Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 5 articles for you...
67
cryptographyonline securitygovernment researchGCHQ's Role In Advancing Public Key Cryptography For Online Security
Public key cryptography is widely used to secure online transactions. The maths behind the technology was invented by UK Government Communications Headquarters scientists in the late 1960s and early 1970s.. The discovery was kept secret to avoid revealing how closely Government Communications Headquarters (GCHQ) was working with the US National Security Agency (NSA) at the time. The breakthrough by GCHQ scientists James Ellis, Clifford Cocks and Matthew Williamson only came to light in 1997, when their work was declassified. In public key cryptography, data is encrypted using a widely distributed public key, and can be decrypted using a private key. GCHQ mathematician Clifford Cocks, who invented the practical method of public key cryptography in 1973, and Ralph Benjamin, who was GCHQ's chief scientist from 1971 to 1982, told ZDNet UK about their pioneering work. The link for this article located at ZDNet UK is no longer available. . Delve into the origins of public key cryptography, its contributions by GCHQ, and its pivotal role in safeguarding digital exchanges through sophisticated mathematical principles.. Public Key, Cryptography, Security Technology. . LinuxSecurity.com Team
Oct 26, 2010
•
Cryptography
67
encryptiondigital signaturecryptographyExploring PGP: Encryption, Digital Signatures, And Email Security
PGP has two uses. First, it is an encryption system that uses public-key cryptography. Each user has a public key and a private key. In simple terms, you can encrypt a message using someone's public key and they can decrypt it using their private key. (A one-off session key is actually involved.) If the private key has been kept truly private, no one else can read the message. . More commonly, PGP is used to create a digital signature based on the contents of an email. This enables the recipient to verify that the message has not been changed, using the sender's public key. . PGP integrates both encryption and digital signing to facilitate secure messaging via email employing techniques of public-key cryptography.. encryption system, public key security, digital signature. . LinuxSecurity.com Team
May 24, 2007
•
Cryptography
67
encryptioncryptographypublic keyUnderstanding Elliptic Curve Cryptography and Mathematical Concepts
Elliptic Curve Cryptography (ECC) is a public key cryptography. In public key cryptography each user or the device taking part in the communication generally have a pair of keys, a public key and a private key, and a set of operations associated with the keys to do the cryptographic operations. Only the particular user knows the private key whereas the public key is distributed to all users taking part in the communication. Some public key algorithm may require a set of predefined constants to be known by all the devices taking part in the communication. ?eDomain parameters?f in ECC is an example of such constants. Public key cryptography, unlike private key cryptography, does not require any shared secret between the communicating parties but it is much slower than the private key cryptography. . The mathematical operations of ECC is defined over the elliptic curve y2 = x3 + ax + b, where 4a3 + 27b2 ? The link for this article located at Info Sec Writers is no longer available. . Elliptic Curve Cryptography employs mathematical functions for robust public key encryption by utilizing elliptic curves.. Elliptic Curve Cryptography, Public Key Encryption, ECC Algorithm. . LinuxSecurity.com Team
Jan 24, 2007
•
Cryptography
67
cryptographysecurity challengespublic keyExpert Panel Discusses Usability Barriers in Cryptography Adoption
US government controls held back cryptography in the past, but today, it's usability that blocks adoption, a panel of experts said on Thursday. At an event in Mountain View, California, celebrating 30 years of public key cryptography, several top minds in the field gathered for a trip down memory lane. Over the years, public key cryptography has grown from an idea in a paper published by Whitfield Diffie and Martin Hellman, both present at the event, to technology used in everyday transactions on the web. . The link for this article located at ZDNet.co.uk is no longer available. . The link for this article located at ZDNet.co.uk is no longer available.. government, controls, cryptography, today, usability, blocks. . LinuxSecurity.com Team
Oct 31, 2006
•
Cryptography
67
securitycryptographyOpenSSHInsights from Damien Miller on OpenSSH 4.3 Features and Security
Federico Biancuzzi interviews OpenSSH developer Damien Miller to discuss features included in the upcoming version 4.3, public key crypto protocols details, timing based attacks and anti-worm measures. . Could you introduce yourself? Damien Miller: I am one of the developers of OpenSSH and OpenBSD. I have been working on OpenSSH since starting the project to port it to other platforms (initially Linux) back in 1999, but found myself working more and more on the native OpenBSD version of OpenSSH and on the OpenBSD operating system itself as time went on. I also maintain a couple of other free software projects, most notably a collection of NetFlow tools (pfflowd, flowd and softflowd). The link for this article located at SecurityFocus is no longer available. . Delve into the perspectives of OpenSSH creator Damien Miller as he discusses innovative functionalities, advanced security measures, and cryptographic advancements.. OpenSSH Features, Cryptography Protocols, Security Insights, Timing Attacks. . LinuxSecurity.com Team
Dec 20, 2005
•
Cryptography
67
encryptionOpenSSLopen sourceSun Donates Elliptic Curve Technology To OpenSSL For Secure Transactions
Sun's "elliptic curve" technology is involved in the process of using keys to encrypt and decrypt information for electronic transactions. Such encryption lets people buy products online, for example, while shielding their credit card number from prying eyes. The Santa Clara, . . . . Sun's "elliptic curve" technology is involved in the process of using keys to encrypt and decrypt information for electronic transactions. Such encryption lets people buy products online, for example, while shielding their credit card number from prying eyes. The Santa Clara, Calif.-based server seller donated the technology to the OpenSSL project, a programming group that makes an open-source version of the Secure Sockets Layer (SSL) encryption system. Elliptic curve cryptography will enable secure communications with devices that don't have as much calculating power as most desktop computers, said Whitfield Diffie, Sun's chief security officer and a pioneer of the Diffie-Hellman "public key" cryptography method used today in SSL and other encryption systems. Diffie spoke Thursday during a news conference at the SunNetwork conference here. The link for this article located at cnet.com is no longer available. . The advanced elliptic curve framework developed by Sun improves the security of digital transactions and has been contributed to the OpenSSL project.. Elliptic Curve, Open Source Encryption, Secure Transactions, Public Key Cryptography. . LinuxSecurity.com Team
Sep 20, 2002
•
Cryptography
76
security practicescryptographyinformation assuranceInternational Cryptography Institute 2001 Conference: Highlights and Voices
Speakers include PGP creator Phil Zimmermann and the inventor of Public Key cryptography Whitfield "Whit" Diffie. The National Intellectual Property Law Institute (NIPLI) and its Information System Security & Education (ISSE) Center today announced the International Cryptography Institute 2001 conference, the . . . . Speakers include PGP creator Phil Zimmermann and the inventor of Public Key cryptography Whitfield "Whit" Diffie. The National Intellectual Property Law Institute (NIPLI) and its Information System Security & Education (ISSE) Center today announced the International Cryptography Institute 2001 conference, the annual event and forum to educate corporate leaders on the benefits and developments in cryptography. ICI 2001 will be held at the Four Seasons Georgetown Hotel in Washington, D.C., 29 through 30 November, 2001. Contacts B.K. DeLong
Sep 27, 2001
•
Organizations/Events
67
encryptionauthenticationsecurity best practicesImplementing RSA and DSA Authentication for Passwordless Login
In this series, you'll learn how RSA and DSA authentication work, and see how to set up passwordless authentication the right way. In the first article of the series, Daniel Robbins focuses on introducing the RSA and DSA authentication protocols and . . . . In this series, you'll learn how RSA and DSA authentication work, and see how to set up passwordless authentication the right way. In the first article of the series, Daniel Robbins focuses on introducing the RSA and DSA authentication protocols and showing you how to get them working over the network. Many of us use the excellent OpenSSH (see Resources later in this article) as a secure, encrypted replacement for the venerable telnet and rsh commands. One of OpenSSH's more intriguing features is its ability to authenticate users using the RSA and DSA authentication protocols, which are based on a pair of complementary numerical keys. As one of its main appeals, RSA and DSA authentication promise the capability of establishing connections to remote systems without supplying a password. While this is appealing, new OpenSSH users often configure RSA/DSA the quick and dirty way, resulting in passwordless logins, but opening up a big security hole in the process. What is RSA/DSA authentication? SSH, specifically OpenSSH (a completely free implementation of SSH), is an incredible tool. Like telnet or rsh, the ssh client can be used to log in to a remote machine. All that's required is for this remote machine to be running sshd, the ssh server process. However, unlike telnet, the ssh protocol is very secure. It uses special algorithms to encrypt the data stream, ensure data stream integrity and even perform authentication in a safe and secure way. The link for this article located at is no longer available. . In this series, you'll learn how RSA and DSA authentication work, and see how to set up passwordless. series, you'll, learn, authentication, passwordless. . LinuxSecurity.com Team
Jul 26, 2001
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More