Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
74
data integritysecurity protocoldns managementRoot Servers Implement DNSSEC: A Major Step in Domain Security
On Wednesday (5th May) the last of the 13 authoritative root servers for the domain name system switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed.. This precautionary measure is intended to ensure that for the time being it remains possible to switch back to an unsigned root zone, should the need arise. There have been no reports of any problems in the immediate aftermath of VeriSign's J root server starting to serve DNSSEC signatures. Experts at the 60th RIPE meeting in Prague were almost unanimous in predicting a glitch-free switchover, following the successful switchovers of the other 12 root servers in recent months. The only apocalyptic note was sounded by a countdown to the demise of the unsigned root zone. Yesterday's changeover does mean the .root zone is now dead. VeriSign, which operated the master server for the root zone, has for several years used a single entry under .root, that served the purpose of checking that the bulky root zone had been transferred. According to Jaap Akkerhuis, a DNS expert at nl.netLabs, the creation of the .root entry was prompted by a complete outage of the .com zone following a data transfer error. Rigid DNSSEC procedures render this trick for root servers operated by VeriSign and the Internet Corporation for Assigned Names and Numbers (ICANN) obsolete. The link for this article located at H Security is no longer available. . This precautionary measure is intended to ensure that for the time being it remains possible to swit. wednesday, authoritative, servers, domain, system. . Anthony Pell
May 10, 2010
•
Network Security
74
business continuitysecurity strategydomain hijackingUnderstanding Domain Hijacking Risks And Protection Strategies
Domain name hijacking broadly refers to acts where a registered domain name is misused or stolen from the rightful name holder. A domain hijacking is a security risk many organizations overlook when they develop security policy and business continuity plans. While name holders can take measures to protect their domain names against theft and loss, many measures are not generally known. . In one hijacking scenario, you begin the day as an e-merchant doing business online at 'www.onlineseller..' At 2:15 p.m. that afternoon, your visitor traffic and merchant transactions disappear. You investigate and discover someone’s impersonated your company’s administrative contact, transferred your domain name to a different registrar, and modified the DNS. Visitors to your domain name land at a hoax Web site that impersonates your virtual store. Improbable? It happened to Hushmail in April of this year. In another scenario, the email service you provide to thousands of users suddenly stops. You discover someone’s transferred your domain name to another registrar without your notice or consent. Your DNS configuration has been modified, and your user’s email is being delivered to someone else’s mail server. Hours later, your registration is restored, but only after an exhausting and frustrating incident response effort. Preposterous? It happened to PANIX back in January, 2005. Internet Corporation for Assigned Names and Numbers (ICANN) CEO Paul Twomey says that while “a domain hijacking is not as obvious a threat as spam and spyware, it can be just as disruptive to the business and operations of name holders; in extreme cases, a domain hijacking can have a lasting impact on an organization." The link for this article located at Security Pipeline is no longer available. . Domain theft poses risks for web enterprises; discover methods to safeguard your domain and avert loss.. Domain Name Protection, Online Security, Domain Theft Prevention. . Brittany Day
Aug 25, 2005
•
Network Security
77
dns managementbind importaxfrdns serverComprehensive Guide on Importing BIND Zones and Setting Up Axfrdns Server
Welcome to the home stretch, my last [2] ITworld article on installing DJBDNS. I'll cover two things here. First, I'll show you how to 'import' your existing BIND zones into tinydns data format so you don't need to convert those files by hand. Lastly, I'll show you how to start up the axfrdns server, which will allow DNS secondaries running BIND to mirror your DNS zones.. . .. Welcome to the home stretch, my last [2] ITworld article on installing DJBDNS. I'll cover two things here. First, I'll show you how to 'import' your existing BIND zones into tinydns data format so you don't need to convert those files by hand. Lastly, I'll show you how to start up the axfrdns server, which will allow DNS secondaries running BIND to mirror your DNS zones. At the beginning of this trip down DJBDNS lane, I tagged a challenge at the end of the message. Unlike my previous [1] challenge, this one had almost no response, probably because it was lost in obscurity at the bottom of the email. I'm re-issuing it again this week, and you'll find it at the end of this article. The link for this article located at IT World / Brian Hatch is no longer available. . Discover the process of importing BIND zone files into tinydns and configuring an axfrdns server for efficient DNS handling.. DJBDNS Configuration, DNS Management, Tinydns Setup, BIND Import Guide. . LinuxSecurity.com Team
Aug 21, 2002
•
Server Security
74
denial of serviceoutsourcinglinuxMicrosoft: DNS Outsourcing to Linux After Service Outage
Last week Microsoft's Web server became unavailable to many users first through router misconfiguration and later through a denial of service attack. Networking experts blamed Microsoft's problems on a network domain which they said featured all four of its domain name . . . . Last week Microsoft's Web server became unavailable to many users first through router misconfiguration and later through a denial of service attack. Networking experts blamed Microsoft's problems on a network domain which they said featured all four of its domain name server on the same network segment - creating a single point of failure. Following the debacle Microsoft has partially offloaded its DNS servers to Akamai Technologies - who tests suggest is running these servers on Linux. A number of Register readers have written to us pointing out that using nslookup, or other similar tools, its possible to see a number of servers in the akadns.com domain are listed as authoritative DNS servers for Microsoft's domains. Full details of which can be seen below. The link for this article located at TheRegister is no longer available. . Google's cloud service experienced interruptions from a network failure and security breach, resulting in reliance on Windows-based DNS solutions.. Microsoft DNS, Linux Servers, Denial of Service, DNS Management. . Anthony Pell
Jan 29, 2001
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More