Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
67
hash algorithmNIST announcementKeccakNIST Chooses Keccak As SHA-3 Successor After Competitive Evaluation
A US government agency has selected cryptographic hash function Keccak as the new official SHA-3 algorithm.. The National Institute of Standards and Technology's decision to pick the nippy system as the replacement for SHA-1 and SHA-2 marks the end of a six-year competitive process. Five algorithms were left in the running at the end, including crypto-guru Bruce Schneier's Skein. The link for this article located at The Register UK is no longer available. . The National Institute of Standards and Technology's decision to pick the nippy system as the replac. government, agency, selected, cryptographic, function, keccak, official, sha-3. . LinuxSecurity.com Team
Oct 03, 2012
•
Cryptography
67
cryptographyhash algorithmcryptographic standardsNIST Announcement: SHA-3 Finalist Featuring Skein Candidate
NIST is about to announce the new hash algorithm that will become SHA-3. This is the result of a six-year competition, and my own Skein is one of the five remaining finalists (out of an initial 64).. It's probably too late for me to affect the final decision, but I am hoping for "no award." It's not that the new hash functions aren't any good, it's that we don't really need one. When we started this process back in 2006, it looked as if we would be needing a new hash function soon. The SHA family (which is really part of the MD4 and MD5 family), was under increasing pressure from new types of cryptanalysis. We didn't know how long the various SHA-2 variants would remain secure. But it's 2012, and SHA-512 is still looking good. The link for this article located at Schneier on Security is no longer available. . NIST readies to unveil SHA-3; Keccak selected as contender in an exhaustive contest. Implications of choices raise significant apprehension.. Hash Functions, SHA-3 Finalist, Cryptographic Algorithms, NIST Competition. . LinuxSecurity.com Team
Sep 24, 2012
•
Cryptography
67
security practicessecurity standardscryptographyExamining SHA-1 Cracking and Its Legal and Security Impact
SHA-1 is one of the most prevalent forms of a secure hash algorithm used in the legal and security industry. Now that Professor Xiaoyun Wang and her associates in Tsinghua University and Shandong University of Technology have officially cracked the SHA-1 hashing algorithm, the fallout will begin. This won't actually be due to security concerns for the most part, but the legal ramifications may be severe. . A digital hash is basically a fingerprint of a data file. The perfect hashing algorithm will always produce a unique-enough finger print for a particular data stream that it is practically impossible to find a different data stream matching that finger print. Professor Wang did just that and found a different data stream with an identical finger print that matches the SHA-1 hash of the original data stream. While hashes have been broken before, the SHA-1 hash was published by the NIST in the1995 and was believed to be solid for a long time to come. But professor Wang surprised the cryptographic community in early 2005 with the announcement that she and her team had figured out a way to speed up the cracking process by more than 11 orders of magnitude. The link for this article located at ZDNet Blogs is no longer available. . Exploring the consequences of SHA-1 vulnerabilities and their influence on cybersecurity measures and legal consequences.. SHA-1 Cracking, Security Practices, Legal Standards, Cryptographic Risks. . LinuxSecurity.com Team
Jan 23, 2007
•
Cryptography
67
security breachSHA-1hash algorithmCrypto 2006: New Attack Method Against SHA-1 Hash Algorithm
Cryptographic experts at the Crypto 2006 conference have demonstrated a modified method of attack against a reduced variant of the SHA-1 hash algorithm. The new method is an attack which, for the first time, allows at least a part of the message to be freely selected, for example as straight text. Previous approaches, for example the collision attack by Xiaoyun Wang and her team, which attracted considerable attention, were merely able to produce almost completely different hash twins of the same length, both consisting of meaningless gibberish. . The link for this article located at Heise-Security.co.uk is no longer available. . The link for this article located at Heise-Security.co.uk is no longer available.. cryptographic, experts, crypto, conference, demonstrated, modified, method, attack. . LinuxSecurity.com Team
Aug 28, 2006
•
Cryptography
67
data integritycryptographysecurity techniqueExploring Modern Security for Hash Algorithm Weaknesses
Hashing has long been used as a means to verify data elements. Parity bits were originally used to confirm that a data transmission was received correctly and helped to detect any single-bit errors. However, parity didn. In comes hashing as we know it today. The modern hashing algorithms are designed to help verify the integrity of a data element. Yet, as our needs to verify file contents and data transmissions evolve, we continually realize that better solutions and algorithms are needed. Better hashing algorithms are constantly in the works. However, as the past would indicate, cryptographers and hackers alike continue to find issues with each successive algorithm that is released. As one algorithm is broken, another is developed The link for this article located at Info Sec Writers is no longer available. . In comes hashing as we know it today. The modern hashing algorithms are designed to help verify the . hashing, means, verify, elements, parity, originally. . LinuxSecurity.com Team
Aug 07, 2006
•
Cryptography
67
security advisorySHA-1hash algorithmDebate Over SHA-1 Integrity After Refined Attack Raises Alarms
Three Chinese researchers have further refined an attack on the encryption standard frequently used to digitally sign documents, making the attack 64 times faster and leaving cryptographers to debate whether the standard, known as the Secure Hash Algorithm, should be phased out more quickly than planned. . The attack, presented last week at the Crypto conference in Santa Barbara, Calif., would allow a forger to create two documents that return the same digital fingerprint, a short sequence of numbers that represent the contents of a much larger document. While experts debate whether the attack is practical, the trend seems to indicate that the Secure Hash Algorithm (SHA-1) is succumbing to less processor-intensive breaks, said William E. Burr, manager of the the Security Technology Group at the National Institute of Standards and Technology (NIST). "It is certainly somewhat alarming," Burr said. He likened the rapid advances in attacks on SHA-1 to a submarine under fire. "What we are figuring out right now is whether we have to do a crash dive drill-- where some people might not make it inside before we close the hatch, but at least we will save the ship." The link for this article located at SecurityFocus is no longer available. . The attack, presented last week at the Crypto conference in Santa Barbara, Calif., would allow a for. three, chinese, researchers, further, refined, attack, encryption, standard, frequently. . LinuxSecurity.com Team
Aug 24, 2005
•
Cryptography
67
cryptographic weaknesshash algorithmdistributed computingMD5CRK Initiative: Addressing the Collision Problems in MD5 Hashing
The MD5CRK project seeks to prove empirally that MD5 is a hash algorithm that exhibits the not-so-cryptographically-sound property of collisions. This has already been proven theoretically, but nobody really paid attention, so this distributed computing project was created. . . . . The MD5CRK project seeks to prove empirally that MD5 is a hash algorithm that exhibits the not-so-cryptographically-sound property of collisions. This has already been proven theoretically, but nobody really paid attention, so this distributed computing project was created. While many people think hash algorithms are just used to create entries in /etc/shadow, MD5 is used in many applications of cryptography -- from SSL to IDS software to digital dignatures. This is despite published weaknesses and better (and freely available) drop-in replacements. . The MD5CRK project seeks to prove empirally that MD5 is a hash algorithm that exhibits the not-so-cr. md5crk, project, seeks, prove, empirally, algorithm, exhibits, not-so-cr. . LinuxSecurity.com Team
Mar 05, 2004
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More