Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
79
application securitythreat detectionattack preventionEnhance Application Security Using PHPIDS And ModSecurity Tools
I am a fan of modsecurity ( // ) as a fast and cheap way to get decent protection for application layer attacks. But, as you know, risks are increasing and when the risk analysis performed to your organization shows that application disruptions have a big impact to the core business, it's time to strengthen controls and think about delivering protection from the code itself.. I have found useful PHPIDS library, which detects XSS, SQL Injection, header injection, directory traversal, DoS and LDAP attacks. Since it works from code, you can get the output and send it to your favorite alert vault to correlate security events. Version 0.6.4 was recently released. More information at Want to use same functionality in perl? Try /dist/CGI-IDS/view/lib/CGI/IDS.pm . It is based on php-ids. The link for this article located at SANS is no longer available. . Leverage the PHPIDS library to robustly identify XSS and SQL Injection attacks, thereby strengthening the security of your application.. application security, PHPIDS, threat detection, ModSecurity, attack prevention. . LinuxSecurity.com Team
Jun 14, 2010
•
Security Projects
79
security advisorycritical patchPHP securityHardened-PHP 0.1.1: Critical Patch for Code Protection Advisory
The Hardened-PHP project team is pleased to announce the release of version 0.1.1 of our PHP security hardening patch. This new Hardened-PHP release is the first one that is publicly announced and is considered stable on atleast linux systems. . . .. The Hardened-PHP project team is pleased to announce the release of version 0.1.1 of our PHP security hardening patch. This new Hardened-PHP release is the first one that is publicly announced and is considered stable on atleast linux systems. Hardened-PHP is a patch against the PHP codebase which adds security hardening features to it to protect servers on the one hand against a number of well known problems in hastily written PHP scripts and on the other hand against potential unknown vulnerabilities within the engine itself. Hardened-PHP provides: + Protection of the Zend Memory Manager with canaries + Protection of Zend Linked Lists with canaries + Protection against internal format string exploits + Protection against arbitrary code inclusion + Syslog logging of attackers IP We consider Hardened-PHP 0.1.1 to be the best version of Hardened-PHP available and we strongly recommend that users of older versions upgrade as soon as possible. Hardened-PHP is available for download via HTTP from The distribution file name is: hardened-php-4.3.6-0.1.1.patch.gz MD5 checksum: 62f7d49b89c93dace247c2bc189b7503 Yours, The Hardened-PHP Project Team... Hardened PHP - Hardened-PHP The link for this article located at php.net is no longer available. . The Hardened-PHP project team is pleased to announce the release of version 0.1.1 of our PHP securit. hardened-php, project, pleased, announce, release, version, securit. . LinuxSecurity.com Team
May 17, 2004
•
Security Projects
77
java securitydecompiler threatscode protectionProtecting Java Code from Decompiler Threats and Techniques
ava programs are especially vulnerable to decompilers, because Java source code is compiled to Java bytecode. But there are techniques to make decompilation harder. It is a difficult prospect to take machine level code and translate it backwards into language level . . . . ava programs are especially vulnerable to decompilers, because Java source code is compiled to Java bytecode. But there are techniques to make decompilation harder. It is a difficult prospect to take machine level code and translate it backwards into language level code with a complex programming language. Today, many modern compilers have built-in security features that remove all variables and function names, move code to optimize execution, strip all comments, and make the translation as difficult as possible. Unfortunately, it is easy to recover an assembler language version of a Java program. This is because Java's constant pool contains a great deal of information about the source code. Java programs are especially vulnerable to decompilers, because Java source code is compiled to Java bytecode, which is a platform independent abstraction layer for the virtual machine. Because Java's bytecode contains interface and type information that runs safety checks on the language before it is actually run on the machine, decompiling is much easier in Java than most other development languages. The link for this article located at Earthweb is no longer available. . ava programs are especially vulnerable to decompilers, because Java source code is compiled to Java . programs, especially, vulnerable, decompilers, because, source, compiled. . LinuxSecurity.com Team
Jun 11, 2001
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More