Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
83
security advisoryhigh severityapacheApache: 2025:0011-2 Critical: Middleman Setup Leaks Protected Services
Maintainers of the open-source Apache webserver are warning that their HTTP daemon is vulnerable to exploits that expose internal servers to remote attackers who embed special commands in website addresses.. The weakness in 1.3 and all 2.x versions of the Apache HTTP Server can be exploited only under certain conditions. For one, they must be running in reverse proxy mode, a setting often used to perform load balancing or to separate static content from dynamic content. And even then, internal systems are susceptible to unauthorized access only when certain types of reverse proxy rewrite rules are used. Nonetheless, the vulnerable reverse proxy configurations are common enough that Apache maintainers issued an advisory on Wednesday recommending users examine their systems to make sure they're not at risk. The link for this article located at The Register UK is no longer available. . The weakness in 1.3 and all 2.x versions of the Apache HTTP Server can be exploited only under certa. maintainers, open-source, apache, webserver, warning, their, daemon, vulnerable. . LinuxSecurity.com Team
Oct 06, 2011
•
Hacks/Cracks
83
security advisorysoftware patchauthentication issueGmail: Cookie Exploit Severity Mitigated For User Protection
A security hole in Google's Gmail service, which reportedly made it easy for hackers to access users' e-mail, has been corrected, Google says. The security breach made it easy for hackers to obtain and exploit users' cookie files. . . .. A major security hole was discovered in Google's Gmail service, according to several news reports that surfaced over the weekend, but the problem reportedly was corrected as of Saturday. "Google was recently alerted to a potential security vulnerability affecting the Gmail service. We have since fixed this vulnerability, and all current and future Gmail users are protected," Google says in a statement. Simple Hack An Israeli hacker named Nir Goldshlagger told an Israeli publication about the flaw. The vulnerability allowed hackers access into Gmail accounts by obtaining the Gmail user's cookie file, which allowed the user to log onto Gmail without retyping his or her password, according to Goldshlagger. Using the cookie, the hacker could then obtain authentication as the Gmail user. . A major security hole was discovered in Google's Gmail service, according to several news reports th. security, google's, gmail, service, which, reportedly, hackers, users. . LinuxSecurity.com Team
Nov 01, 2004
•
Hacks/Cracks
83
security advisoryweb applicationmicrosoftMicrosoft ASP.NET: Critical Access Risk from URL Processing Flaw
Updated: A glitch in the platform's processing of URLs could allow intruders to access password-protected sections of a Web site simply by altering a URL. . . .. Updated: A glitch in the platform's processing of URLs could allow intruders to access password-protected sections of a Web site simply by altering a URL. Microsoft Corp. is investigating a reported security flaw in its ASP.NET technology that could allow intruders to access password-protected sections of a Web site simply by altering a URL. The hole involves a glitch in ASP.NET's processing of URLs, a process known as canonicalization. According to an advisory posted Tuesday on Microsoft's Web site, "an attacker can send specially crafted requests to the server and view secured content without providing the proper credentials." The link for this article located at Simone Kaplan is no longer available. . Updated: A glitch in the platform's processing of URLs could allow intruders to access password-prot. updated, glitch, platform's, processing, allow, intruders, password-prot. . LinuxSecurity.com Team
Oct 11, 2004
•
Hacks/Cracks
74
security advisoryDoSnetwork threatNortonLifeLock: Important Alert About VPN DoS Vulnerability and Risks
Symantec has warned of a serious flaw in its VPN and firewall server products that could allow an attacker to take over affected systems and gain access to corporate networks. . . .. Symantec has warned of a serious flaw in its VPN and firewall server products that could allow an attacker to take over affected systems and gain access to corporate networks. Internet Security Systems (ISS) X-Force had first discovered the flaw in the Entrust module running on some of Symantec's gateway products. The module, which implements the IKE key exchange protocol, was not properly validating incoming ISAKMP packets. Internet Security Association and Key Management Protocol (ISAKMP) is a standard protocol for creating dynamic VPN tunnels. By sending sufficiently malformed ISAKMP packets, an attacker could cause a DoS condition in the affected VPN component. Or, if specifically crafted, the malformed ISAKMP packets could potentially lead to a further possible compromise of the VPN server. The link for this article located at CXOtoday Staff is no longer available. . A significant vulnerability in Norton’s VPN and firewall threatens enterprise systems and escalates security worries.. Symantec VPN Vulnerability,Firewall Security Flaw,ISAKMP Protocol Threats. . Anthony Pell
Sep 02, 2004
•
Network Security
74
network securityinformation securitycyber threatKevin Curran Discusses Network Access Risks and Cyber Threats
Kevin Curran, an IT lecturer at the University of Ulster's Magee campus, said companies across the province using wireless computer networks were leaving themselves open to hackers who can use their systems to surf the net for free - even for . . . . Kevin Curran, an IT lecturer at the University of Ulster's Magee campus, said companies across the province using wireless computer networks were leaving themselves open to hackers who can use their systems to surf the net for free - even for accessing child pornography. As part of a research project, Mr Curran and a colleague were able to penetrate 15 company networks in Derry in a few hours using just a laptop, and discovered another five which could have been hacked with little effort. They used around £80 worth of other equipment, a wireless WiFi card and a magnetic mount omnidirectional antenna, which can be found at any computer store. The link for this article located at Belfast Telegraph is no longer available. . Kevin Curran, an IT lecturer at the University of Ulster's Magee campus, said companies across the p. kevin, curran, lecturer, university, ulster's, magee, campus, companies, across. . Anthony Pell
Dec 04, 2003
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More