Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -3 articles for you...
67
security advisorynetwork securityIPFireIPFire 2.29 Core Update 193: Key Improvements in Security and Defense
The latest IPFire 2.29 Core Update 193 release is a significant milestone for Linux security admins looking to boost their network defenses. This powerful, open-source firewall distribution has now integrated post-quantum cryptography, enhancing its resilience against future quantum computing threats. . By default, new IPsec tunnels will now leverage strong cryptographic algorithms like ML-KEM, securing your network's encrypted traffic against even the most sophisticated attacks. Alongside these security advancements, this update also brings crucial component updates like glibc 2.41 and Binutils 2.44, fortifying the firewall's performance and stability with optimized code generation techniques. With a host of updates across key packages and the inclusion of DNS-over-TLS for encrypted DNS queries, IPFire 2.29 is designed to provide cutting-edge protection in an ever-changing digital landscape. We Linux security admins should prioritize installing this update to harness these advanced security features and ensure our networks are safeguarded against present and emerging threats. In addition to implementing the new cryptographic protocols for IPsec tunnels, this update addresses several vulnerabilities. It includes comprehensive enhancements across various components, making it a critical upgrade for maintaining robust and secure network environments. In this article, I'll examine the new features and updates included in IPFire 2.29 Core Update 193, offering practical insights to help you make the most of these improvements. Preparing for Future Threats with Post-Quantum Cryptography One of the key updates in IPFire 2.29 is its implementation of post-quantum cryptography for IPsec tunnels. As quantum computing technology progresses, its decryption capabilities become an ever-increasing threat to existing cryptographic algorithms. Post-quantum cryptography uses quantum-resistant algorithms designed to protect data against the decryption abilities of quantum computers. By includingthis cryptography, IPFire ensures its IPsec tunnels provide robust protection from threats both present and anticipated in the future. IPsec tunnels that use strong cryptographic algorithms like ML-KEM by default greatly strengthen encrypted traffic within your network, creating more robust protection. As cybersecurity threats advance over time, IPFire's vision in including post-quantum cryptography displays its dedication to providing future-proof security solutions. We, Linux security administrators, should make this change to new IPsec tunnels so our networks stay ahead of this cyber arms race and gain superior protection. Enhanced Performance and Stability Through Updated Components IPFire 2.29 Core Update 193 introduces several important component updates alongside its quantum-resistant encryption feature. Notable among them are updates to the GNU C Library 2.41 and Binutils 2.44 , which have significant impacts. THE GNU C Library is integral to the Linux operating system's performance and application stability. By updating to version 2.41, this upgrade enhances system call performance while adding various security and functionality improvements. Binutils 2.44, including core tools like the GNU assembler and linker, further increases IPFire's performance. Optimized versions of these essential compilation tools help accelerate software compilation speeds. This means an even stronger firewall system capable of efficiently handling demanding network security tasks. Securing DNS Queries with DNS-over-TLS IPFire 2.29 Core Update 193 offers another significant advancement with support for DNS-over-TLS (DoT) . DNS queries provide essential services, but traditional ones sent as plain text leave them vulnerable to various attacks, such as man-in-the-middle attacks and eavesdropping. DNS-over-TLS encryption adds another level of protection against interception or manipulation by providing an extra layer of protection and keeping traffic secure from interruption. Security admins lookingto increase privacy and integrity can greatly benefit from configuring DNS-over-TLS (DoT) within IPFire. DoT encryption protects internal DNS resolutions against external threats while remaining private, providing additional layers of defense in environments where privacy and data security are paramount. Addressing Vulnerabilities for a Safer Network Environment Alongside new features, IPFire 2.29 Core Update 193 addresses multiple vulnerabilities to ensure system protection against known threats. Staying up-to-date with software patches and fixes is key for network security; thus, this update includes patches for multiple security issues that malicious actors might otherwise exploit. We, Linux security admins, must include updates in our routine maintenance schedule to safeguard our network against potential attacks. IPFire 2.29 helps create a safer network environment capable of withstanding various cyber threats by immediately addressing vulnerabilities as they arise. Staying Current with Comprehensive Package Updates Updating a firewall's core components is critical, but maintaining all associated packages also plays a key role in ensuring maximum security. IPFire 2.29 Core Update 193 includes updates for several packages, including bug fixes, security patches, and potentially new features. Admins prioritizing maintaining an up-to-date system can take advantage of technological innovations and security measures that keep pace with advancements while minimizing potential vulnerabilities and optimizing network security tools' functionality at maximum performance levels. IPFire's dedication to keeping its packages current displays its position as a reliable firewall solution. Our Final Thoughts on Improving Network Security with IPFire 2.29 Core Update 193 IPFire 2.29 Core Update 193 brings many enhancements and features essential for admins looking to maintain a robust network infrastructure. These features include post-quantum cryptography support, updated core components,DNS-over-TLS support, and ongoing vulnerability management, creating an up-to-date firewall solution suitable for the future. As cyber threats proliferate, our tools and strategies for mitigating them must advance. IPFire 2.29 Core Update 193 showcases this advancement with cutting-edge features designed to address both current and emerging threats—something security admins will appreciate as more than an incremental enhancement. Rather, it offers real solutions for protecting digital perimeters efficiently. You can download IPFire 2.29 Core Update 193 from the official IPFire website. . Upgrade IPFire by integrating post-quantum cryptography and DNS-over-TLS to bolster your defense against emerging threats.. IPFire, post-quantum cryptography, network security, DNS-over-TLS. . Brittany Day
Apr 14, 2025
•
Cryptography
78
security advisorysecure bootcomponent updateRocky Linux 8.5 Enhances Security With Secure Boot Support
Rocky Linux 8.5 is now out with Secure Boot support and updated components. The enterprise OS is yet another free and open-source CentOS alternative based on Red Hat Enterprise Linux. . Derived from Red Hat Enterprise Linux 8.5 , Rocky Linux 8.5 is here to introduce an important feature for the mass adoption of this CentOS Linux alternative, namely Secure Boot support. This is the first release of Rocky Linux to include the official Rocky Linux signed Secure Boot shim, but users need to validated it to ensure that it’s properly activated. As such, the developers ask users to run a few commands after installing Rocky Linux 8.5. The link for this article located at 9 to 5 Linux is no longer available. . Rocky Linux 8.5 brings Secure Boot integration and upgraded features, boosting its role as a reliable substitute for CentOS.. Rocky Linux, Secure Boot, CentOS Replacement, Enterprise OS, Updated Components. . LinuxSecurity.com Team
Nov 16, 2021
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More