Network Security
security advisory networking
security advisory networking For years, IPv4 was the only proxy type that really mattered for anyone running automation off a Linux box. IPv6 was the protocol everyone said they’d migrate to, but almost nobody actually did. In 2026, that’s finally starting to shift. . The problem is that most admins stick with IPv4 out of habit. They know it; it’s what their tooling defaults to, and they don’t see a reason to change. Some are overpaying for addresses they don’t need. Others would quietly break their scrapers, scripts, or...
Jun 09, 2026
Network Securityopen-source python
open-source python Researchers recently identified another wave of malicious packages on PyPI linked to the broader Mini Shai-Hulud campaign, a worm-like supply chain attack that spread through trusted software packages. On the surface, the packages looked no different from thousands of others published to the repository each week. . Instead of trying to break into a target network directly, the attackers hid malicious code inside software that developers were already using. A few downloads are all it takes....
Jun 09, 2026
Security Vulnerabilities malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -3 articles for you...
83
software releasecybersecurityopen source toolL0phtCrack 6: Significance Of Revived Password Cracking Tool
Another article discussing the legendary l0phtcrack password cracking and auditing tool. Works on crypt, NTLM Windows passwords, and many other types. Great stuff. It's official: The famous password-cracking tool L0phtCrack is back, and its creators plan to keep it that way. L0phtCrack 6 tool, released Wednesday, was developed in 1997 by Christien Rioux, Chris Wysopal, and Peiter "Mudge" Zatko from the former L0pht Heavy Industries -- the hacker think tank best known for testifying before Congress that it could shut down the Internet in 30 minutes. In January of this year, Rioux, Wysopal, and Zatko bought back L0phtCrack from Symantec, and later announced they would build a new version of the tool with support for 64-bit Windows platforms and other new features. . "When Symantec stopped supporting L0phtCrack [in 2005], a lot of people were still using it. They left their customers high and dry," says Mudge, who, along with his co-developers, had initially worried that could happen. "We had clauses in place so that if Symantec ever did cease to support and maintain it, we could have certain options [to get it back]. We didn't want somebody to take it from us and deep-six it. We thought it was a useful tool." The link for this article located at Dark Reading is no longer available. . Back again, L0phtCrack rises! Brought forth by famed hacking pioneers, this application gears up for a fresh chapter in password security assessment.. L0phtCrack, Password Auditing, Password Cracking Tool, Cybersecurity, Open Source Tool. . LinuxSecurity.com Team
May 29, 2009
•
Hacks/Cracks
83
security toolspassword managementuser educationKey Techniques for Safeguarding Your Passwords Effectively
Sex, Drugs, Money...How many of these words are common passwords on your network? The answer is probably too many. For beginners and even seasoned Linux security veterans, this should be something that needs to be consistantly checked. . . . Sex, Drugs, Money...How many of these words are common passwords on your network? The answer is probably too many. For beginners and even seasoned Linux security veterans, this should be something that needs to be consistantly checked. This article comes about because of a recent thread on the security-basics mailing list regarding password crackers. Akin to this topic are the passwords themselves. The average user has a mildly uncomplicated password; generally not even a combination of upper and lower case characters or even any numbers. The fact of the matter is that passwords are an important piece of the security puzzle. More times than not, the average user is the one that you are working for. SysAdmins, if taking a look at your users password's are not a piece of your agenda, make it one. I am not saying that it must be done every day, but what easier way to break into a system than an easy to guess password. My first suggestion would be to do a sanity check on your password file. Run a password cracker on the password file and see how many usernames are broken in the first 10 min, or even the first hour. Odds are someone more patient than you would like to have access to your network. Another thing to keep in mind when looking at passwords is to never allow one of your users to use a 1337 version password. The problem is that they are based on dictionary words, with simple, common letter substitutions. In password cracking metrics, this is only one step up (common permutations) from a plain dictionary attack. Do not base your passwords on dictionary words, phonetic misspellings, names, slang, etc. One idea suggested on the mailing list was to do a 'strings -8 /dev/urandom' and then pick something from the first screenful that you or your usercan memorize. This is a random way of generating a password that even allows you to choose something easy for you. Listed below are a few tools that can be used for password auditing. Run one of them against your password file and notify all the users whose passwords were figured out they need to use more complicated passwords. Something else that may be worth your while is to look into password generators. They are many good freely available password generators. You should always use whichever method is best for you. Password Generators: Passsafe L33t-5p34K G3n3r@t0r Java Password Generator hichac Generates Passwords and puts them into an apache .htaccess file. Password Crackers: Perl Crack John the Ripper Crack 5.0a . Investigate frequent password mistakes and safeguard your users' accounts through robust password handling strategies.. Password Security, User Education, Auditing Tools. . LinuxSecurity.com Team
Jun 27, 2002
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More