Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 5 articles for you...
67
cryptographysecure communicationalgorithmMIT Fiat Cryptography Streamlines Creation of Secure Algorithms
One of the most common uses of public-key cryptography is securing data on the move. The process used to produce the code that scrambles that data as it travels over the internet has been labor intensive. That's changed, however, with anew system developed by MIT researchersfor creating that code. . Called Fiat Cryptography, the system automatically generates—and simultaneously verifies—optimized cryptographic algorithms for all hardware platforms, a process previously done by hand. In a paper presented in May at the IEEE Symposium on Security and Privacy, the researchers laid out the nuts and bolts of their system so anyone can implement it. And the process is already being used by Google to secure communication by its Chrome web browser. "We've showed that people don't have to write this low level cryptographic arithmetic code," explains Adam Chlipala, the associate professor of computer science who led the research team at MIT's Computer Science and Artificial Intelligence Laboratory that developed the Fiat Cryptography system. . MIT's Fiat Cryptography revolutionizes data security by automating the generation and verification of cryptographic algorithms, ensuring efficiency and trust.. Fiat Cryptography, Automated Algorithms, Secure Communication, MIT Research. . LinuxSecurity.com Team
Jul 31, 2019
•
Cryptography
81
password managementinternet safetyuser experienceTuring Award Winner Proposes Secure Password Management Techniques
Passwords are a bane of life on the Internet, but one Turing Award winner has an algorithmic approach that he thinks can make them not only easier to manage but also more secure. . The average user has some 20 passwords today, and in general the easier they are to remember, the less secure they are. When passwords are used across multiple websites, they become even weaker. The link for this article located at PC World is no longer available. . Managing passwords in the digital age is challenging; a Turing Award-winning algorithm simplifies this with efficient, secure passphrases customized for users.. Password Management, Algorithm Security, User Experience, Internet Safety. . LinuxSecurity.com Team
Sep 01, 2015
•
Privacy
67
encryptionsecurityhistoryThe History of A5/2 Algorithm Withdrawal from GSM Networks
Recently, I wanted to investigate when and how A5/2 has been withdrawn from both GSM networks and GSM phones alike. Unfortunately there was no existing article discussing this history online, so I went through dozens of meeting reports and other documents that I could find online to recover what had happened.. If you don't know what this is all about: It is about the A5/2 air-interface encryption algorithm that was used in certain GSM networks until about 2005-2007. A5/2 was specified as a security by obscurity algorithm behind closed doors in the late 1980ies. It was intentionally made weaker than it's (already weak) brother A5/1. The idea was to sell only equipment with A5/2 to the countries of the eastern block, while the less-weak A5/1 encryption was to be used by the western European countries. A5/2 had been reverse engineered and disclosed in the late 1990ies, and has undergone a lot of attention from cryptographers such as Ian Goldberg and David A. Wagner. In a 1999 paper, they already expect that it can be broken in real-time. The link for this article located at Harald Welte is no longer available. . The A5/2 encryption algorithm, first introduced in GSM, was designed to secure mobile communications but became outdated due to its vulnerabilities and was later phased out.. A5/2 Encryption,GSM Security,Network Encryption,Cryptography History,Air-Interface Security. . LinuxSecurity.com Team
Nov 26, 2010
•
Cryptography
76
innovationalgorithminformation technologyLaszlo Lovasz's Kyoto Prize Honors Contributions to IT and Math
Algorithm pioneer Laszlo Lovasz, whose mathematical methods have enabled myriad breakthroughs in information technology. Awards were also bestowed on Japanese physician Shinya Yamanaka for his seminal discovery that skin-cells can be substituted for those obtained from embryos, and South African artist William Kentridge for his invention of the now widespread animation technology called "drawings in motion." The link for this article located at EE Times is no longer available. . Trailblazer Andrew Yao is renowned for his significant breakthroughs in computer science and innovations in algorithm theory.. Algorithm Innovation Researcher Technology Mathematics. . Anthony Pell
Nov 12, 2010
•
Organizations/Events
67
encryptionsecurity researchalgorithmChaos Communication Congress: GSM Encryption Cracked By Engineer
A German computer engineer said Monday that he had cracked the secret code used to encrypt most of the world. Nohl revealed his success at the Chaos Communication Congress in Berlin, Germany. He said that 24 people worked independently to reproduce the code book, or binary code log, for the algorithm, which contains the equivalent of about two terabytes of data. He announced his intentions to crack the GSM algorithm at a conference in August. The link for this article located at ZDNet is no longer available. . A German technician has successfully decoded the encryption scheme employed in GSM telephone communications, exposing security flaws during the Chaos Communication Congress.. GSM Encryption, Mobile Communications, Encryption Algorithms, Security Research. . LinuxSecurity.com Team
Dec 29, 2009
•
Cryptography
67
security advisoryencryptionFreeBSDFreeBSD: Camellia Cipher Integration for Improved Network Security
The Camellia Block Cipher is a new encryption algorithm which was developed by NTT and has been specified in several Internet RFCs as well as being one of the approved encryption methods to be used by the European Union. Developers on the FreeBSD project worked with researchers from NTT to integrate their code, under a BSD license, into the CURRENT branch of FreeBSD, which will become the 7.0 release in the near future. . "The FreeBSD community will be able to interoperate with systems using the cipher in network protocols, such as IPsec, as well as having the cipher available when building products for use in Europe, a large IT market," said FreeBSD developer George V. Neville-Neil. FreeBSD is a complete and advanced, open source, Unix-like operating system which can be used as a secure and high-performance workstation, network server, or firewall. FreeBSD is developed by a team of over 200 programmers and documentation writers. Over 13,000 third-party software suites are freely available for quick installation from the FreeBSD Packages Collection. More information about FreeBSD is available on the web at https://www.freebsd.org/. The link for this article located at PRWeb is no longer available. . 'The FreeBSD community will be able to interoperate with systems using the cipher in network protoco. camellia, block, cipher, encryption, algorithm, which, developed. . LinuxSecurity.com Team
Jun 09, 2007
•
Cryptography
67
encryptioncryptographypublic keyUnderstanding Elliptic Curve Cryptography and Mathematical Concepts
Elliptic Curve Cryptography (ECC) is a public key cryptography. In public key cryptography each user or the device taking part in the communication generally have a pair of keys, a public key and a private key, and a set of operations associated with the keys to do the cryptographic operations. Only the particular user knows the private key whereas the public key is distributed to all users taking part in the communication. Some public key algorithm may require a set of predefined constants to be known by all the devices taking part in the communication. ?eDomain parameters?f in ECC is an example of such constants. Public key cryptography, unlike private key cryptography, does not require any shared secret between the communicating parties but it is much slower than the private key cryptography. . The mathematical operations of ECC is defined over the elliptic curve y2 = x3 + ax + b, where 4a3 + 27b2 ? The link for this article located at Info Sec Writers is no longer available. . Elliptic Curve Cryptography employs mathematical functions for robust public key encryption by utilizing elliptic curves.. Elliptic Curve Cryptography, Public Key Encryption, ECC Algorithm. . LinuxSecurity.com Team
Jan 24, 2007
•
Cryptography
67
security advisoryencryptioncybersecurityNtru CryptoSystems: New Strategy Amid Encryption Challenges
New leadership at security developer Ntru CryptoSystems Inc. is hoping a new services and consulting strategy will help mitigate the damage caused by problems with the company's core encryption algorithm. Once one of the premier cryptography companies in the United States, . . . . New leadership at security developer Ntru CryptoSystems Inc. is hoping a new services and consulting strategy will help mitigate the damage caused by problems with the company's core encryption algorithm. Once one of the premier cryptography companies in the United States, Ntru in the past six months has undergone a nearly complete face lift, replacing its CEO, moving away from its main business of licensing its cryptographic algorithms, slashing its staff by a third and placing many of the remaining employees on part-time status. The changes at Ntru stem from issues surrounding the company's main intellectual property, the NtruEncrypt algorithm. The algorithm is the heart of the company's Neo security tool kit line and is the basis for the Ntru public-key cryptosystem. Last fall, the company discovered there were problems with the parameters it had been recommending to customers to improve bandwidth when using the algorithm. Specifically, the problems caused random messages to fail to decrypt. As a result, someone could mount what's known as a chosen ciphertext attack, which gleans small amounts of information from each failed decryption. Over time, the attacker would be able to amass enough data to decrypt an entire message, which would call into question the security of every other message encrypted using that key. The link for this article located at eWeek is no longer available. . Ntru CryptoSystems is altering its approach due to challenges faced with its cryptographic algorithms and advisory services.. Ntru Crypto,Cybersecurity Consulting,Algorithm Security,Chosen Ciphertext Attack,Crypto Solutions. . LinuxSecurity.com Team
Jun 02, 2003
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More