Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
82
data protectiondata breachtwo-factor authenticationFederal Agencies Call for Laptop Encryption Compliance in 45 Days
The Bush Administration is giving federal civilian agencies just 45 days to comply with new recommendations for laptop encryption and two-factor authentication. . The memo follows a wave of high profile data thefts and major security breeches involving remote access or the theft of government laptop computers containing sensitive personal information. The link for this article located at Security Focus is no longer available. . The memo follows a wave of high profile data thefts and major security breeches involving remote acc. administration, giving, federal, civilian, agencies, comply, recommen. . Brittany Day
Jul 06, 2006
•
Government
67
cryptographydata encryptionPKIGuidelines For Federal Agencies On Implementing Cryptography
The US National Institute of Standards and Technology has released an updated draft version of its 'Guideline for Implementing Cryptography in the Federal Government'. This is the second edition of a white paper first released in 1999, and a welcome to the literature on practical applications of cryptography. . The paper covers cryptographic hashing, symmetric encryption, and public key infrastructure (PKI), among other common uses of cryptography. The final chapter is a very good overview of the process for selecting cryptographic solutions, and for managing their lifecycle from acquisition to retirement. While some of the material is of use primarily or solely to Federal agencies (e.g., applicable Federal standards fro government data), much of it useful for any business requiring secure stored data and communications. The link for this article located at NIST.gov is no longer available. . Explore guidelines on cryptographic hashing, encryption, and PKI for secure communications.. Cryptographic Applications, Federal Standards, Secure Communication. . LinuxSecurity.com Team
Oct 03, 2005
•
Cryptography
82
IT securityfederal guidelinessecurity checklistNIST 2004: Overview of Security Configuration Checklists Explained
A program that experts have said is the missing piece in federal efforts to promote secure computing will be ready later this year. Officials at the National Institute of Standards and Technology announced that a security configuration checklists program for information technology products, including a logo that vendors can put on their wares, is on track for completion before the end of 2004. . . .. A program that experts have said is the missing piece in federal efforts to promote secure computing will be ready later this year. Officials at the National Institute of Standards and Technology announced that a security configuration checklists program for information technology products, including a logo that vendors can put on their wares, is on track for completion before the end of 2004. A security configuration checklist describes the software options and settings that users can choose to minimize the security risks associated with a particular type of hardware or software. More commonly referred to as lockdown guides or security benchmarks, security checklists are basically documents for securing IT hardware or software in different settings. Security checklists for home computer users, for example, would be different from those for federal computer users handling sensitive data. A checklist could include scripts, templates and pointers to Web sites where users can download software updates or firmware upgrades to make products more secure from attack by viruses and other malicious code spread via the Web. The link for this article located at fcw.com is no longer available. . An initiative aimed at bolstering national secure data operations, provides technology setup guides for various environments.. IT Security Checklists, Configuration Standards, Secure Computing Strategies. . Anthony Pell
Aug 20, 2004
•
Government
82
information securitycybersecuritysecurity standardsNIST: Overview of Federal Information Security Standards Explained
This document is one of a series of security standards and guidelines being developed by NIST's Computer Security Division in response to the Federal Information Security Management Act of 2002. For additional information, please visit the NIST Security Certification and Accreditation . . . . This document is one of a series of security standards and guidelines being developed by NIST's Computer Security Division in response to the Federal Information Security Management Act of 2002. For additional information, please visit the NIST Security Certification and Accreditation Project web site located at: . The link for this article located at SecurityFocus is no longer available. . The National Institute of Standards and Technology (NIST) is vital in establishing security standards for federal systems under FISMA, promoting effective risk management.. NIST Security, Cybersecurity Standards, Federal System Guidelines. . Anthony Pell
Aug 26, 2003
•
Government
82
network securitycybersecuritysecurity controlsFederal Initiatives to Improve Network Security and Guidelines
The federal government is pushing ahead with its agenda to improve the security of public and private networks, working to garner support for key components and developing plans to refocus the National Information Assurance Partnership. Specifically, the NIAP is crafting two . . . . The federal government is pushing ahead with its agenda to improve the security of public and private networks, working to garner support for key components and developing plans to refocus the National Information Assurance Partnership. Specifically, the NIAP is crafting two sets of security guidelines to help federal agencies lock down their networks, and many industry observers expect the provisions in the drafts to show up in recommendations for the private sector as well. The first draft, due Oct. 28, will spell out a lengthy process that IT personnel can use to certify that their systems are running securely. The second, which will be published Nov. 11, details sets of security controls that federal networks should have to be considered secure, depending on their sensitivity level. "We have taken into account [international standards] so that these guidelines can be applied to the private sector," said Marianne Swanson, senior adviser for IT security management at the National Institute for Standards and Technology, in Gaithersburg, Md. "We can only recommend, but these are all best practices. We haven't pulled anything out of the ordinary. They should be used." The link for this article located at eWeek is no longer available. . The national administration propels initiatives aimed at bolstering the security of both public and private networks via fresh regulations and protocols.. Federal Security, Network Guidelines, Cybersecurity Initiatives, Information Assurance. . Anthony Pell
Oct 14, 2002
•
Government
82
security advisorycritical infrastructurefederal guidelinesCIO Council Security Transition Towards Training and Architecture
The Office of Management and Budget and the federal CIO Council have decided to disband the council's Security, Privacy and Critical Infrastructure Committee to move beyond general issues to the "nitty-gritty details," said Mark Forman, OMB's associate director for information technology . . . . The Office of Management and Budget and the federal CIO Council have decided to disband the council's Security, Privacy and Critical Infrastructure Committee to move beyond general issues to the "nitty-gritty details," said Mark Forman, OMB's associate director for information technology and e-government. Such details include making sure agencies have adequate training programs, the right people and the proper security architectures in place to address governmentwide security vulnerabilities. The CIO Council completed a total reorganization last month to better focus on e-government issues and eliminated all but three committees. Jim Flyzik, vice chairman of the council, said at the time that the group had not decided what to do with the security committee. But last week, Forman said security and privacy issues will be folded into the council's other committees. The link for this article located at FCW.com is no longer available. . CIO Council dissolves its security committee to concentrate on training and structure challenges.. CIO Council, Security Management, Federal Guidelines, Privacy Issues, Critical Infrastructure. . Anthony Pell
Nov 13, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More