Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 8 articles for you...
67
encryptioncybersecurityprivacyEU Concerns Over Potential US Encryption Ban Impact on Privacy
The growing battle over end-to-end encryption took another turn last week, when EU officials warned that they may not take kindly to a US encryption ban or insertion of crypto backdoor technology. What is your opinion on this issue? We are in favor of strong encryption. Learn more: . In June 2019, senior US government officials met to discuss whether they could legislate tech companies into not using unbreakable encryption. According toPolitico, the National Security Council pondered whether to ask Congress to outlaw end-to-end encryption, which is a technology used by companies to keep your data safe and secure. To recap briefly, US law enforcement worries about its targets such as criminals and terrorists “going dark” by using this technology to shield their communications. Banning it outright would make it easier for government agencies to access those messages and documents. Encryption advocates counter that making encryption breakable would also allow malicious actors such as foreign governments to steal domestic secrets and they also worry about unlawful access to information by their own governments. The link for this article located at Naked Security is no longer available. . EU representatives express concerns over a potential US ban on encryption that could endanger the integrity of robust cryptographic safeguards.. End-to-End Encryption, US Legislation, Privacy Rights, Cybersecurity, Encryption Ban. . LinuxSecurity.com Team
Nov 27, 2019
•
Cryptography
82
integrationtechnologycollaborationIntegrating Technologists And Policymakers For Effective Solutions
Technology should not be separated from policy; however, in reality there is very little intersection between the two. "Policymakers need to recognize this danger, and to welcome a new generation of technologists to help solve the socio-technical policy problems of the 21st century. We need to create ways to speak tech to power -- and power needs to open the door and let technologists in." Read more about this issue and how it can be remedied in a great Schneier on Security article: . Technologists and policymakers largely inhabit two separate worlds. It's an old problem, one that the British scientist CP Snow identified in a 1959 essay entitled The Two Cultures . He called them sciences and humanities, and pointed to the split as a major hindrance to solving the world's problems. The essay was influential -- but 60 years later, nothing has changed. When Snow was writing, the two cultures theory was largely an interesting societal observation. Today, it's a crisis. Technology is now deeply intertwined with policy. We're building complex socio-technical systems at all levels of our society. Software constrains behavior with an efficiency that no law can match. It's all changing fast; technology is literally creating the world we all live in, and policymakers can't keep up. Getting it wrong has become increasingly catastrophic. Surviving the future depends in bringing technologists and policymakers together. Consider artificial intelligence (AI). This technology has the potential to augment human decision-making, eventually replacing notoriously subjective human processes with something fairer, more consistent, faster and more scalable. But it also has the potential to entrench bias and codify inequity, and to act in ways that are unexplainable and undesirable. It can be hacked in new ways, giving attackers from criminals and nation states new capabilities to disrupt and harm. How do we avoid the pitfalls of AI while benefiting from its promise? Or, more specifically, where and how should governmentstep in and regulate what is largely a market-driven industry? The answer requires a deep understanding of both the policy tools available to modern society and the technologies of AI. The link for this article located at Schneier on Security is no longer available. . Experts in technology and governance must join forces on societal and technical matters to tackle new challenges successfully.. Technology Integration, Policy Framework, Artificial Intelligence, Socio-Technical Systems. . Brittany Day
Nov 14, 2019
•
Government
81
technologyprivacylawmakersNYC Introduces Legislation For Facial Recognition Regulation
New York City lawmakers are not advocating an outright ban of facial recognition technology, but say that regulation is necessary to know how police and business owners are using the software. What is your opinion on this? We'd love to hear your thoughts. Learn more in a great Security Today article: . Spurred by the use of facial recognition software in Madison Square Garden, new legislation proposed by the New York City Council could bring regulation of the technology to the country’s largest metropolitan area. Interestingly, lawmakers in the city are taking a different approach to facial recognition than their counterparts in three California cities and one Massachusetts town, where the use of the software by police and public agencies is now banned. New York City Councilman Ritchie Torres, who introduced a bill that would require businesses to notify customers that they are using facial recognition, said he is cautioning legislators to “tread carefully rather than going too far” by banning it. The link for this article located at Security Today is no longer available. . Prompted by advanced facial recognition technology within the confines of Madison Square Garden, lawmakers are advocating for stricter regulations in New York City.. Facial Recognition, New York City, Privacy Laws, Technology Regulation. . LinuxSecurity.com Team
Oct 25, 2019
•
Privacy
81
data protectioncomplianceprivacyExploring GDPR Compliance In Blockchain Privacy Design Efforts
General data protection regulation (GDPR) and blockchain is one of the industry’s most contentious debates at the moment. . Some believe that public permissionless blockchains cannot be GDPR compliant, and that private blockchains might be the answer to blockchain’s regulatory woes. Even so, private blockchains bring into question the very meaning of what a blockchain is. There is no simple answer. The link for this article located at The Next Web is no longer available. . The debate around blockchain's compliance with GDPR grows, raising essential issues regarding privacy by design as advocates and critics clash on data protection.. GDPR Compliance, Blockchain Privacy, Data Protection Regulation. . LinuxSecurity.com Team
Dec 14, 2018
•
Privacy
76
digital rightsonline privacycensorshipExamining Regulation And Censorship in Internet Freedom
The Internet is barreling down the same road of regulation and not-so-subtle censorship that has turned every other means of mass communication into a centralized and vanilla fountain of useless information. Kinda like television. . That The link for this article located at ThreatPost is no longer available. . Navigating digital freedom today involves balancing complex challenges of regulation and censorship, as stakeholders debate public safety against personal rights.. Censorship Challenges, Internet Regulation, Digital Rights, Online Privacy, Mass Communication. . Alex
Aug 07, 2015
•
Organizations/Events
82
identity theftprivacy lawonline securityProposed Cybersecurity Regulations By Obama For Enhanced Privacy
President Obama used a speech at the Federal Trade Commission on Monday to call for a raft of new laws and reforms that would protect the privacy and online security of U.S. citizens and corporations. . Speaking at the FTC, President Obama highlighted a number of policies that he will propose in his State of the Union address to Congress. They include new laws aimed at endemic problems like identity theft and online tracking of consumer behavior. The link for this article located at Security Ledger is no longer available. . Speaking at the FTC, President Obama highlighted a number of policies that he will propose in his St. president, obama, speech, federal, trade, commission, monday. . Alex
Jan 14, 2015
•
Government
82
traffic managementcourt rulingnet neutralityU.S. Court Ruling on FCC’s Net Neutrality Authority and Broadband Control
On Tuesday in Washington, DC, the U.S. Court of Appeals for the District of Columbia ruled that the FCC lacks authority to require broadband providers to give equal treatment to all Internet traffic flowing over their networks.. This begs two questions. First, if not the FCC, then who has that authority? The second, bigger question is what does this do for the issue of Net Neutrality in the United States? The decision was a victory for cable provider Comcast who has been accused of traffic shaping on its network. Comcast argues, perhaps correctly, that since they built the network and since they manage the network, they are in the right when it comes to what traffic can and cannot cross their network. On the other side are users and companies, like Google, that feel that the pipes, regardless of who owns them, should be open and available to whomever wants to use them. And therein is the rub. Third party providers of services such as VoIP have long complained that Comcast has been throttling their packets, resulting in a lower quality of service, while Comcast gave a higher QoS its own packets. This is all well and good if you are trying to keep a competing product out (or so the mantra of capitalism would go) but it causes issues when you are communicating between systems, or, as Google has argued in the past, when the route from Point A to Point E goes across the network of Point C. The link for this article located at Linux Journal is no longer available. . This begs two questions. First, if not the FCC, then who has that authority? The second, bigger ques. tuesday, washington, court, appeals, district, columbia, ruled. . Anthony Pell
Apr 08, 2010
•
Government
82
cybersecuritydata privacyidentity theftU.S. Businesses Under Regulatory Scrutiny for Data Privacy Standards
U.S. businesses for years have urged the government to let them set computer-security standards of their own, but their inability to do so could now prompt Congress to step in, experts say. Those who worry that regulation may stifle innovation say the business community may have already missed an opportunity to prove the government's help is not needed. . "The market is in a much better position to respond to this challenge...but corporate America has not provided evidence across the board that they've taken this issue seriously enough to protect consumers," said Bob Dix, a lobbyist for Citadel Security Software, who until last year handled cybersecurity for a congressional subcommittee. The private sector is under scrutiny after a string of incidents at data brokers, retailers and other businesses exposed at least half a million U.S. citizens to identity theft. The business community for years has argued that any government regulations would quickly become outdated in a rapidly changing field, and a 2003 Bush administration plan called on the private sector to set its own standards. Working with the the Homeland Security Department, an industry-led task force issued a set of guidelines in April 2004 that called for company chief executives to take direct responsibility for their computer systems. One year later, only two companies have adopted the guidelines: Entrust and RSA Security, whose chief executives co-chaired the task force. The link for this article located at ZDNet News is no longer available. . Legislators are ready to implement rules regarding digital privacy as American companies encounter pressure due to the absence of voluntary guidelines.. Data Privacy Laws, Cybersecurity Standards, Corporate Responsibility. . Brittany Day
May 02, 2005
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More