hellekson, chief technology strategist for Red Hat

Alex
Apr 21, 2010

SIP Brute Force Attack Insights in Amazon ECS Cloud Security

Nice interview discussing the Amazon ECS cloud and info on the SIP attacks. Shortly After my "SIP Brute Force Attack Originating From Amazon EC2 Hosts" post, Dave Michels interviewed me for an article Dark Side of the Cloud. This is that interview: Dave: What do you believe the intent was of the attacks? Free long distance?

Anthony Pell
Apr 20, 2010

Google: Botnets Generate Increased Spam Volume In 2023 Q1

Botnets cranked out more spam and larger individual files containing spam in the first quarter of this year, according to the latest report from Postini, Google's e-mail filtering and security service.

Anthony Pell
Apr 16, 2010

Cloud Security Analysis: Challenges And Solutions For Providers

Everyone is talking about cloud computing, but security issues are stalling widespread adoption. While vendors work to address enterprise concerns (the good), experts warn there

Anthony Pell
Apr 05, 2010

Implementing Isolated Security Zones for Improved Network Safety

Twice in recent weeks, I've been onsite at a company where a sizable division of the organization has been hit by a fast-roving computer worm. All that prevented the worm from quickly spreading across the enterprise was the company's isolated security zones. These scenarios served only to strengthen my belief that establishing isolated security zones is among the few strategies that reap a return on the investment of planning, resources, and money.

Anthony Pell
Mar 29, 2010

Streamline SSH Configurations for Efficient Remote Access Management

When using multiple systems the indispensable tool is, as we all know, ssh. Using ssh you can login to other (remote) systems and work with them as if you were sitting in front of them. Even if some of your systems exist behind firewalls you can still get to them with ssh, but getting there can end up requiring a number of command line options and the more systems you have the more difficult it gets to remember them. However, you don't have to remember them, at least not more than once: you can just enter them into ssh's config file and be done with it.

Alex
Mar 26, 2010

MAAWG Report on User Spam Engagement and Email Behavior

According to a recent study by the Messaging Anti-Abuse Working Group (MAAWG) spammers on both sides of the Atlantic are being kept happy by users email behaviour. The MAAWG warning seems necessary as there are clearly more than enough users who click on spam email because it somehow looks interesting, in spite of all the danger signs.

Anthony Pell
Mar 25, 2010

OpenDNS Reports 18 Million Users and Strong Content Filtering Growth

Internet infrastructure and services company OpenDNS has reached a major landmark by snagging one percent of all Internet users worldwide, according to analytics firm Quantcast. While it doesn't sound like very much, that adds up to 18 million global users, and given that most organisations get their DNS services from their ISPs, OpenDNS is the largest single provider of DNS services. Furthermore, its use has doubled in the past year, despite the emergence of a powerful new competitor after Google launched its own DNS service last December.

Alex
Mar 25, 2010

Discover Hosts And Enhance Security Using Nmap, Nessus, And Netcat

Do you know all of the hosts on your network? Are you *sure*? Do you know if all of those hosts are secure from malicious tampering? In this article, you will learn how to find that information for yourself using three tools: nmap, nessus, and netcat.

Anthony Pell
Mar 24, 2010

Exploring Whitelisting as an Underrated Security Technology

Last week we looked at security technology some readers consider overvalued. This week we're back to study the other side of the coin. Here are four techniques and related technologies several cited as underrated in today's security fight. Since one security pro's miracle tool is another's waste of budget, it's no surprise that a couple of the technologies panned last week are praised here.

Alex
Mar 19, 2010

.Org DNSSEC Rollout: Global Initiatives and Internet Security Improvements

The march to secure the Internet's core DNS (define) infrastructure with DNSSEC (define) is moving forward. Since at least the summer of 2008, when security researcher Dan Kaminksy disclosed a critical vulnerability in DNS, the global Internet domain routing ecosystem has been moving to implement DNSSEC, which provides is a digitally signed mechanism to authenticate the integrity of DNS information, secure the system and prevent attacks.

Alex
Mar 16, 2010

Reevaluating Cloud Solutions After the Recent Google Cyber Incident

In light of the recent Google hacking, businesses might reconsider their cloud-based strategies. Ostensibly cloud-based services can offer business a better security profile at a lower price point than would be possible if companies built the services themselves. Take data centers, for example. Building a modern data center can cost hundreds of thousands of dollars with security measures constituting a hefty price tag encompassing, but not limited to, security cards, biometrics, dry contact sensors, IP-based camera surveillance, security guards, fire suppression systems, and power generators.

Anthony Pell
Mar 08, 2010

Managing Network Migration Issues in Red Hat High Availability Clusters

Ever had an ipv4 network address that is supposed to migrate over via a high availability mechanism simply not work or even stranger if there were several addresses some do and some do not? An experienced network administrator probably has seen mysterious non-migrating addresses, however, within this context is presented a rather interesting "solution" to when it has been observed.

Anthony Pell
Mar 06, 2010

Exploring Nmap For Network Scanning And Security Analysis

Ever wondered how attackers know what ports are open on a system? Or how to find out what services a computer is running without just asking the site admin? You can do all this and more with a handy little tool called Nmap.

Anthony Pell
Mar 05, 2010

Community Poll

More Polls