Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
67
OpenSSLFIPS certificationsecurity toolkitOpenSSL FIPS Certification: Secure Toolkit for Government Communications
The Cryptographic Module Validation Program (CMVP), a joint effort of the US and Canadian governments, approved the validation of the OpenSSL open source security toolkit for implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols on Friday. . OpenSSL is already in use by companies and organizations around the world. However, validation that the toolkit meets the Federal Information Processing Standard (FIPS) 140-2 regulations means that US and Canadian government agencies that handle sensitive data can use the free, open source security software. The CMVP is run by the US National Institute for Standards and Technology (NIST) and Canada's Communications Security Establishment (CSE) to provide testing of cryptographic modules in accredited labs, which makes sure that security software does what it is designed to do every time it's used, based on the FIPS standards. While not yet officially validated, CMVP Director Randy Easter said validation of the open source software "is a done deal." OpenSSL is now in the finalization stage of the CMVP pre-validation process. Although a certificate must be printed and signed by representatives of both NIST and CSE, Easter said the certificate could be signed, and the validation official, as early as next week. The link for this article located at NewsForge is no longer available. . OpenSSL is already in use by companies and organizations around the world. However, validation that . cryptographic, module, validation, program, (cmvp), joint, effort, canadian, government. . LinuxSecurity.com Team
Jan 23, 2006
•
Cryptography
77
security advisoryencryptionOpenSSLOpenSSL 0.9.7b Achieves FIPS Certification for Government Security Use
The National Institute of Standards and Technology has approved an open-source library of encryption algorithms for use on sensitive government networks, the Open Source Software Institute announced this month. The cryptographic module of OpenSSL (https://www.openssl.org:443/ ), an open-source version of Secure . . . . The National Institute of Standards and Technology has approved an open-source library of encryption algorithms for use on sensitive government networks, the Open Source Software Institute announced this month. The cryptographic module of OpenSSL (https://www.openssl.org:443/ ), an open-source version of Secure Sockets Layer encryption, has passed Federal Information Processing Standard 140-2 Level 1 tests. The library in version 0.9.7b of OpenSSL was validated--FIPS serves as validation only for encryption modules, not entire software packages. U.S. federal agencies must use FIPS-compliant products to secure networks carrying unclassified but sensitive data. The OpenSSL library uses the Advanced Encryption Standard, the Data Encryption Standard, the Digital Signature Algorithm, FIPS-mode RSA and the FIPS-qualified Secure Hash Algorithm-1, or SH-1. Software testing was sponsored by the Defense Department's Defense Medical Logistics Standard Support Program, Hewlett-Packard Co., OSSI, PreVal Specialists Inc., OpenSSL developers and the Domus IT Security Laboratory of Ottawa, which did the validation testing. The link for this article located at GCN is no longer available. . The Federal Agency for Technological Standards has sanctioned a public-domain repository of cryptographic tools for official implementation.. OpenSSL FIPS Compliance, Encryption Standards, Government Security. . LinuxSecurity.com Team
Dec 24, 2003
•
Server Security
67
data protectioncryptographyencryption techniquesDelving into Government Cryptography: Safeguarding Confidential Information
Knowledge of cryptographic techniques used to belong almost exclusively to governments, which use cryptography to protect political, diplomatic and military secrets against the prying eyes of other governments. Historically, governments took steps to restrict the spread of cryptographic knowledge. Cryptographic activities . . . . Knowledge of cryptographic techniques used to belong almost exclusively to governments, which use cryptography to protect political, diplomatic and military secrets against the prying eyes of other governments. Historically, governments took steps to restrict the spread of cryptographic knowledge. Cryptographic activities were conducted in secret departments, some actually called "Black Chambers." Cryptographic texts were suppressed or classified. Knowledge was passed from person to person, from master to apprentice. Trade in cryptographic information or equipment was banned. The field of cryptography was intentionally cloaked in mystery. . Cryptography has been vital in protecting sensitive information throughout history, evolving from ancient ciphers to modern encryption techniques used by governments. Cryptography Techniques, Data Protection Strategies, Government Encryption Techniques. . LinuxSecurity.com Team
Jan 15, 2002
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More