Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
78
Red Hatbuffer overflowsecurity measuresImmunix: Protect Red Hat Linux with StackGuard and FormatGuard Techniques
One aspect of security, then, is to prevent these attacks whenever possible. This is where WireX and their Immunix distribution and StackGuard compiler come in. WireX's StackGuard compiler is based on the egcs compiler, but has been rewritten to remove buffer . . . . One aspect of security, then, is to prevent these attacks whenever possible. This is where WireX and their Immunix distribution and StackGuard compiler come in. WireX's StackGuard compiler is based on the egcs compiler, but has been rewritten to remove buffer overflow vulnerabilities. The Immunix distribution is based on Red Hat Linux 7.0, but the majority of the distribution has been compiled with the StackGuard compiler instead of the standard GNU compilers. (There are a few exceptions, but I'll get to those a bit later.) WireX has also come up with FormatGuard, a patched version of glibc 2.2 that protects against the format vulnerability discovered in June 2000. The "format bug" may allow unfiltered data to be returned to a program, causing problems similar to a buffer overflow. WireX has also created a remote administration utility called the RNAEngine that allows remote administration of most if not all services on Immunix server appliances. Unlike the rest of the Immunix distribution, the RNAEngine is not available for download -- but if you want to test-drive it, you can find a demo on the WireX Web site (). The link for this article located at UnixReview is no longer available. . Discover WireX's Immunix distribution, engineered to thwart intrusions utilizing StackGuard to combat buffer overflow and format vulnerabilities.. Immunix Distribution, StackGuard Compiler, FormatGuard Security. . LinuxSecurity.com Team
Apr 19, 2001
•
Vendors/Products
67
network securitytunnelingIPSecCost-Effective IPSec Implementation for Remote Access on Linux Firewalls
This August 2000 SANS article does a great job of describing cost-effective methods for implementing IPSec using NIST Cerberus IPSec Reference Implementation. "We experimented with different approaches to provide a cost-effective method of remote logon activities including SSH scripting and S/WAN . . . . This August 2000 SANS article does a great job of describing cost-effective methods for implementing IPSec using NIST Cerberus IPSec Reference Implementation. "We experimented with different approaches to provide a cost-effective method of remote logon activities including SSH scripting and S/WAN IPSec implementation but due to the private network we are using for our core business, we have chosen a simple solution provided by NIST Cerberus IPSec and the PlutoPlus IKE software for encapsulation or tunneling between our Linux firewalls and the security console. Also, we are currently using IPv4 and not IPv6. [By the end of August 2000, the Cerberus software will be made available to the public.] We have chosen Cerberus because of its built-in user interface and web-based tester (WIT) for interoperability testing capability. More importantly, NIST Advanced Networking Technologies Division has provided substantial research in IPSec, and has incorporated IPv6 standardization in the Cerberus software. We have come to realize that VPN is the answer or solution to our specific problem. " The link for this article located at SANS is no longer available. . This August 2000 SANS article does a great job of describing cost-effective methods for implementing. august, article, great, describing, cost-effective, methods, implementing. . LinuxSecurity.com Team
Feb 07, 2001
•
Cryptography
74
encryptionsystem administrationopensshOptimizing OpenSSH: Enhancing Remote Access for UNIX Platforms
One of the coolest things about UNIX has been that there is not one but several different ways to administer systems from remote consoles. Sad to say, most of these methods (Telnet, rsh and X, to name a few) send everything . . . . One of the coolest things about UNIX has been that there is not one but several different ways to administer systems from remote consoles. Sad to say, most of these methods (Telnet, rsh and X, to name a few) send everything over the network in clear text, including passwords. The combination of our reliance on the Internet with the proliferation of script kiddies and other packet-sniffing deviants has made administrative clear-text network applications obsolete. But a few years ago Finnish über-hacker Tatu Ylonen created a mind-blowingly cool thing called the Secure Shell, or ssh. ssh is a suite of tools that roughly correspond to Sun's rsh, rcp and rlogin commands, but with one very important difference: paranoia. ssh lets you do everything rsh, rcp and rlogin do, using your choice of libertarian-grade encryption and authentication methods. But wait--there's a catch--ssh version 1 relies heavily on RSA, an excellent, but as we say, encumbered (patented) technology that requires any application that uses it to be licensed (paid for) unless it's used in noncommercial settings (even in noncommercial use ssh's legality has always been murky, especially in the US). But wait, you say, RSA's US patents expired in September 2000--problem solved, right? Almost: Tatu's got to earn a living, so by the time RSA became less encumbered, ssh itself had become more so as his company F-Secure tightened the licensing reins. In fact, beginning with ssh version 2.0, unlicensed/free commercial use (regardless of RSA issues) was no longer permitted. All this despite Tatu's sincere desire that ssh become an Internet standard, one of the requirements of which is that at least one free implementation be available. The link for this article located at Linux Journal is no longer available. . Delveinto the multifaceted applications of OpenSSH within UNIX systems, bolstering remote management and safeguarding network integrity through robust encryption techniques.. OpenSSH Uses, Remote Administration, Network Security Tools, Encryption Methods, UNIX Tools. . Anthony Pell
Dec 29, 2000
•
Network Security
78
open source softwarefile transfersSSHSSH 2.2 Release: Improvements for Remote Admin and File Transfers
"SSH Communications Security (SSH), the world-leading developer of Internet security technologies and developer of the Secure Shell standard, today announced SSH(R) Secure Shell(TM) 2.2. With over three million users in 80 countries, SSH Secure Shell is the recognized de-facto standard . . .. "SSH Communications Security (SSH), the world-leading developer of Internet security technologies and developer of the Secure Shell standard, today announced SSH(R) Secure Shell(TM) 2.2. With over three million users in 80 countries, SSH Secure Shell is the recognized de-facto standard for secure remote administration and secure file transfers over the Internet. SSH Secure Shell 2.2 is available for Microsoft Windows 95, 98, NT, and 2000 and Sun Solaris 2.6 and 7, Red Hat and SuSe Linux distributions based on 2.2 kernel, FreeBSD and NetBSD, HP/UX 10.20 and 11.x, Compaq Tru64 UNIX, and many other platforms." The link for this article located at Newsalert [LWN] is no longer available. . SSH Communications Security unveils the launch of Secure Shell 2.2, enhancing secure remote management and file transfer capabilities.. Secure Shell, Remote Access, SSH Release, Administration Tool, File Transfer. . LinuxSecurity.com Team
Jun 06, 2000
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More