Server Security - Page 3Server Security - Page 3.7 - Results from #54

Discover Server Security News

Samba settings SNAFU lets any user change admin passwords

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Samba admins: get patching and/or updating. Unless you’re content to have your admin passwords overwritten by, well, anyone else using Samba.

LinuxSecurity.com Team
Mar 14, 2018

Web Application Firewalls: Choosing the Right WAF for Server Security

Web applications pose a significant security risk to servers, and having a web application firewall (WAF) in place is vital to keeping your servers and your business running smoothly.

LinuxSecurity.com Team
Mar 05, 2018

New attacks on Network Time Protocol can defeat HTTPS and create chaos

Serious weaknesses in the Internet's time-synchronization mechanism can be exploited to cause debilitating outages, snoop on encrypted communications, or tamper with Bitcoin transactions, computer scientists warned Wednesday.

LinuxSecurity.com Team
Oct 27, 2015

AV-TEST tests Linux security solutions against Linux and Windows threats

The recent tests on Linux security solutions by AV-Test Lab indicate a worrisome situation

LinuxSecurity.com Team
Oct 12, 2015

Turnbull: Don't assume government email is more secure than private email

Concerns over Malcolm Turnbull using his own private email server have been rebuked by the Australian Prime Minister, who said that all parliamentarians use insecure communication methods all the time, most notably, SMS messaging.

LinuxSecurity.com Team
Oct 09, 2015

10 Most Common Web Security Vulnerabilities

For all too many companies, it

LinuxSecurity.com Team
Sep 17, 2015

Amazon introduces new open-source TLS implementation 's2n'

Unless you haven't been on the net for a year, you know Transport Layer Security/Secure Socket Layer (TLS/SSL) software, such as OpenSSL, have had numerous serious security problems. Now, Amazon, is introducing a new TLS implementation: "Signal to noise," s2n.

LinuxSecurity.com Team
Jun 30, 2015

Why are there still so many website vulnerabilities?

The cracks in the armor of most enterprise websites are many including recurring holes in OpenSSL, PHP, and WordPress and are largely due to a combination of extensive customizations paired with a shortage of testing and fixing of vulnerabilities when compared with that of long-standing commercial OS software.

LinuxSecurity.com Team
Jun 22, 2015

Who's afraid of DNS? Nominet's new 'turing' tool visualises hidden security threats

UK domain registrar Nominet has shown off a striking new visualisation tool called

LinuxSecurity.com Team
Jun 11, 2015

Top security tools in the fight against cybercrime

Cybercrime is a massive global threat, and U.S. businesses are the No.1 target. For tips and advice about how best to defend against cyberattacks, Network World asked security pros to name their No.1, most valuable security tool.

LinuxSecurity.com Team
May 19, 2015

Two NTP Key Authentication Vulnerabilities Patched

NTP, the much maligned protocol abused in a number of high volume DDoS attacks a year ago, is suffering from newly patched vulnerabilities that could allow an attacker to send unauthenticated packets to a client that would be executed.

LinuxSecurity.com Team
Apr 09, 2015

Vast majority of organizations are still vulnerable to Heartbleed

According to research from Venafi, a vast majority of the world's top businesses are still vulnerable to Heartbleed, which was disclosed a year ago this month. The OpenSSL flaw impacted organizations both large and small, but the latest figures show that 74-percent of the Global 2000 remain vulnerable.

LinuxSecurity.com Team
Apr 08, 2015

OpenSSL Patch to Plug Severe Security Holes

The world is about to get another reminder about just how much of the Internet runs on technology maintained by a handful of coders working on a shoestring budget. OpenSSL

LinuxSecurity.com Team
Mar 19, 2015

Clinton's Homebrew E-Mail Server: Risky or Genius?

No, it's not always a room filled with wires and glowing blue lights. It's probably not even the size of your furnace. The personal email server used by Hillary Rodham Clinton during her time as secretary of state was probably about the size of your office desktop computer and could have been tucked quietly in a corner somewhere.

LinuxSecurity.com Team
Mar 09, 2015

No, Lizard Squad Was Not Responsible For Facebook Outage

Contrary to suggestions hacker group Lizard Squad took out Facebook, there was almost certainly no attack on the social network and its photo sharing property Instagram, which both went down late last night. According to a source with knowledge of the matter, the downtime was the result of a technical foul up. Facebook is now confirming this in statements to media.

LinuxSecurity.com Team
Jan 27, 2015

Lavabit founder wants to make

Ladar Levison is probably most well-known to Ars readers as the founder of the secure e-mail service Lavabit, which he shut down in mid-2013 in an effort to avoid being forced to comply with a US government demand to turn over users

LinuxSecurity.com Team
Jan 06, 2015

The Dismal State of Embedded Device Security

On Friday, the firm Allegro Software of Boxborough, Massachusetts, released an odd-sounding statement encouraging all its customers to

LinuxSecurity.com Team
Dec 23, 2014

Hacker Lexicon: What Is a Backdoor?

A backdoor has multiple meanings. It can refer to a legitimate point of access embedded in a system or software program for remote administration.

LinuxSecurity.com Team
Dec 11, 2014

CloudFlare Rolls Out Free SSL

In a move that will essentially double the number of SSL-protected sites on the Web in the space of 24 hours, CloudFlare on Monday said that it was enabling SSL for all of its more than two million customers for free.

LinuxSecurity.com Team
Sep 30, 2014

Performance and security in Red Hat Enterprise Linux 7

Modern datacenters and next-generation IT requirements depend on capable platforms, with open source solutions offering a strong foundation for open hybrid cloud and enterprise workloads. A powerful, unified platform enables enterprises to use a solid foundation to balance demand while utilizing new trends and technologies such as virtual machines and the open hybrid cloud.

LinuxSecurity.com Team
Sep 24, 2014

Server Security - Page 3.7

Magnet Goblin Hackers Exploit One-Day Flaws to Deploy Custom Linux Malware

New Bifrost Malware Evades Detection, Threatens Linux Server Security

Cryptocurrency Mining Migo Malware Attacks Linux Redis Servers