Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 5 articles for you...
81
security advisorySUSE Linuxauthentication flawSUSE Linux: Mozilla VPN Client Security Advisory for Integrity Breach
A cybersecurity researcher from SUSE, a Linux distribution manufacturer, has made public a serious security flaw in the Mozilla VPN client for Linux. . Mozilla has been slow to correct it. Yet this vulnerability could enable malicious actors to commit a host of integrity violations. In an article published on Openwall, Matthias Gerstner mentions a faulty authentication check in the Mozilla VPN Client v2.14.1. This vulnerability was discovered when, as part of a standard procedure, SUSE engineers analyzed the Mozilla VPN client before adding it to openSUSE Tumbleweed, a Linux distribution. The analysis showed that the VPN software “contains a privileged D-Bus service running as root and a Polkit policy”, which basically means that the D-Bus call will work for any user account, regardless of privileges. . A critical vulnerability in the Mozilla VPN application for Linux has been discovered, potentially resulting in various integrity violations. Explore further insights here.. Mozilla VPN, Integrity Breach, SUSE Linux, D-Bus Service, Cybersecurity Issue. . LinuxSecurity.com Team
Aug 21, 2023
•
Privacy
67
security advisoryexploitrisk assessmentSUSE: Mozilla VPN Authentication Flaw Advisory - Critical Exploit Risk
A security engineer at Linux distro maker SUSE has published an advisory for a flaw in the Mozilla VPN client for Linux that has yet to be addressed in a publicly released fix because the disclosure process went off the rails. . In a post to the Openwall security mailing list, Matthias Gerstner describes a broken authentication check in Mozilla VPN client v2.14.1 , released on May 30. Essentially, the client can be exploited by any user on a system to, among other things, configure their own arbitrary VPN setup, redirect network traffic to outside parties, and break existing VPN setups. That's no good on shared computers with multiple users. The issue was identified, says Gerstner, when an openSUSE community manager wanted to add the Mozilla VPN client to openSUSE Tumbleweed , a Linux distribution. The software was reviewed by the SUSE security team, a standard procedure, and they found the VPN software "contains a privileged D-Bus service running as root and a Polkit policy." . Lena Schmidt uncovers vulnerabilities within the Telegram Messenger app, exposing risks of unauthorized data access.. Mozilla VPN,SUSE Security,Auth Exploit,Linux Security Advisory. . LinuxSecurity.com Team
Aug 07, 2023
•
Cryptography
77
security advisoryDoS attackauthentication flawLinux Kernel: Critical Zero Day Flaw Allows Dos via KSMBD
This flaw , which has been identified that affects the ksmbd NTLMv2 authentication in the Linux kernel, is known to quickly cause the operating system on Linux-based computers to crash. Namjae Jeon is the developer of KSMBD, which is an open-source In-kernel CIFS/SMB3 server designed for the Linux Kernel. . It is an implementation of the SMB/CIFS protocol in the kernel space that allows for the sharing of IPC services and files over a network. In order to take advantage of the vulnerability, you will need to transmit corrupted packets to the server, personal computer, tablet, or smartphone that you are targeting. The attack causes what is known as “a memory overflow flaw in ksmbd decodentlmssp auth blob,” which states that nt len may be less than CIFS ENCPWD SIZE in some circumstances. Because of this, the blen parameter that is sent to ksmbd authntlmv2, which runs memcpy using blen on memory that was allocated by kmalloc(blen + CIFS CRYPTO KEY SIZE), is now negative. It is important to take note that the CIFS ENCPWD SIZE value is 16, and the CIFS CRYPTO KEY SIZE value is 8. As the heap overflow happens when blen is in the range [-8, -1], we think that the only possible outcome of this problem is a remote denial of service and not a privilege escalation or a remote code execution. . A serious vulnerability in the Linux kernel's ksmbd enables attackers to execute remote denial of service through malicious packets. Prompt remediation is recommended.. Linux Kernel,kSMBD,DoS Attack,Authentication Flaw. . LinuxSecurity.com Team
Jan 15, 2023
•
Server Security
210
security advisorysecurity issuelinux distributionSudo: Local User Root Access Advisory with Important Security Fix
A dangerous (but now-fixed) Sudo vulnerability allowed any local user to gain root privileges on Linux systems without requiring authentication. . Sudo is a Unix program that enables system admins to provide limited root privileges to normal users listed in the sudoers file, while at the same time keeping a log of their activity. It works on the Principle of Least Privilege where the program gives people just enough permissions to get their work done without compromising the system's overall security. . Sudo is a command-line utility in Unix-like systems that allows system administrators to grant specified users elevated access to run commands as the superuser or another user.. Sudo Vulnerability, Root Access, Linux Security, User Privileges. . Brittany Day
Jan 27, 2021
•
Security Vulnerabilities
81
storage securityauthentication flawinternet exposureExposed iSCSI Storage Clusters Present Major Data Breach Threats
Over 13,000 iSCSI storage clusters are currently accessible via the internet after their respective owners forgot to enable authentication. . This misconfiguration has the risk of causing serious harm to devices' owners, as cyber-criminal groups could access these internet-accessible hard drives (storage disk arrays and NAS devices) to replace legitimate files with malware, insert backdoors inside backups, or steal company information stored on the unprotected devices. The link for this article located at ZDNet is no longer available. . More than 12,000 open SMB file shares can be found on the internet, posing a threat of unapproved access and possible information leaks.. iSCSI Access Risk, Storage Cluster Security, Internet Vulnerability. . LinuxSecurity.com Team
Apr 02, 2019
•
Privacy
83
security advisorycryptographic weaknessauthentication flawNikon: Security Flaw in Image Authentication Allows Forged Images
Russian encryption specialist ElcomSoft has discovered flaws in Nikon's systems for ensuring that images have not been tampered with.. The flaw in Nikon's Image Authentication System creates a means to produce forged pictures that would successfully pass validation checks. The security weakness uncovered by ElcomSoft revolves around cryptographic shortcomings in how the secure image signing key is handled by Nikon digital cameras. The shortcoming created a means for researchers to extract the original signing key from a Nikon camera. This, in turn, facilitated the creating of manipulated images with a fully valid authentication signature, as explained in greater detail here. The link for this article located at The Register UK is no longer available. . Canon's Photo Verification vulnerability enables counterfeit photos to be validated, threatening digital authenticity.. Nikon Image Security, Authentication Flaws, Tampering Risks, Cryptographic Weaknesses. . LinuxSecurity.com Team
May 05, 2011
•
Hacks/Cracks
83
security advisoryauthentication flawRSA authenticationUniversity of Michigan: RSA Authentication Flaw and Voltage Attack
Three University of Michigan computer scientists say they have found a way to exploit a weakness in RSA security technology used to protect everything from media players to smartphones and e-commerce servers. . RSA authentication is susceptible, they say, to changes in the voltage supplied to a private key holder. The researchers The link for this article located at Network World is no longer available. . Scientists reveal a power manipulation method targeting DSA verification, jeopardizing credential owners' protection and affecting technology broadly.. RSA Authentication, Authentication Flaws, Voltage Attack, Cryptography Research. . LinuxSecurity.com Team
Mar 04, 2010
•
Hacks/Cracks
67
security advisoryauthentication flawMITM attackIETF Security Advisory: SSL Protocol Fix for MITM Attack Severity Critical
The Internet Engineering Task Force (IETF) has completed a security extension to the Secure Sockets Layer (SSL) protocol that fixes a flaw affecting browsers, servers, smart cards, and VPN products, as well as many lower-profile devices, such as Webcams, that contain the protocol embedded in their firmware.. Members of the IETF, the Industry Consortium for the Advancement of Security on the Internet, and several vendors, including Google, Microsoft, and PhoneFactor, have been working on a fix since October for the bug, which is basically a gap in the authentication process that lets an attacker execute a man-in-the-middle (MITM) attack and inject his own text into the encrypted SSL connection. The gap occurs in the renegotiation process of the session, when some applications require the encryption process be refreshed at a certain point. Marsh Ray, a senior software development engineer for PhoneFactor who first discovered the SSL bug in August, says the IETF's extension to SSL, which is the Transport Layer Security (TLS) protocol in IETF parlance, secures the renegotiation process. "This is a short extension to the handshake protocol of TLS," Ray says. "Some identifiers from the previous session are carried over to the handshake in the subsequent session." The link for this article located at Dark Reading is no longer available. . Members of the IETF, the Industry Consortium for the Advancement of Security on the Internet, and se. internet, engineering, force, (ietf), completed, security, extension, secure, sockets. . LinuxSecurity.com Team
Jan 13, 2010
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More