We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Container security is tricky, but using the right tools and utilities can make things much easier - and greatly improve security! Here are 17 great open-source container security tools to consider adding to your arsenal.
I’m writing this post because I often hear that kernel exploitation is intimidating or difficult to learn. As a result, I’ve decided to start a series of basic bugs and exercises to get you started! Prerequisites Knowledge of the Linux command line Knowing how to read and write basic C may be beneficial Being able to debug with the help of a virtual computer or another system Able to install the kernel module compilation build requirements A basic understanding of the difference between userland and kernelland could be helpful Having a basic understanding of assembly can be beneficial for future episodes For this part, I wrote a simple Linux character device, /dev/shell. This driver will take two arguments, uid and cmd, and it will execute the cmd command as the specified uid. To understand how this driver works, I’ll explain a few things!
Linus Torvalds and Greg Kroah-Hartman have shared their thoughts with ZDNet's Steven J. Vaughan-Nichols about the possibility of new Linux kernel code being written in Rust—a high performance but memory-safe language sponsored by the Mozilla project.
Slowly but surely the Rust language is making its way into Linux. Linus Torvalds and Greg Kroah-Hartman offer their perspective into how they see Rust and Linux working together.
Endlessh is an SSH tarpit that very slowly sends an endless, random SSH banner. It keeps SSH clients locked up for hours or even days at a time. Learn about Endlessh and how it helps secure SSH servers.
The Solarwinds security blunders have raised awareness of the importance of protecting software supply chains from unauthorized changes. Now, the Linux Foundation and partners have created a new free cryptographic software signing service to improve open-source program security.
