Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

Linux Network Security - Page 23

For years, IPv4 was the only proxy type that really mattered for anyone running automation off a Linux box. IPv6 was the protocol everyone said they’d migrate to, but almost nobody actually did. In 2026, that’s finally starting to shift. ...

Researchers recently identified another wave of malicio...

The romanticized image of the digital nomad – a laptop ...

Discover Network Security News

LS Hmepg 337x500 34 Esm H267

Comparing MailScanner and Anomy Sanitizer for Linux Email Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux provides several server-based anti-virus applications, most of which can be configured to interact with a variety of messaging servers. Many use the actively developed ClamAV open source virus toolkit on the back end; others work with proprietary or commercial scanners. In this article we'll compare MailScanner and Anomy Sanitizer on a Sendmail messaging server. Scanning emails for viruses even before it reaches the user's desktop is a very important step in protecting your users and the network as a whole. This article talks about two email virus spanners, MailScanner and Anomy. Do you have any other favorites?

LS Hmepg 337x500 34 Esm H267

Exploring W3af: A Tool for Automated Web Application Security Audits

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A pretty cool tool was released a while back called w3af ( Web Application Attack and Audit Framework ), a fully automated auditing and exploiting framework for the web. This framework has been in development for almost a year and has the following features: W3af has the features that you would expect from a application audit tool. I definitely see why we need to use tools like this one since, websites are very vulnerable to attack. However, without a skilled developer fixing the vulnerabilities which the tool is alerting us to then the tool is useless in helping secutity.

LS Hmepg 337x500 34 Esm H267

Sourcefire Acquires ClamAV: Implications for Open Source Anti-Malware

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Network security specialist Sourcefire announced Friday that it has acquired ClamAV, an open-source gateway anti-malware project whose technologies are used in the products of a number of other vendors. After reading this article I find my self wondering how this will affect open-source security. We all know Sourcefire is behind the Snort project but after acquiring ClamAV how will it change Snort's development?

LS Hmepg 337x500 34 Esm H267

Enhance Email Security with Data Leak Prevention Measures

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Sentrion Message Processor is designed to stop inbound threats as well as ensure that outbound messages adhere to comply with policies, without affecting performance, according to the company. This article made me start thinking about what ways can email software protect email servers and users from computer attacks. The first thing that came to my mind was filtering. Do you know any other ways or good ways of preforming email filtering?

LS Hmepg 337x500 34 Esm H267

Emerging FDF Spam: New Challenge for Email Filters and Users

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Spammers have begun experimenting with a new file format as part of their ongoing quest to slip their tiresome messages past junk mail filters. Now users now have to contend with spam messages in the FDF (Forms Data Format). Just another thing in which spam filters needs to check for and users need to look out for. What will be the next file format spammers will use next? Also since we can't block all attachments what can spam filters do?

LS Hmepg 337x500 34 Esm H267

Firefox 3.0 Update: Adding Malware Blocker and EV SSL Support

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Firefox 3.0 will have several new security features baked in, according to Mozilla's chief of security.The browser will likely have a tool for automatically blocking sites suspected of harbouring malware. It will also offer support for the extended validation Secure Sockets Layer (EV SSL) certificates, said Window Snyder, Mozilla's chief security officer. The last couple of weeks Firefox has been in the news related to their security bug. The Mozilla team seems to be taking browser security very seriously now. What do you think about this? Was this a response to the security problems they had with their software last month? Either way to applaud them for making security a top concern.

LS Hmepg 337x500 34 Esm H267

Mozilla 10-Day Patch Commitment Withdrawn: Impact on Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The open source browser maker was forced to issue a statement Monday, retracting a pledge attributed to the company's director of ecosystem development, Mike Schaver, to fix any critical security bugs in the browser within "Ten ****ing Days." Fixing security bugs is not always a easy task, I feel that it was a good idea to retract there claim since it would be hard to backup. However, I hope that they release security bug fixes as fast as they would have with a 10-day deadline. Do you think that retracing their claim was a good idea?

LS Hmepg 337x500 34 Esm H267

Mozilla's 10-Day Critical Bug Patch Commitment Raises Security Standards

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A Mozilla executive has vowed that his company can patch any critical vulnerability in its software within 10 days, a sign that Mozilla intends to step up its efforts to improve security. I found this to be a pretty bold claim. Does this have anything to do with the recent flood of Firefox security bugs? I really hope that Mozilla is able to stick with their claim of providing security fixes with-in 10 day. Could other software makers do the same thing?

LS Hmepg 337x500 34 Esm H267

Effective Protection Against SSH Brute Force Attacks Using Fail2Ban

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Since 2005 there has been an immense increase in brute force SSH attacks and though Linux is pretty secure by default, it does not stop evil programs from indefinitely trying to login with different passwords. Having good firewalls is one step to help protect your Linux box. Getting the right Iptables is not always easy. The Linux user can certainly manually add Iptable rules to there firewall but is there a better way? One piece of software that can help automate part of creating firewall rules is called Fail2Ban. Do you have any favorites or a review on Fail2ban?

LS Hmepg 337x500 34 Esm H267

Employing Qpsmtpd SMTP Proxy For Advanced Spam Management

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A simple means to adding additional anti-spam checks to your mailserver is to place it behind an SMTP-proxy. One common proxy is the extremely flexible qpsmtpd server. The nice part of this setup is that is allows the network to have the SMTP-proxy in front of the Mail Server so there is no need to change mail server. I feel is this a nice feature. But how effective is this from preventing spam and allowing real emails to come through What do you think? Does this method have the ability to learn what is spam?

LS Hmepg 337x500 34 Esm H267

Mozilla Thunderbird 2.x: Critical Security Flaws Resolved

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"The Mozilla organization has released an update to its Thunderbird 2.x e-mail client that fixes two critical security holes. These same fixes were also recently implemented in Firefox 2.0.0.5. " I found it to be interesting that the same security flaw was in both Firefox browser and in Thunderbird email client. When I starting to think about it, I found that it would make sense because the Mozilla organization works on both projects. Do you see yourself making the same security mistakes across different projects?

LS Hmepg 337x500 34 Esm H267

Spammers Switch to PDFs Amidst Spam Detection Improvements

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"Image spam, which at the beginning of the year accounted for nearly 60 per cent of all junk email, has plummeted and now accounts for only about 15 per cent of spam." Will PDF SPAM change the way we need to detect SPAM? Will the Email providers start blocking Emails with PDF's as attachments? One thing to make sure though is to now check that your emails with attached PDF files are received.

LS Hmepg 337x500 34 Esm H267

Views from IT Experts on the Security Dangers of DNS Risks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"Nearly half of IT and business professionals surveyed by Mazerov Research reported a security compromise of their Domain Name System servers, despite spending money on overlapping security products." A interesting part of the study was that users did not rate losing DNS not a high concern. But without DNS users can't get their emails if their DNS servers goes down because of a attack. When thinking about security DNS must be at the top of the list.

Your message here