Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
210
security advisorypatchnetworkingCritical Stack Overflow in Linux Kernel Module Resolved
An exploitable bug sitting in a popular Linux kernel module has been found after five years. A patch is finally available, experts say. . An exploitable bug sitting in a popular Linux kernel module, has been found after five years, researchers have claimed. Detailing the findings in a blog post , researcher Samuel Page from cybersecurity firm Appgate said the flaw was a stack buffer overflow, found in the kernel networking module for the Transparent Inter-Process Communication (TIPC) protocol. Page describes TIPC as an IPC mechanism designed for intra-cluster communication. “Cluster topology is managed around the concept of nodes and the links between these nodes,” he says. . A critical vulnerability within a widely-used Linux kernel component has been discovered after a prolonged five-year period, with accompanying instructions for remediation made available.. Linux Kernel Patch, Stack Overflow Exploit, Kernel Security Fix, TIPC Module Bug. . Brittany Day
Feb 18, 2022
•
Security Vulnerabilities
79
security educationkernel moduleLinux challengesAn Introductory Guide to Techniques for Kernel Exploitation
I’m writing this post because I often hear that kernel exploitation is intimidating or difficult to learn. As a result, I’ve decided to start a series of basic bugs and exercises to get you started! Prerequisites Knowledge of the Linux command line Knowing how to read and write basic C may be beneficial Being able to debug with the help of a virtual computer or another system Able to install the kernel module compilation build requirements A basic understanding of the difference between userland and kernelland could be helpful Having a basic understanding of assembly can be beneficial for future episodes For this part, I wrote a simple Linux character device , /dev/shell . This driver will take two arguments, uid and cmd , and it will execute the cmd command as the specified uid . To understand how this driver works, I’ll explain a few things! . . Dive into the fundamentals of kernel exploitation and enhance your skills with straightforward Linux challenges and practical exercises.. Kernel Exploitation, Linux Challenges, C Programming. . LinuxSecurity.com Team
Mar 27, 2021
•
Security Projects
76
security enhancementlinuxkernel moduleSysdig Donates Kernel Module To CNCF For Enhanced Linux Security
As part of an effort to advance Linux security, Sysdig has donated a sysdig kernel module, along with libraries for the Falco security platform for Kubernetes, to the Cloud Native Computing Foundation (CNCF). . The sysdig kernel module runs in the extended Berkeley Packet Filter (eBPF) microkernel created by the Linux community to enable security, networking and storage technologies to run closer to the Linux kernel without impacting how updates are made to the core operating system. When Sysdig originally created Falco, it also created an eBPF probe that ran within the eBPF microkernel. The company previously donated Falco to the CNCF in 2018 and by contributing the eBPF probe, will enable other security vendors to build security technologies that run within a Linux microkernel. The link for this article located at Security Boulevard is no longer available. . Sysdig has contributed a kernel extension and associated tools to CNCF, improving Linux security leveraging eBPF microkernel innovations.. Sysdig Donation,Linux Security Enhancement,eBPF Technology,Kubernetes Security,Cloud Native Computing. . Brittany Day
Feb 25, 2021
•
Organizations/Events
67
security advisorynetwork securityintrusion preventionIPFire 2.25: Enhanced Kernel Protection Against Rootkits
Have you heard about IPFire's new method of cryptographic kernel rootkit protection? IPFire is an open-source software that protects the network from external attacks and prevents intrusion. . In the latest release of test v2.25 – Core update 142, IPFire has introduced a new method to sign the Linux kernel module cryptographically. As a result of this, the attacker cannot execute an illegal action using a deployed third-party module into the IPFire kernel. This new approach of kernel rootkit protection can completely restrict the activities of hidden rootkits on the system. Any modification to the kernel code now requires validation using a cryptographic signature to check its authenticity and integrity. The link for this article located at Fossbytes is no longer available. . The latest update to IPFire incorporates digital signatures for kernel modules, bolstering defenses against rootkits and strengthening overall Linux security.. IPFire Kernel Security, Rootkit Defense, Cryptographic Techniques, Open Source Firewalls. . LinuxSecurity.com Team
Mar 18, 2020
•
Cryptography
79
network securityiptablesfirewall managementP2Pwall's ROPE: Enhanced Packet Matching with IpTables Scripting
ROPE is an IpTables packet matching module that allows complex logic to be defined using a simple scripting language. ROPE scripts run in the linux kernel, triggered by an IpTables rule and can inspect any portion of the IP packet - both headers and data payload. . So far, ROPE has been developed and tested against the 2.4.20 linux kernel and IpTables 1.2.8. I will port it to 2.6.x once I have released the initial version and it has received some exposure - this will probably happen late 2004 or early 2005. For now be aware that ROPE will almost certainly not work with a 2.6 kernel. The link for this article located at Chris Lowth is no longer available. . LINE is a Netfilter extension that provides advanced packet filtering within the Linux network stack. Explore its automation features!. IpTables, Packet Matching, Network Security, Kernel Module, Scripting. . LinuxSecurity.com Team
Dec 04, 2004
•
Security Projects
74
network protocolnetwork communicationLinux kernelCapturing TCP Data Through a Linux Kernel Module Implementation Guide
The network protocol stack, which forms the carrier and pipeline of data from one host to another is designed in such a way that we can interact with different layers at desired level. This article is a small attempt to describe the movement of data through these stacked layers and at the end we will try to implement a linux kernel module which helps us to capture the data flowing out to TCP layer and display it. . . .. The network protocol stack, which forms the carrier and pipeline of data from one host to another is designed in such a way that we can interact with different layers at desired level. This article is a small attempt to describe the movement of data through these stacked layers and at the end we will try to implement a linux kernel module which helps us to capture the data flowing out to TCP layer and display it. I think to talk about all those really basic network communication is not necessary here. So I will straight away talk about the implementation of TCP/IP communication. Network devices form the bottom layer of the protocol stack. they use a link layer protocol (usually Ethernet) to communicate with other devices to send and receive traffic. The interface put up by the network device driver copy packets from a physical medium, perform some error checks,Then puts up the packet to the network layer. Output interfaces receive packets from the network layer, perform some error checks, and then send them out over the physical medium. Here we shall talk about the IP which is the standard standard network layer protocol. The main functionality of IP is routing , it checks incoming packets to see if they are for the host computer or if they need to be forwarded. It defragments packets if necessary and delivers them to the transport protocols. It has a dynamic database of routes for outgoing packets; it addresses and fragments them if necessary before sending them down to the link layer. The link for this article located at LinuxGazzette is no longer available. . Grasping the networkprotocol stack is vital for those engaged in data transmission and capture, as it comprises layers with distinct functions to enable seamless communication.. Networking, TCP/IP, Data Analysis, Linux Kernel, Protocol Stack. . Anthony Pell
Mar 03, 2004
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More