Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 9 articles for you...
67
authentication methodpasskeyscloud authenticationGitHub Passkeys Launch: Cloud-Synced Security for Linux Users
GitHub has officially rolled out its passkeys security feature for general availability, following a two-month beta testing phase. Passkeys introduce a cloud-synced authentication system using cryptographic key pairs, allowing users to access websites and applications using their screen-lock PIN, biometrics, or physical security key. . This combines the security aspects of passwords and two-factor authentication (2FA) into a single step, streamlining secure access to online services. "We found that Linux and Firefox users struggled to use passkeys, as those platforms don't yet have strong support for passkeys," GitHub said. "As a result, we decided to enable cross-device registration of passkeys. That means you can register a passkey on your phone while you're using your desktop. The passkey lives in the phone, but users can connect it to their desktop and set up and authenticate through the desktop's browser. This enables Linux and Firefox users to set up passkeys." . GitHub introduces passkeys, integrating passwords with two-factor authentication for improved security access across all platforms.. GitHub Passkeys, Online Authentication, Cloud Security, Two-Factor Authentication. . LinuxSecurity.com Team
Sep 27, 2023
•
Cryptography
81
security enhancementbiometric securityauthentication methodKeyboard Dynamics: Elevating Multi-Factor Authentication Security
Using multi-factor authentication (MFA) is more secure than relying on passwords alone – but could it be made even better?. There is no shortage of ideas, one of which is keyboard dynamics (or biometrics), based on the long-understood observation that each person’s typing style is unique to them.. Investigating the role of keystroke patterns in strengthening multi-factor authentication systems, surpassing the protection offered by mere passwords.. Multi-Factor Authentication, Biometric Security, Keyboard Behavior. . LinuxSecurity.com Team
Mar 16, 2018
•
Privacy
79
two-factor authenticationmobile securitycloud securityGoogle Offers Free Mobile 2FA to Strengthen Cloud Security
Google is now providing free mobile phone two-factor authentication (2FA) for Google Apps. This demonstrates to the market that 2FA is the right level of security to have for the growing number of cloud-based applications.. When organisations take all their cloud applications from Google, this Google offering could be seen as a threat to third-party 2FA vendors and their channel partners. As long as the customer is happy with just using SMS passcodes, they will tend to take Google. When organisations take all their cloud applications from Google, this Google offering could be seen. google, mobile, phone, two-factor, authentication, (2fa). . LinuxSecurity.com Team
Oct 22, 2010
•
Security Projects
81
security measureuser accountsaccount securityBoost Google Account Security With Two-Step Authentication
. Today, Google is announcing that it The link for this article located at TechCrunch is no longer available. . Apple boosts user safety through the introduction of biometric verification, making account access more secure.. Two-Step Authentication, Google Security, Account Protection. . LinuxSecurity.com Team
Sep 20, 2010
•
Privacy
79
security toolauthentication methodport knockingFwknop: A Powerful Tool for Secure Port Knocking Techniques
Port Knocking came about in around 2003, but it has various weaknesses. There are plenty of implentations though (some quite advanced). Most of the problems are fixed however by fwknop! fwknop stands for the . The link for this article located at Dark Reading is no longer available. . Explore the functionalities of Fwknop, a sophisticated port knocking solution that fortifies network defenses.. Fwknop Port Knocking, Network Security Tool, Authentication Methods, Open Source Security Solutions. . LinuxSecurity.com Team
Oct 08, 2008
•
Security Projects
74
network securitysecurity flawsauthentication methodWPA Standard Security Issues: Expert Analysis of Wireless Threats
A paper written by a security expert claims the new Wi-Fi Protected Access (WPA) security standard may be less secure, in certain scenarios, than the wireless standard it was designed to replace. . .. A paper written by a security expert claims the new Wi-Fi Protected Access (WPA) security standard may be less secure, in certain scenarios, than the wireless standard it was designed to replace . In the paper, "Weakness in Passphrase Choice in WPA Interface," Robert Moskowitz, a senior technical director at ICSA Labs, part of TruSecure, describes a number of problems with the new WPA standard, including the ability of attackers to "sniff" critical information from wireless traffic and to discover the value of a wireless network's security key. WPA is a new security standard based on work by the Institute of Electrical and Electronics Engineers Inc. (IEEE) on the 802.11i wireless security standard. WPA is intended to replace Wired Equivalent Privacy (WEP), the most common standard for securing data on wireless networks. The link for this article located at ComputerWeekly is no longer available. . A cybersecurity analyst uncovers vulnerabilities in the recent WPA protocol versus the older version. Discover the details of the analysis.. Wi-Fi Security,WPA Standard,Security Flaws,Network Protection,Authentication Method. . Anthony Pell
Nov 11, 2003
•
Network Security
78
security advisorysecurity flawwireless securityCisco Wireless LAN: Alert on Dictionary Attacks Threatening LEAP Security
The proprietary security system used by Cisco Systems Inc. to protect wireless LANs widely deployed by enterprises can be defeated by a "dictionary attack" designed to crack passwords. To counter the security threat, the company is warning customers to institute strong . . . . The proprietary security system used by Cisco Systems Inc. to protect wireless LANs widely deployed by enterprises can be defeated by a "dictionary attack" designed to crack passwords. To counter the security threat, the company is warning customers to institute strong password policies. Cisco posted a security bulletin on its Web site on Aug. 7 about the vulnerability of its Lightweight Extensible Authentication Protocol (LEAP) to dictionary attacks, according to Ron Seide, product line manager in the company's wireless business unit. In that bulletin, Cisco acknowledged the flaw and said, "As with most password-based authentication algorithms, Cisco LEAP is vulnerable to dictionary attacks. Creating a strong password policy is the most effective way to mitigate against dictionary attacks. This includes using strong passwords and periodically expiring passwords." The link for this article located at ComputerWorld is no longer available. . Cisco has warned about vulnerabilities in its WLAN security that could be vulnerable to dictionary attacks, advising users to adopt strong password practices for better security. Wireless Security, Cisco Systems, Password Policies, WLAN Security, Authentication Methods. . LinuxSecurity.com Team
Oct 03, 2003
•
Vendors/Products
74
security measuresuser authenticationauthentication methodUnderstanding Basic Authentication: A Simple Web Security Protocol
The most basic form of Web-based user authentication is known as Basic Authentication. This is an amazingly simple and very old protocol (well, in Web years, anyway) which doesn't rely on any of the fancy encryption, cookies, checksums, or much of anything else that currently exists.. . .. The most basic form of Web-based user authentication is known as Basic Authentication. This is an amazingly simple and very old protocol (well, in Web years, anyway) which doesn't rely on any of the fancy encryption, cookies, checksums, or much of anything else that currently exists. When your browser requests a secure document, the server looks to see if the request contains a username and password to authenticate you. If not, it responds with an HTTP 401 response code. Your browser then displays a dialog box asking for a username and password. The link for this article located at Linux Magazine is no longer available. . Basic Authentication is an age-old method that lacks contemporary security enhancements such as data encryption.. User Authentication, Basic Protocol, Web Security. . Anthony Pell
May 21, 2002
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More