Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
82
securitynational securityNSAUnderstanding NSA Enhancements In The Android Ecosystem
Tech giants listed as part of the National Security Agency. So there The link for this article located at BusinessWeek is no longer available. . So thereThe link for this article located at BusinessWeek is no longer available.. giants, listed, national, security, agency, therethe, article, located. . Dave Wreski
Jul 05, 2013
•
Government
74
security advisorycritical issueweb applicationJava Apps Security Advisory: Critical Issues Found in Spring Framework
A recent security assessment of an application by Ounce Labs has resulted in the discovery of two vulnerabilities that can affect Java Web applications that use the Spring Framework. Spring has been downloaded more than 5 million times to date, which means the security vulnerabilities identified could affect countless companies that use this framework."One of the problems is there's no default checking to make sure the users are only submitting fields that are visible in the form," Berg said. "That means someone can submit additional data in a request and put it into the Java bean." "The vulnerabilities are not flaws [in the framework]. The issue is developers not understanding the complexity of the framework they're using." Ryan Berg Chief scientist, co-founder, Ounce Labs. So is this a security flaw in the framework or how developers are using it? . The link for this article located at searchsoftwarequality is no longer available. . An in-depth analysis uncovers vulnerabilities in the Spring Framework that impact Java applications. Learn additional details.. Spring Framework vulnerabilities, Java application security, critical assessment. . Bill Locke
Jul 21, 2008
•
Network Security
67
security flawcryptographyNISTNIST Reports Security Flaws In FIPS Cryptographic Modules Assessment
About half of the cryptographic modules submitted for Federal Information Processing Standard validation have security flaws, a survey by the National Institute of Standards and Technology has found. Almost all evaluated products had documentation errors, said Annabelle Lee, director of NIST's . . . . About half of the cryptographic modules submitted for Federal Information Processing Standard validation have security flaws, a survey by the National Institute of Standards and Technology has found. Almost all evaluated products had documentation errors, said Annabelle Lee, director of NIST's Cryptographic Module Validation Program. Speaking today at the Federal Information Assurance Conference at the University of Maryland, Lee cited the impact the FIPS validation program is having on cryptography vendors. She said 80 of 164 crypto modules submitted for evaluation had flaws involving physical security, random number generation or key management. Of 332 algorithms validated, 88, or about one-fourth, had security flaws, and about two-thirds had documentation errors. The link for this article located at gcn.com is no longer available. . Approximately 50% of the assessed cryptographic systems exhibit deficiencies in their validation protocols and inaccuracies in their documentation.. Cryptographic Modules,FIPS Validation,NIST Standards,Security Assessment,Documentation Errors. . LinuxSecurity.com Team
Oct 29, 2002
•
Cryptography
82
homeland securityinfrastructuretechnology reviewReview Board For Homeland Security Technology Assessment Initiated
The White House budget office said on Friday it was setting up a review board to assess the technology needs of the proposed Department of Homeland Security. "This new department should have one world-class infrastructure, and on the books right now . . . . The White House budget office said on Friday it was setting up a review board to assess the technology needs of the proposed Department of Homeland Security. "This new department should have one world-class infrastructure, and on the books right now are plans totaling between $1 billion and $2 billion. And so a review board has been constituted to pick the best of those and to move forward with one plan," White House budget director Mitch Daniels said. President Bush has proposed folding all or parts of 22 agencies--including the Secret Service, Coast Guard and Border Patrol--into a new department to better guard against a Sept. 11-type attack. The link for this article located at ZDNet is no longer available. . The White House budget office said on Friday it was setting up a review board to assess the technolo. white, house, budget, office, friday, setting, review, board, assess, technolo. . Anthony Pell
Jul 15, 2002
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More