Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 5 articles for you...
210
security advisoryexploitdata exchangeApple M1RACLES Covert Channel Flaw: Discovery and Implications
Hector Martin, a hacker who is porting Linux to Apple Silicon Macs through Asahi Linux, has discovered a novel covert channel vulnerability on the M1 chip, calling it ‘M1RACLES’ and tracked as CVE-2021-30747. The flaw lies in the design of the chip itself, allowing any two applications running under an OS to covertly exchange data between them without using memory, sockets, files, or any other features that are meant to be used for data exchange. "While this shouldn’t be allowed as it bypasses OS security layers, it is nothing to worry about in practice." . This problem applies even if the two intercommunicating processes belong to different users and run on different privilege levels. Because this vulnerability is bound to the chip itself, it doesn’t matter if the user is running macOS, or Linux, or OpenBSD, or anything else on it. Every M1 device is affected by M1RACLES, and the only mitigation that can address the issue is to run the entire OS as a virtual machine. Obviously, this would impact the performance greatly, but would it be worth it? Is M1RACLES that serious to call for such a drastic measure? . SHADOWLINK, a hidden vulnerability on Apple M2, enables apps to share information discreetly, impacting various operating systems.. M1RACLES, Apple Silicon exploit, covert channel security flaw, Hector Martin discovery, Linux on M1. . Brittany Day
May 26, 2021
•
Security Vulnerabilities
67
security advisoryupdateOpenSSLOSSI: OpenSSL Update for FIPS 140-2 Compliance and Data Security
When the Open Source Software Institute (OSSI) sought Federal Information Processing Standards (FIPS) 140-2 validation for its OpenSSL toolkit last year, it was anything but smooth sailing. OSSI has just submitted a new OpenSSL update for FIPS validation but, according to Executive Director John Weathersby, things are bound to go much more smoothly this time around. OpenSSL, allows programs to securely exchange data over a network. The reason that it took so long was they had complaints about the validity of the code base. Another part of this article which should be noted is government agencies are starting to consider using OpenSSL as a data exchange solution. Have you tested out the new OpenSSL update yet? . The link for this article located at Linux.com is no longer available. . The link for this article located at Linux.com is no longer available.. source, software, institute, (ossi), sought, federal, information, processing, standards, (fips. . LinuxSecurity.com Team
Sep 12, 2007
•
Cryptography
74
bioinformaticsnetwork efficiencysecurity standardsInnovative Fingerprint Solutions Reduce Storage Needs and Boost Security
New technology for matching fingerprints for security purposes is proving about as reliable but much more efficient than traditional techniques, according to a new study by the National Institute of Standards and Technology. NIST studied the use of "minutiae templates," which are mathematical representations of full-blown fingerprint images that are seen as being much easier for vendors of biometric security systems to exchange with each other. The study involved use of a new standard for minutiae data that makes data exchange simpler than when proprietary techniques for converting fingerprint images to minutiae data. . The templates are also a fraction of the size of a fingerprint image, reducing the need for storage on smart cards and other such devices. Fourteen vendors of fingerprint technologies participated in the Minutiae Interoperability Exchange Test (MINEX), which was sponsored by the U.S. Department of Homeland Security and the Department of Justice. The standards group said that performance depended on how many fingerprints from a person were being matched, with systems using two index fingers accurate more than 98% of the time. The link for this article located at Network World is no longer available. . The templates are also a fraction of the size of a fingerprint image, reducing the need for storage . technology, matching, fingerprints, security, purposes, proving, about, reliable. . Brittany Day
Mar 23, 2006
•
Network Security
67
data protectiondata exchangesecure communicationExploring Quantum Cryptography's Impact On Secure Data Exchange
Quantum cryptography – using a private communication channel to lock down the exchange of sensitive data between two points – has to date created much more discussion than it has practical applications. However, with scientists, researchers and academics already on the case, it could be just five years until the technology hits the mainstream. . Martin Illsley, director of Accenture Research Labs, said that the rate of increase in computing power means that existing methods of cryptography are getting ever easier to crack, given more computing power means hackers can put more and more processing muscle into unlocking the random combinations that keep data transfer secure: "As computing increases in power, people are increasingly able to do that," he said. The link for this article located at Silicon.com is no longer available. . Martin Illsley, director of Accenture Research Labs, said that the rate of increase in computing pow. quantum, cryptography, using, private, communication, channel, exchange, sensitiv. . LinuxSecurity.com Team
Apr 19, 2005
•
Cryptography
67
network securityinformation securityworkshopCryptology Workshop: Exploring Information Security Applications
Cryptography was until recently an exclusive domain of the defense and security agencies. However, with the explosive growth of computerization, networking and the Internet coupled with the increasing importance of electronic commerce, cryptography has become an essential component of all electronic . . . . Cryptography was until recently an exclusive domain of the defense and security agencies. However, with the explosive growth of computerization, networking and the Internet coupled with the increasing importance of electronic commerce, cryptography has become an essential component of all electronic data exchange and economic activity. The AU-KBC Research Center has organized its annual workshop, which is an annual event of the "Cryptology Research Society of India" (CRSI) to focus on this subject. This year's workshop, which would be from October 16, 2003 - October 18, 2003 at Hyderabad is based on the theme "Applications of cryptology to Information Security". Satyakam Mishra (certified ethical hacker) and Dr. SA Vetha Manickam of Network Security Solutions, Pune will present a paper on "Software implementation of attack on A5/1 with possible improvements" at the workshop. The link for this article located at CIOL.com is no longer available. . Cryptography has evolved from military use to a key component of digital commerce security, ensuring trust and integrity in data transactions and protection against threats. Cryptography Workshop, Information Security Applications, Network Security Solutions. . LinuxSecurity.com Team
Oct 15, 2003
•
Cryptography
74
data exchangetraffic monitoringopen source toolNCAP: Effective Network Traffic Analysis and Monitoring Tool
Sergei Egorov submits This paper describes a Network Content Analysis Platform (NCAP) suitable for a variety of applications requiring access to all layers of network traffic including the content of TCP/IP network data exchanges. NCAP is capable of operating . . . . Sergei Egorov submits This paper describes a Network Content Analysis Platform (NCAP) suitable for a variety of applications requiring access to all layers of network traffic including the content of TCP/IP network data exchanges. NCAP is capable of operating on fully saturated Gigabit traffic using commodity hardware (multiprocessor Intel/Linux boxes with Gigabit NICs). The link for this article located at fidelissec is no longer available. . Discover an adaptable Network Data Monitoring System (NDMS) designed for efficiently tracking TCP/IP communications.. Network Analysis, Traffic Monitoring, Open Source Tools, TCP/IP Data Exchange. . Anthony Pell
Jul 16, 2003
•
Network Security
67
network securityencryptiondata exchangeNSA Develops Gigabit Ethernet Encryptors for Secure Data Exchange
A Defense Department analyst at the Pentagon is working on a top-secret case and needs to quickly exchange a large amount of information with a colleague in the intelligence community on the other side of the country. But the only tools . . . . A Defense Department analyst at the Pentagon is working on a top-secret case and needs to quickly exchange a large amount of information with a colleague in the intelligence community on the other side of the country. But the only tools available that are fast enough to accommodate the data transfer are commercial IP-based networks. Today, analysts have reached an impasse. But the National Security Agency is working to break that roadblock. NSA recently selected three vendor teams to compete to develop Gigabit Ethernet encryptors (GigEE) to support the secure exchange of top-secret information via commercial IP-based, wide-area networks at speeds of at least 1 gigabit/sec -- the equivalent of 48,000 typewritten pages per second. The link for this article located at FCW is no longer available. . An intelligence officer tackles a classified project requiring swift and confidential data transmissions using public data networks.. Gigabit Ethernet Security, NSA Communication, Secure Encryption Solutions. . LinuxSecurity.com Team
Nov 05, 2002
•
Cryptography
67
encryptiondata exchangenetwork communicationImplementing IPsec Tunnels for Secure Network Communication
I started this project because I was using a number of IPIP tunnels to connect a number of private networks over the Internet, and I needed encryption for a few resons. Above all I wanted to be able to use standard protocols such as FTP and NFS without having to worry about cleartext passwords and snooping.. . .. I started this project because I was using a number of IPIP tunnels to connect a number of private networks over the Internet, and I needed encryption for a few resons. Above all I wanted to be able to use standard protocols such as FTP and NFS without having to worry about cleartext passwords and snooping. I knew that I needed IPsec, and the only free implementation under active development I could find for Linux was FreeSWAN, but looking closer it seemed too much for my simple case. My first impression was that it was hard to understand and hard to configure, especially for the simple case of manually configured tunnels with fixed keys. Routing was also strange. I wanted something resembling the standard IPIP tunnel, but when I could not find it, I printed out the IPsec RFCs and started reading, and after that I started coding. I decided to use the cryptoapi patches for the encryption/decryption algorithms, which really gave me a head start on the hard stuff. The code has been running on my netword for some time now, and I feel that it's time to share the code to the rest of the community. Please try it out and let me know what you think! The link for this article located at Tobias Ringström is no longer available. . Explore the complexities of SSL VPN setups for safe information transmission, addressing decryption issues proficiently.. IPsec Tunnel, Secure Tunneling, Network Encryption, Encryption Implementation. . LinuxSecurity.com Team
Apr 25, 2002
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More