Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
210
security advisoryUbuntupatchVLC Media Player: No Significant Vulnerabilities Detected in Software
There has been a lot of confusion over the last few days after news spread of a supposedvulnerability in the media player VLC. Despite being labelled as "critical", VLC's developers, VideoLAN, denied there was a problem at all. . And they were right. While there is a vulnerability, it was in a third-party library, not VLC itself. On top of this, it is nowhere near as severe as first suggested. Oh -- and it was fixed over a year ago. An older version of Ubuntu Linux was to blame for the confusion. The problem actually exists in a third-party library called libebml, and the issue was addressed some time ago. The upshot is that if you have updated VLC within the last year, there is no risk whatsoever. VLC's developers are understandably upset at the suggestion that their software was insecure. The link for this article located at BetaNews is no longer available. . Despite confusion over a critical flaw, VLC developers confirmed no vulnerabilities exist in their software, only in a library.. VLC Media Player, Libebml Library, Security Patch, Open Source Software. . Brittany Day
Jul 26, 2019
•
Security Vulnerabilities
78
security advisorycode executionvulnerabilityVLC Media Player Memory Flaws: Critical Risks for Code Execution
There are two memory corruption vulnerabilities in some versions of the VLC open-source media player that can allow an attacker to run arbitrary code on vulnerable machines. . Neither one of the vulnerabilities has been fixed by VideoLAN, the organization that maintains VLC. Security researcher Veysel Hatas reported the vulnerabilities to VideoLAN in December and published the advisories on Full Disclosure on Friday. One of the bugs is a DEP access violation vulnerability and the other is is a write access flaw. The link for this article located at ThreatPost is no longer available. . Two memory management vulnerabilities in VLC may allow attackers to execute unauthorized commands on unpatched systems. Stay informed about effective countermeasures. Memory Flaw, VLC Media Player, Code Execution Risk, Security Advisory. . LinuxSecurity.com Team
Jan 21, 2015
•
Vendors/Products
83
security advisorycriticalremote attackRealNetworks RealPlayer 10.0.5 Critical Advisory: Remote Attack Risk
Users who run the media players on Linux or Unix are at risk of attack, security experts claim Popular media players RealPlayer and Helix Player are at risk of a security vulnerability that could let malicious attackers launch remote attacks on a user's system, security experts say. . A flaw has been discovered in RealNetworks' RealPlayer version 10.0.5.756 Gold and Helix Player 1.0.5.757 Gold running on Linux or Unix operating systems, according to a report released Tuesday by the French Security Incident Response Team, or FrSIRT. Attack code that takes advantage of the flaw, a so-called exploit, has been posted on the Internet, increasing the security risk to users. The link for this article located at ZDNet.co.uk is no longer available. . A vulnerability has been identified in RealNetworks' RealPlayer 10.0.5.756 Gold and Helix Player 1.0, presenting potential security threats.. RealNetworks Security, Remote Attack Threat, Media Player Risks, Helix Player Vulnerability. . LinuxSecurity.com Team
Sep 28, 2005
•
Hacks/Cracks
81
media playerprivacy riskuser informationExamining Flash Player Privacy Risks: Data Tracking and User Info
Macromedia's Flash media player is raising concerns among privacy advocates for its little-known ability to store computer users' personal information and assign a unique identifier to their machines. "A lot of media players come with identifiers embedded in them to track content usage and digital rights management," Chris Hoofnagle, director of the Electronic Privacy Information Center's West Coast office, said. "With respect to Windows Media Player and now the Macromedia player, we're realizing that the media players themselves are creating privacy risks." . Flash, popular for its ability to play animation and video clips, employs a technology known as local shared objects to save up to 100KB of information on users' hard drives. By assigning a unique identifier to a computer and preserving it in the space for the local shared object, a website can recognize that someone has already visited the site, and advertisers can use the information to determine that a visitor has previously viewed an ad. Websites that require users to fill out personal information can also associate that data with the identifier. Macromedia does not view its software as a threat to user privacy. "The Flash player by its nature doesn't by default gather any information," Jeff Whatcott, vice president of product management at Macromedia, said. " We designed that technology from the beginning to make sure that (computer) users are always in control of their key information." Macromedia provides instructions on its website for how to disable local shared objects on an individual site or all sites, delete data that is already stored locally, and set the maximum space allowed for storage. Unfortunately, most Flash users are unaware that the player is storing any information about them at all and are unlikely to see these instructions or understand how to follow them. The link for this article located at Security Pipeline is no longer available. . Flash, popular for its ability to play animation and video clips,employs a technology known as loca. macromedia's, flash, media, player, raising, concerns, among, privacy, advocates, little-known. . LinuxSecurity.com Team
Apr 21, 2005
•
Privacy
81
consumer protectionmedia playerinternet privacyWindows XP Media Player Data Logging Risk Highlighted By Privacy Advocate
A prominent Internet privacy advocate says Microsoft Corp. should have warned consumers that the media player that ships with its new Windows XP operating system connects to a server operated by the software giant and reports what DVDs customers insert into their PCs.. . .. A prominent Internet privacy advocate says Microsoft Corp. should have warned consumers that the media player that ships with its new Windows XP operating system connects to a server operated by the software giant and reports what DVDs customers insert into their PCs. Richard M. Smith said in a posting to Internet security mailing lists Wednesday that the Windows Media Player version 8 installed by default along with millions of copies of XP automatically contacts a Microsoft Web server to look up information about DVDs played by users. Smith, who one month ago complained that earlier - and more ubiquitous - versions of the Windows Media Player can give up a uniquely identifying digital fingerprint when communicating across the Internet, said that a similar ID number is transmitted when the version 8 player looks up DVD "chapter" information at a Microsoft Web site. The link for this article located at Newsbytes is no longer available. . An information rights activist condemns Google for failing to inform users regarding data tracking by Android's default settings.. Privacy Awareness, Microsoft Concerns, Data Logging, Windows XP Issues, Consumer Protection. . LinuxSecurity.com Team
Feb 21, 2002
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More