Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
79
Linux kerneldevelopment practicessecurity lessonsLinux 5.15: NTFS Driver Introduction and Coding Insights
Better support for Microsoft's NTFS file-system is coming to the Linux 5.15 kernel, along with some important process and security lessons for developers about how code submissions to the kernel should be made. . Linux creator Linus Torvalds has agreed to include Paragon Software's NTFS3 kernel driver, giving the Linux kernel 5.15 release improved support for Microsoft's NTFS file-system. But he also had some process and security lessons to offer developers about how code submissions to the kernel should be made. Paragon's NTFS driver will make working with Windows' NTFS drives in Linux an easier task — ending decades of difficulties with Microsoft's proprietary file system that succeeded FAT. . Linux boosts its NTFS capabilities with an upgraded driver, imparting crucial programming insights from Linus Torvalds.. NTFS Integration, Linux Kernel, Paragon Software, Code Submission Practices, File System Support. . LinuxSecurity.com Team
Sep 07, 2021
•
Security Projects
79
security techniquessoftware bugsdevelopment practicesExploring The Impact Of Software Bugs On Development Practices
Another month, another few dozen patches to install -- it's never-ending. It's frustrating. Software coding tools supposedly have security built in by default. We have "safe" programming languages. We have programmers using SDL (security development lifecycle) coding tools and techniques.. We have operating systems with more secure defaults and vendors that fuzz and attack their own software with a vengeance to find holes. We have companies spending billions of dollars to eliminate software bugs. The link for this article located at InfoWorld is no longer available. . We have operating systems with more secure defaults and vendors that fuzz and attack their own softw. another, month, dozen, patches, install, never-ending, frustrating, software. . LinuxSecurity.com Team
Jul 14, 2014
•
Security Projects
77
application securitysecurity trendsdevelopment practicesPressure Mounts for Security in Application Development Practices
Security has seldom been a priority in application development, but pressure from businesses stuck patching faulty software is having an impact on the industry.. Among the large software makers that have seen the light is Microsoft, which is pushing Windows developers to adopt a standard methodology and framework for building secure applications. The link for this article located at CSO Online is no longer available. . Influence from corporations is compelling software engineers to emphasize cybersecurity and embrace best practices.. Application Security, Secure Development Practices, Software Standards. . LinuxSecurity.com Team
May 20, 2013
•
Server Security
77
web applicationcyber threatsecurity riskWeb 2.0 Security Risks: Innovation Over Protection and User Safety
Web 2.0 is causing a splash as it stretches the boundaries of what Web sites can do. But in the rush to add features, security has become an afterthought, experts say. The buzz around the new technology echoes the '90s Internet boom--complete with pricey conferences, plenty of start-ups, and innovative companies like MySpace.com and Writely being snapped up for big bucks. And the sense of deja vu goes even further for some experts. Just as in the early days of desktop software, they say, the development momentum is all about features--and protections are being neglected. . "We're continuing to make the same mistakes by putting security last," said Billy Hoffman, lead engineer at Web security specialist SPI Dynamics. "People are buying into this hype and throwing together ideas for Web applications, but they are not thinking about security, and they are not realizing how badly they are exposing their users." Yamanner, Samy and Spaceflash are among the higher-profile attacks that have surfaced online. The Yamanner worm targeted Yahoo Mail, harvesting e-mail addresses and forwarding itself to all contacts in a user's Yahoo address book. The Samy and Spaceflash worms both spread on MySpace, changing profiles on the hugely popular social-networking Web site. . 'We're continuing to make the same mistakes by putting security last,' said Billy Hoffman, lead engi. causing, splash, stretches, boundaries, sites. . LinuxSecurity.com Team
Jul 31, 2006
•
Server Security
78
software securitydevelopment practicesOracleMary Ann Davidson Critiques Faulty Coding Standards at W3C Conference
Mary Ann Davidson, chief security officer for database giant Oracle, remembers the first time she heard her company's marketing scheme that advertised its database products as "unbreakable." "I think my response was 'What idiot dreamed this up?," Davidson said Thursday at the W3C conference in Edinburgh, Scotland. . If civil engineers built bridges in the same fashion in which software developers write code, people would face the "blue bridge of death" every morning going to work, Davidson said. Software developers, she noted, tend to laugh nervously when they hear the analogy -- an insider reference to what programmers call the blank, "blue screen of death" on a PC display when Windows fails. The link for this article located at NetworkWorld is no longer available. . Johnathan Parker highlights the flaws in coding best practices, comparing buggy applications to catastrophic architectural mishaps.. Mary Ann Davidson, Database Security, Software Engineering, Coding Practices, Oracle Security. . LinuxSecurity.com Team
May 25, 2006
•
Vendors/Products
77
application securitysecurity riskdevelopment practicesStrategies To Avoid Security Holes In CGI Script Development
This article is the first one in a series about the main types of security holes in applications. We'll show the ways to avoid them by changing your development habits a little. This set of articles shows methods which can be . . . . This article is the first one in a series about the main types of security holes in applications. We'll show the ways to avoid them by changing your development habits a little. This set of articles shows methods which can be used to damage a Unix system. We could only have mentioned them or said a few words about them, but we prefer complete explanations to make people understand the risks. Thus, when debugging a program or developing your own, you'll be able to avoid or correct these mistakes. For each discussed hole, we will take the same approach. We'll start detailing the way it works. Next, we will show how to avoid it. For every example we will use security holes still present in wide spread software. . Enhance security in your web applications by mastering strategies to prevent vulnerabilities, particularly in CGI scripts, while adhering to optimal coding standards.. Application Security, CGI Scripts, Development Best Practices. . LinuxSecurity.com Team
Dec 10, 2001
•
Server Security
77
application securitysecurity managementdevelopment practicesAddressing Application Security Gaps: Preventing Defects in Development
This article is the first one in a series about the main security holes that can usually to appear within an application. Along these articles, we'll show the ways to avoid them by changing a little the development habits. It doesn't . . . . This article is the first one in a series about the main security holes that can usually to appear within an application. Along these articles, we'll show the ways to avoid them by changing a little the development habits. It doesn't take more than two weeks before a major application, part of most Linux distributions, presents a security hole, allowing, for instance, a local user to become root. Despite the great quality of most of this software, ensuring the security of a program is a hard job : it must not allow a bad guy to benefit illegally from system resources. The availability of application source code is a good thing, much appreciated by programmers, but the smallest defect in a software becomes visible to everyone. Furthermore, the detection of such defects comes at random and people doing that sort of things do not always act with good intentions. The link for this article located at LinuxFocus [linuxtoday] is no longer available. . Protecting applications from security vulnerabilities is essential. Recognizing common security holes like SQL Injection and XSS fosters secure software development. Application Security, Development Practices, Preventive Strategies, Security Threats, Software Safety. . LinuxSecurity.com Team
Feb 18, 2001
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More