Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
74
encryptionsecurity flawconfigurationKerberos Configuration Issues Enable Network Authentication Risks
Significant weaknesses in the common configuration of Kerberos-based authentication servers could allow attackers to more easily circumvent security measures in networks that rely on the open authentication standard, according to recent research presented by consultants at the recent Black Hat USA 2010 conference.. The researchers found several common configuration problems that may allow attackers to significantly weaken the security that Kerberos provides. Companies typically use Kerberos in Microsoft Active Directory environments or in large university Unix or Linux networks that allow users to access various network resources after authenticating to a central server. An active attacker could cause an authentication server to downgrade the data encryption, or etype, used for exchange of the authenticator, says Scott Stender, co-founder and principal consultant with iSEC Partners and an author of the report. "The downgrade of etypes lets you downgrade to an encryption algorithm that you can brute force," Stender says. The link for this article located at Dark Reading is no longer available. . The researchers found several common configuration problems that may allow attackers to significantl. significant, weaknesses, common, configuration, kerberos-based, authentication, servers. . Alex
Aug 09, 2010
•
Network Security
77
network securityencryptionsecurity strategiesUnderstanding Kerberos Authentication: Protecting Your Network Security
Kerberos is a network authentication system that can help solve those two issues. It reduces the number of passwords each user has to memorize to use an entire network to one the Kerberos password. In addition, Kerberos incorporates encryption and message integrity to solve the second issue, ensuring that sensitive authentication data is never sent over the network in the clear.. . .. Kerberos is a network authentication system that can help solve those two issues. It reduces the number of passwords each user has to memorize to use an entire network to one the Kerberos password. In addition, Kerberos incorporates encryption and message integrity to solve the second issue, ensuring that sensitive authentication data is never sent over the network in the clear. By providing a secure authentication mechanism, Kerberos is an essential part of a total network security plan, providing clear benefits for both end users and administrators. It is important to recognize that implementing Kerberos on your network does not guarantee perfect security. While Kerberos is extremely secure in a theoretical sense, there are many practical security issues to be considered. In addition, it is important to remember that Kerberos provides only an authentication service; it does not prevent compromises caused by buggy server software, administrators granting permissions to unauthorized users, or poorly chosen passwords. While most documentation on the subject of Kerberos security simply says to "secure the KDC," there is much more to the story of Kerberos security than turning off unnecessary services on your KDC machines (although that is certainly good advice!). In this article, we will begin with a discussion of potential attacks against your Kerberos authentication system, follow up with steps that should be taken to prevent these attacks, and finally examine Kerberos KDC logs. After reading this article, you should understand the security implications that Kerberos presents and how to protect your network from the attackscenarios presented. The link for this article located at Linux Exposed is no longer available. . Explore the ways in which Kerberos strengthens network integrity by utilizing robust authentication and encryption techniques.. Kerberos Authentication, Network Security Strategies, Encryption Methods. . LinuxSecurity.com Team
Sep 23, 2003
•
Server Security
83
security advisorynetwork securityunauthorized accessKerberos Advisory: Critical Flaw Risks Unauthorized Access to Networks
Kerberos has lost some of its bite, according to the US government, which on Wednesday warned of a critical flaw that could allow hackers to circumvent the secure networking system.. . .. Kerberos has lost some of its bite, according to the US government, which on Wednesday warned of a critical flaw that could allow hackers to circumvent the secure networking system. Kerberos was invented by the Massachusetts Institute of Technology and is used by many large businesses as a way of keeping their networks secure. It uses strong encryption to verify the identity of any machine using a networked resource. On Wednesday, the Computer Incident Advisory Capability (CIAC) of the US government Department of Energy issued the warning, which originated at MIT. The flaw allows an attacker to gain unauthorized access to the key distribution center (KDC), which authenticates users, effectively compromising the security of the entire network. The link for this article located at ZDNet is no longer available. . The integrity of Kerberos has been undermined due to a significant vulnerability, enabling cybercriminals to infiltrate the once-reliable secure communication framework.. Kerberos Security, Critical Cybersecurity Issue, Network Authentication Flaw. . LinuxSecurity.com Team
Oct 24, 2002
•
Hacks/Cracks
74
kerberosopen standardssecurity protocolMicrosoft's Kerberos Extensions: Threats to Open Standards and Security
The implications of Microsoft's propreitary "extensions" to Kerberos could be pretty far-reaching. "As a legal wrangle develops over whether the Linux/open-source news Web site Slashdot.org can post messages containing what Microsoft calls a "trade secret," key members of the . . .. The implications of Microsoft's propreitary "extensions" to Kerberos could be pretty far-reaching. "As a legal wrangle develops over whether the Linux/open-source news Web site Slashdot.org can post messages containing what Microsoft calls a "trade secret," key members of the technical standards community have lost patience with the software giant's assertion of proprietary control over an open standard. At issue is a security protocol called Kerberos, a mechanism that enables secure identity authentication when users log on to a network. The version of Kerberos in Windows 2000 exploits a loophole in the Internet standard specification that was deliberately left open for customized versions." The link for this article located at Industry Standard [Yahoo!] is no longer available. . Apple's unique adaptations of TLS present considerable challenges to universal protocols and user validation.. kerberos extensions,microsoft security,open standard,authentication protocols. . Anthony Pell
May 20, 2000
•
Network Security
74
security advisorybuffer overflowkerberosCERT Update: Recent Kerberos Advisory on Root Privilege Threats
The Computer Emergency Response Team has updated their advisory on the recent Kerberos buffer overflow vulnerabilities. Most vendors have updated their packages already to fix this vulnerability. "The most severe vulnerability allows remote intruders to gain root privileges . . .. The Computer Emergency Response Team has updated their advisory on the recent Kerberos buffer overflow vulnerabilities. Most vendors have updated their packages already to fix this vulnerability. "The most severe vulnerability allows remote intruders to gain root privileges on systems running services using Kerberos authentication. If vulnerable services are enabled on the Key Distribution Center (KDC) system, the entire Kerberos domain may be compromised. " . The Computer Emergency Response Team has updated their advisory on the recent Kerberos buffer overfl. computer, emergency, response, updated, their, advisory, recent, kerberos, buffer, overfl. . Anthony Pell
May 20, 2000
•
Network Security
74
buffer overflowkerberossecurity protocolKerberos Legal Issues And Security Protocol Modifications Amid Concerns
This article discusses the recent turmoil over the Slashdot postings regarding Kerberos, and the modifications that Microsoft has made to the Kerberos security protocol. "On Thursday, lawyers for Andover.Net, the parent company of the Linux enthusiast site Slashdot, posted . . .. This article discusses the recent turmoil over the Slashdot postings regarding Kerberos, and the modifications that Microsoft has made to the Kerberos security protocol. "On Thursday, lawyers for Andover.Net, the parent company of the Linux enthusiast site Slashdot, posted a response to a legal challenge posed by Microsoft Corp. lawyers last week over Kerberos. On the same day, the Massachusetts Institute of Technology announced it was working with Apple Computer Inc. to ensure availability of Kerberos for the forthcoming Mac OS X operating system. And to top it all off, CERT warned of a Kerberos buffer overflow that could result in severe security problems for certain implementations." The link for this article located at Interactive Week is no longer available. . This article discusses the recent turmoil over the Slashdot postings regarding Kerberos, and the mod. article, discusses, recent, turmoil, slashdot, postings, regarding, kerberos. . Anthony Pell
May 19, 2000
•
Network Security
67
encryptioncybersecuritykerberosBruce Schneier: Kerberos, Windows 2000 and Software Security Tools
This month Bruce Schneier talks about Kerberos and Windows 2000, Software as a Burglary Tool, news on the DES replacement, a Business Week interview, and comments from readers. This newsletter is always worth reading. . . .. This month Bruce Schneier talks about Kerberos and Windows 2000, Software as a Burglary Tool, news on the DES replacement, a Business Week interview, and comments from readers. This newsletter is always worth reading. The link for this article located at Counterpane Security is no longer available. . Delve into Bruce Schneier's perspectives on Kerberos, the Windows 2000 architecture, and emerging software vulnerabilities through this enlightening CryptoGram.. Kerberos Security, Encryption Innovation, Cybersecurity Insights, Bruce Schneier Analysis. . LinuxSecurity.com Team
Mar 15, 2000
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More