Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it c...
Critical security bug has been discovered in the Linux kernel within do_brk() function that may lead to full compromise of vulnerable system. Successful exploitation of do_brk() leads to full compromise of vulnerable system, including gaining full uid 0 privileges... EnGarde Secure Linux is not vulnerable to this exploit and no update is necessary. Other vendors are expected to publish updates shortly.. . .
A UK based security firm claimed today that digital attacks on Web sites using the Linux operating system have reached an all-time high over the last three months. British firm mi2g claimed that Windows based servers were more resilient from March . . .
If you are hosting your Web site on your own server, you need to pay particular attention to security. You should probably install intrusion detection software such as Tripwire. If you're running a Web server you need to be aware . . .
Bayesian filtering works very well, measured at greater than 99.9 percent accuracy at detecting spam and other unwanted e-mails. In his paper, "A Plan For Spam", Paul Graham popularized Bayesian filtering on word groupings to prevent spammers from getting their messages . . .
BIND 8.4.3 is a maintenance release of BIND 8.4. It includes the BIND 8.4.2 release which includes a security fix (also released as BIND 8.3.7). EnGarde has updates available; other vendors expected to follow shortly. It is not yet known if this impacts BIND-9; updates to follow.. . .
Nearly half of the nation's fastest-growing companies suffered a recent breach in information security, according to a survey released Monday by consulting giant PricewaterhouseCoopers.. . .
It is amazing how much easier it is to get through an inbox uncluttered by unwanted messages. After a week of email nearly free of spam and viruses, the time and effort it took to configure a Linux mail server with . . .
As web services become more complex and involve interaction between multiple parties, users will require more versatile security. Simple, point-to-point web services can be secured in much the same way as interactive web sessions are secured today, by using Secure Sockets . . .
In part one of this short article series we looked at some of the advantages of Oracle's row level security, what it can be used for, and looked at a simple example of how it works. We'll conclude this series by . . .
Do you want to be aggressive, very aggressive in stopping spam? Then what you might want to do is to set up a fake open proxy or e-mail relay as a honeypot.. . .
The Linux server market is expected to grow by 35% from last year, according to research firm IDC. Many of these Linux systems are replacing Unix in corporations looking to reduce IT costs. However, at the same time, there are more attacks on Linux than ever before. So, if you're considering a migration from your Unix systems to Linux, it's important to keep security in mind.. . .
We used to have simple web sites. The web server sent HTML to the browser which displayed it. This was a "brochureware" site; designed for marketing or advertising. There was no business data anywhere near the web site. . .
With over 10 years experience of defending against Internet Security threats, Tom Salkield, Managing Director of NetConnect, has seen it all. NetConnect, part of Netstore plc, is one of founders of the UK Internet Security industry, and Tom has dealt with . . .
This paper is about using Nessus to scan Windows networks and various scenarios one might encounter. It does not talk about running Nessus from a Windows machine but on a Windows machine or network. In other words, Windows computers are targets. . .
Companies should take the proprietary route to provide security for web services-based transactions over the next three years, according to analysts. In a research paper, Security Pattern Standards Face a Long Road to Maturity, analyst Gartner advises firms to rely on vendor-provided technology to provide security for web services-based transactions until 2006. . .
Only 3 percent of Web servers running the open-source version of a secure communications component, OpenSSL, may be using the latest, bug-free software, according to a recent survey by Internet watcher NetCraft. The OpenSSL secure sockets layer software allows servers to . . .
Red Hat Inc's Enterprise Linux 4 will feature far greater support for security policy and process management, thanks to work emerging from the US Government's National Security Agency, ComputerWire has learned.. . .
Many security professionals find themselves saddled with the job of ridding their companies of spam. Regardless of whether spam is a security issue, tackling the problem is a good way for security pros to wow management. "There are very few . . .
This is the second part of our interview with two UK hackers dryice and frixion who were implicated in testimony during a recent trial over a denial of service attack on one of the largest ports in the US. Here they . . .
Linux cannot hold a candle to Microsoft in the fight for OS space yet, but it is gaining popularity among enterprises because of its low cost and support from governments. According to IDC, paid shipments of Linux server operating environments captured . . .
