We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Ensuring that your systems are updated is an integral part of maintaining a secure Internet presence. Two security updates were released today for EnGarde, one for PHP and another for mod_ssl. . . .
The biggest threat to corporate security today may well be the plethora of security products that are widely deployed. This is not to say that companies should not invest in security, but rather that more attention needs to be paid . . .
TinFoil Hat Linux is a small Linux distribution that can be easily booted from a floppy disk. As from my perspective its two best sides are that you have your ring pair backuped on one place and that you can securely . . .
HP has rather less market share than CA or IBM, but is significant for its specialist products and its service capability. The company has worked hard on secure platforms, notably its Unix based Virtual Vault product. The Unix emphasis has . . .
Recently the Computer Emergency Response Team (CERT) announced that many implementations of the Simple Network Management Protocol (SNMP) are susceptible to multiple remote vulnerabilities. More than 200 vendors implement this protocol in a manner that can be exploited. . . .
The creator of the popular open source intrusion detection system gets megabucks in venture capital for a Snort start-up. The commercial potential of open source security products won a financial vote of confidence last week when the author of the hacker-busting . . .
Storage security will become an "imperative" this year as the adoption of Internet technologies undermines the comforting notion that storage networks are safe from hacker attacks. In an analysis of storage security, the Yankee Group concludes that security will become an . . .
Web application security firm KaVaDo beefed up its line of products on Tuesday when it announced a new vulnerability-assessment tool for Web applications called ScanDo. ScanDo approaches and probes Web applications the same way that an attacker would. In doing so, . . .
Update: Project founder responds below. "SmoothWall does not use shadowed passwords in their firewall implementation. While this is not inherently dangerous as firewall systems are not designed as multi-user, an unauthorized user gaining access to the system via exploitation . . .
Dan Burcaw of the Yellow Dog Linux distribution announced today that several security vulnerabilities were inadvertantly not announced as they were released. These advisories include fixes for squid, diffutils, openssh, sendmail, printtool, ucd-snmp, and tetex. Several bugfix advisories have been announced as well.. . .
Developers will find that implementing security has never been as easy as with FileCrypt SDK, Veridis' library allowing them to add strong encryption compatible with PGP to their applications.. . .
SSH Communications Security, a world-leading developer of Internet security solutions, today announced the next-generation of its leading encryption software, SSH Secure Shell 3.1, a product designed to protect end users, businesses and developers from the most common break-in method used by . . .
On the surface, it was just another turn of the endless cycle of software release, hole discovery, and patching: operating system vendor Red Hat issued an advisory Tuesday warning the world about a serious security hole in a file transfer program . . .
With concerns about computer security running high, German electronics and technology giant Siemens believes it has a simple, mouse-based alternative to the PC passwords and log-in codes that are so easy for users to forget -- and in some cases, too . . .
Joubert Berger writes, "HP's new product, HP Secure OS Software for Linux, will help businesses secure their Linux environments by offering intrusion prevention, real-time protection against attacks, and damage containment.". . .
Have you ever heard of a Linux vendor that tried to deny a security flaw in their open source product? "A number of Unix vendors have been alerted to a security flaw, but Sun Microsystems is refusing to acknowledge that any problem exists. Six vendors, including IBM, Hewlett-Packard and Sun, have been alerted to a vulnerability that ships with several Unix systems, which could allow a malicious attacker to take control of an affected system.. . .
Guardian Digital, Inc., sponsors of LinuxSecurity, today released the enterprise edition of its highly successfuly EnGarde Secure Linux server operating system. EnGarde Secure Professional is a comprehensive software solution that provides all the tools necessary to build a complete online presence.. . .
Guardian Digital, Inc., sponsors of LinuxSecurity, today unveiled Guardian Digital Secure Network, a central location for receiving product information, support, and system software services. "New Commerce Services and Systems Management Solution Delivers Secure and Affordable System Support.". . .
Fuel for those following the full disclosure vs. no-disclosure debate started by Microsoft recently. "Microsoft has admitted that it knew about a security hole in Internet Explorer (IE) a full week before it accused a security firm of acting irresponsibly for publicly disclosing details of the exploit.. . .
A small Australian company has released a Linux-based security tool it hopes will help speed corporate acceptance of the open-source operating system. InterSect Alliance has developed the first security auditing system for Linux, beating much larger organizations to the punch. . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
