We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
A senior Linux kernel developer has pointed to an instance of what he calls a lax approach to security in the Linux kernel, citing the case of a serious vulnerability that is now more than a month old and is yet to be fixed.
There is a big different between compliance and security. The PCI-DSS (Payment Council Industry Data Security Standard) is the measure against which e-commerce security is measured and it is now in the process of gearing up for a major update at the end of the year.
With the significant prevalence of Linux web servers globally, security is often touted as a strength of the platform for such a purpose. However, a Linux based web server is only as secure as its configuration and very often many are quite vulnerable to compromise.
Apple has tapped a a noted hacker for its security team. Wired reported that the company has hired Kristin Paget, who was part of a small team of hackers who helped lock down Windows Vista for Microsoft before that OS shipped.
Rootkit.Linux.Snakso.a is designed to infect the Linux kernel version 2.6.32-5-amd64 and adds an iframe to all served web pages by the infected Linux server via the nginx proxy.
One of the more advanced rootkits to have hit town in recent memory has got security researchers across the globe in a tizz, even though it hasn
