Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
74
network securitynetwork protectionfirewall managementGeoIP Filtering With Nftables For Improved Linux Network Security
This LinuxSecurity.com article featured on the frontpage of Slashdot examines the concept of geo filtering and how it could add a valuable layer of security to your firewall , and explores how the Geolocation for nftables project is leveraging Open Source to provide intuitive, customizable geo filtering on Linux. . What if you could block connections to your network in real-time from countries around the world such as Russia, China and Brazil where the majority of cyberattacks originate? What if you could redirect connections to a single network based on their origin? As you can imagine, being able to control these things would reduce the number of attack vectors on your network, improving its security. You may be surprised that this is not only possible, but straightforward and easy, by implementing GeoIP filtering on your nftables firewall with Geolocation for nftables . . Geo filtering enhances Linux network security by restricting access based on location. Using nftables, admins can block foreign connections, enhancing safety.. GeoIP Filtering, Nftables Security, Network Defense. . Brittany Day
Feb 15, 2021
•
Network Security
72
cybersecuritysecurity threatfirewall securitySoldered Spy Chips Present Serious Risks to Firewall Protection
The tiny ATtiny85 chip doesn’t look like the next big cyberthreat facing the world, but sneaking one on to a firewall motherboard would be bad news for security were it to happen. Learn more in an interesting Naked Security article: . In fact, this has already happened as part of a project by researcher Monta Elkins, designed to prove that this sort of high-end hardware hack is no longer the preserve of nation-states. Elkins soldered the 5mm x 5mm ATtiny85 chip from an Arduino board to his test firewall’s circuit board just in front of the system’s serial port. The link for this article located at Naked Security is no longer available. . Monta Elkins reveals the vulnerability of firewall defenses through the use of inexpensive espionage microchips, questioning standard assumptions.. Spy Chips, Firewall Security, Cybersecurity Threats, Hardware Attacks, Arduino Awareness. . Brittany Day
Oct 14, 2019
•
Firewalls
74
data protectionnetwork hardeningencryption techniqueHardening Network Routing and Data Protection for Security
In today’s world we are constantly reminded of the day to day dangers that exist in our society. According to statistics people are becoming the victims of Identity Theft at an alarming rate, it is estimated that 246,570 people had their identities stolen in 2004 alone. Businesses are taking every precaution imaginable to protect the privacy of their consumers. We live in an electronic age, things like paying bills, shopping, ordering clothing, and banking are done online. Yes; it is a very convenient way to do business! It is also very dangerous! . The preferred method of protecting information is a combination of encryption, tunneling, packet filtering, encapsulation, and firewall use. The link for this article located at InfoSec Writers is no longer available. . Investigate strategies for protecting your information using encryption techniques and firewalls to achieve strong cybersecurity.. Network Hardening, Data Protection, Encryption Techniques, Firewall Security. . Brittany Day
Jun 16, 2006
•
Network Security
83
data breachIT managementdata recoveryNew York Financial CIO Data Breach: Recovery and Security Challenges
A VETERAN CIO of a New York city-based financial services company learned in july 2002 that several vital files had vanished from one of his company's 25 servers. An employee had tried to find some information and failed. That's when IS . . . . A VETERAN CIO of a New York city-based financial services company learned in july 2002 that several vital files had vanished from one of his company's 25 servers. An employee had tried to find some information and failed. That's when IS discovered that there was, in fact, no company information on that particular server at all. Panicked, the CIO and his staff went into emergency mode. They soon discovered that a hacker had found his way through their firewall and wiped out all the production files on the server, leaving chaos and a couple of strangely labeled files in his wake. Two frantic days--and 15 hours of work--later, the alien files were deleted and the missing data restored through backup tapes. But it took an additional two weeks to be sure that the hacker hadn't accessed and tainted any of the company's 24 other servers. The link for this article located at CSO Online is no longer available. . A tech CEO encountered an unexpected cybersecurity incident, prompting recovery initiatives as essential information vanished from databases.. Data Breach Response, Financial IT Security, Disaster Recovery, Backup Solutions, Server Security. . LinuxSecurity.com Team
Dec 10, 2002
•
Hacks/Cracks
78
security advisorypassword exposurefirewall securitySmoothWall Security Advisory: Encrypted Password Hash Risk Details
Update: Project founder responds below . "SmoothWall does not use shadowed passwords in their firewall implementation. While this is not inherently dangerous as firewall systems are not designed as multi-user, an unauthorized user gaining access to the system via exploitation . . . . Update: Project founder responds below . "SmoothWall does not use shadowed passwords in their firewall implementation. While this is not inherently dangerous as firewall systems are not designed as multi-user, an unauthorized user gaining access to the system via exploitation of an unprivileged process may be able to gain administrative access by copying the password hash, and launching a brute force cracking program against it." It seems several smoothwall developers have developed an attitude towards accepting criticizm from other security professionals and don't feel this is an issue that deserves their attention. The issue escalated when the lead person responsible for the project called it "Trench Warfare." It seems he doesn't take criticism too well? Is the state of the project in jeopardy? Is there a battle going on between the people developing the project and attitude towards their users? Are there other security holes that aren't being fixed? Users interested in a system not succeptible to this security vulnerability might try Slackware. Users interested in a web-managable secure solution might try EnGarde. Update 13:49 EST - Richard Morell, smoothwall project founder, responded to LinuxSecurity.com with the following email. It certainly wasn't our intention to mislead. We report, you decide. There is also a page on their site now that provides their perspective. Subject: Factual reporting of the article you posted Date: Fri, 18 Jan 2002 17:13:49 +0000 From: Richard Morrell To:
Jan 18, 2002
•
Vendors/Products
72
security advisoryunauthorized accessfirewall securityLinux 2.4: IPTables Advisory for FTP PORT Flaw Reported Unauthorized Access
Firewalls using Linux Kernel 2.4.x with IPTables could potentially be compromised as a result of bad logic in the FTP PORT processing. "There is a security flaw in the manner in which the PORT command is interpreted and processed. Essentially, you . . . . Firewalls using Linux Kernel 2.4.x with IPTables could potentially be compromised as a result of bad logic in the FTP PORT processing. "There is a security flaw in the manner in which the PORT command is interpreted and processed. Essentially, you can pass any IP/port in an FTP PORT commmand, and the module will not validate these parameters, adding an entry to the RELATED ruleset allowing connections from the FTP server, any source port, to the specified destination IP and port. In most cases, people make stringent security rules and have lax firewall rules regarding RELATED connections, allowing the attacker to connect to anywhere. This can be used, for example, for the FTP server to connect to any TCP port on the firewall, or any other node protected by the firewall. Even though there may be rules normally denying this type of traffic, it would pass through the firewall, because of the rule allowing RELATED. The attacker does not even need to have a valid login in the FTP server, as the PORT command is interpreted by the module independently of any authentication procedures (USER and PASS)." The link for this article located at Tempest Security is no longer available. . Linux Kernel versions 2.4.x firewalls could encounter vulnerabilities stemming from issues related to FTP PORT handling, which may result in possible security violations.. Linux 2.4 IPTables, FTP PORT Security, Firewall Flaws. . Anthony Pell
Apr 17, 2001
•
Firewalls
72
network protectionfirewall securityhacker tacticsImpersonation Attacks: Protecting Firewalls Against Deceptive Intrusions
Lately, hackers have discovered they can sneak into your computer by sending look-alike imposters to the firewall's gate. The hackers simply rename a snooping program or a virus so that it has the same file name as your browser or e-mail . . . . Lately, hackers have discovered they can sneak into your computer by sending look-alike imposters to the firewall's gate. The hackers simply rename a snooping program or a virus so that it has the same file name as your browser or e-mail program, and your firewall program will wave it right through the gate. A report, published last month in eWeek, says the deception works with software firewalls made by Sygate Technologies (Personal Firewall) and by Symantec Corp. (Norton Personal Firewall). The trade publication then confirmed the problem by duplicating it in its own labs. The trouble with a vulnerability like this is that it doesn't take a brain surgeon to bring it off. All a hacker has to do is rename his own program and send it along the way. So if you worry that --- by writing about this --- I'm giving hackers new ideas, stop worrying. This unattended back door is well-known in hacking circles, and some of the first do-it-yourself hacking programs already are taking advantage of it. The link for this article located at Atlanta Journal-Constitution is no longer available. . Discover how cybercriminals utilize deceptive replicas to evade network defenses and jeopardize your safety.. firewall protection,hacker tactics,cybersecurity best practices,impersonation attack. . Anthony Pell
Jan 29, 2001
•
Firewalls
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More