Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
79
open sourcesoftware developmentvulnerability managementEU Funding Bug Bounties For Open-Source Software Security
The internet runs on open-source, and it’s often hardworking volunteer developers who spend long hours keeping the projects alive. Unfortunately, they don’t always have the time or resources they need to hunt down the bugs that inevitably spring up in these large, complex code bases. . The European Commission (EC) just made a move to improve the situation: it’s ponying up serious money for bug hunters who track down vulnerabilities in some of the most popular free and open source software around. The link for this article located at NakedSecurity / Sophos is no longer available. . The EU is sponsoring bug bounty programs to bolster the security of open-source applications by encouraging the identification of vulnerabilities.. open source funding, bug bounty programs, EU software initiative, vulnerability tracking, financial incentives. . LinuxSecurity.com Team
Jan 04, 2019
•
Security Projects
79
open sourcecode qualityproprietary softwareOpen Source Defect Rates vs Proprietary Software: Coverity Analysis
Forget bad headlines generated by the Heartbleed flaw, when it comes to code defects open source is still well ahead of proprietary software, generating fewer coding defects for every size of project, according to a new analysis by scanning service Coverity.. The firm's figures from its Scan Service show that for the C/C++ projects submitted for assessment during 2013, 493 proprietary projects representing 684 million lines of code generated an average defect rate of 0.72 per 1,000 lines of code. The link for this article located at Network World is no longer available. . Research by Coverity indicates that open source software consistently outperforms proprietary software, particularly in terms of code quality and defect prevalence.. Code Quality, Open Source Software, Software Analysis. . LinuxSecurity.com Team
Apr 18, 2014
•
Security Projects
79
open sourcestatic analysissoftware auditCoverity Scan Report: 16% Reduction In Open Source Defects
The quality and security levels of open source code are continuing to improve, according to the latest annual audit by code analysis tools vendor Coverity.. The third edition of the Coverity Scan Open Source report measured a 16 per cent reduction in static analysis defect density over the past three years among the projects subjected to scrutiny, including Firefox, Linux, PHP, Ruby and Samba. The report covers analysis of more than 11 billion lines of code from 280 open source projects. Beween 2006 and 2009, more than 11,200 defects in open source programs have been fixed thanks to Coverity - 2, 700 of those in the last year. The link for this article located at The Register is no longer available. . The latest release of the Coverity Scan Open Source report reported a 16 percent decline in the density of static analysis defects.. Code Quality Improvement, Defect Density, Open Source Projects. . LinuxSecurity.com Team
Sep 25, 2009
•
Security Projects
82
software improvementsecurity analysisstatic analysisCoverity 2008 Open Source Software Security Report Highlights
SAN FRANCISCO - May 20, 2008 - CoverityT, Inc., the leader in improving software quality and security, today announced the availability of the Scan Report on Open Source Software 2008. The Coverity Scan site was developed with support from the U.S. Department of Homeland Security as part of the federal government's 'Open Source Hardening Project.' The report is based on 2 years of analysis of more than 55 million lines of code on a recurring basis from over 250 popular open source projects with Coverity PreventT, the industry-leading static source code analysis solution. This projects seems to be on the right track in improving open-source security. What do you think? Will this project make a big impact on code quality and security?. . SAN FRANCISCO - May 20, 2008 - CoverityT, Inc., the leader in improving software quality and securit. francisco, coverityt, leader, improving, software, quality, securit. . Bill Locke
May 23, 2008
•
Government
82
secure codingsecurity auditsoftware standardsOunce Labs Initiatives for Security Standards in Code Development
The maker of a software security analysis tool is promoting quality assurance for outsourced code development. "We're going to help drive new behavior," said Jack Danahy, president and CEO of Ounce Labs Inc. of Waltham, Mass. . . .. The maker of a software security analysis tool is promoting quality assurance for outsourced code development. "We're going to help drive new behavior," said Jack Danahy, president and CEO of Ounce Labs Inc. of Waltham, Mass. Ounce Labs has published sample contract language for software development that sets specific security standards and requires a security audit of the source code. The language frees the buyer from having to pay for software that does not meet the standards. Danahy made no bones about the fact that adoption of the contract language could expand the market for his company's flagship analysis tool, Prexis. But outsiders, including at least one government IT administrator, also welcome the contract addendum. "It is incredibly significant," said Jamie Gateau, director of technology innovation for the Naval Network and Space Operations Command in Dahlgren, Va. Part of his job is overseeing software development, whether in-house or outsourced. Gateau can control the work in house, he said, "but when I'm dealing with contractors, we didn't have contract language to specify secure code. Now we finally have the beginnings of a language to talk about how we're going to hold people responsible for secure coding." The link for this article located at William Jackson is no longer available. . The maker of a software security analysis tool is promoting quality assurance for outsourced code de. maker, software, security, analysis, promoting, quality, assurance, outsourced. . Anthony Pell
Sep 07, 2004
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More