Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
209
cyber threatssecurity practicesLinux communityMemory-Safe Languages: Vital for Linux Security and Resilience
The importance of prioritizing memory-safe programming languages has never been greater. Using memory-safe programming languages such as Python, Java, C#, Go, Rust, and Swift offers significant security advantages for admins and programmers, while avoiding the vulnerabilities associated with memory-unsafe languages like C++. . Why Is Using Memory-Safe Programming Languages Critical for Robust Security? How Has the Linux Community Embraced Memory-Safe Languages? The Case for Memory Safe Roadmaps document released by cybersecurity agencies from multiple nations indicates a collective call for action towards prioritizing memory safety. Memory-related vulnerabilities have impacted major tech companies including Microsoft, Google, and Mozilla. These widespread vulnerabilities underscore the urgency for organizations to address memory safety in their programming languages. Luckily, there has been a significant shift towards memory-safe languages within the Linux community, exemplified by the official support for kernel modules written in Rust. This development underscores the growing recognition of the security benefits offered by memory-safe languages, even within the traditionally performance-driven Linux ecosystem. However, this shift raises critical questions for security practitioners, prompting them to consider factors such as the suitability of memory-safe languages for existing projects, potential trade-offs, and the cost of transitioning to a new language. As part of this strategic shift, organizations may choose to hire dedicated Java developers to modernize legacy systems with a memory-safe language that balances performance, scalability, and long-term security. Additionally, it underscores the importance of providing developers with the necessary tools and resources to facilitate a smooth transition and ensure ongoing security, such as software composition analysis (SCA) tools. Our Final Thoughts on the Importance of Using Memory-Safe Programming Languages This article servesas a call to action for security practitioners and administrators to reevaluate their approach to programming language selection, urging them to prioritize memory safety as a fundamental aspect of their security roadmap. We seek to emphasize the urgency of embracing memory-safe languages for long-term security and resilience in the face of evolving cyber threats. . Memory-safe programming languages like Rust and Go are essential in Linux to combat rising memory errors and security vulnerabilities, ensuring robust code and user data safety. Memory Safe Languages, Secure Programming, Linux Development, Cyber Threats, Software Composition. . Brittany Day
Apr 02, 2024
•
Security Trends
82
cybersecuritysoftware developmentprogramming practicesWhite House ONCD Advocates Memory-Safe Programming Adoption
The Office of the National Cyber Director (ONCD) emphasizes the urgent need for developers to adopt memory-safe programming languages like Rust to minimize vulnerabilities in software. The ONCD's Back to the Building Blocks: A Path Toward Secure and Measurable Software" report is a strong recommendation rather than an executive order or law. . What Is ONCD's Recommendation for Secure Software Development? Memory-unsafe languages such as C and C++ have long been a staple in software development, but significant cybersecurity risks have also accompanied it. As Anjana Rajan, the ONCD Assistant National Cyber Director for Technology Security, points out, past catastrophic cyber incidents like the Morris worm and the Heartbleed vulnerability have often stemmed from memory safety vulnerabilities. The prevalence of security bugs in the C language is a significant issue. Almost 50% of reported vulnerabilities in the seven most widely used languages over the past decade were in C. While factors like its longevity and widespread use can contribute to this statistic, Kees "Case" Cook, a Google Linux kernel security engineer, notes that C's inherent weaknesses and undefined behaviors make it prone to security flaws. The growing endorsement of memory-safe languages like Rust by industry giants such as Microsoft further emphasizes the need for a fundamental shift in programming practices. Microsoft Azure's CTO Mark Russinovich advises developers to avoid using C or C++ and opt for Rust. This aligns with Microsoft's ongoing efforts to rewrite core libraries in Rust and integrate them into their products, like Microsoft 365. This has significant implications for the security community, as it signals a shift towards safer programming languages and the potential abandonment of traditional languages like C and C++. From the perspective of a Linux admin, infosec professional, internet security enthusiast, or sysadmin, ONCD's report highlights the immediate impact and long-term consequences of usingmemory-unsafe languages. The report prompts critical thinking and raises important questions regarding the security of existing codebases. It also serves as a call to action for these professionals to consider adopting memory-safe languages and implementing advanced diagnostics to improve software security. Our Final Thoughts on ONCD's Recommendation The recommendation from the White House's Office of the National Cyber Director to move towards memory-safe programming languages like Rust sheds light on the critical issue of software vulnerabilities. Making informed decisions in software development can help minimize cybersecurity risks. Industry leaders' growing endorsement of memory-safe languages and the potential long-term consequences for traditional languages like C and C++ should prompt a renewed focus on software security and adopting safer programming practices. What are your thoughts on ONCD's recommendation? Do you agree or disagree? Connect with us on X @lnxsec and let's have a discussion! . The ONCD's latest advisory highlights the need for a shift to memory-secure programming languages to combat cybersecurity threats in software engineering. Memory Safety, Secure Languages, Cybersecurity Recommendations. . Brittany Day
Mar 04, 2024
•
Government
67
security researchSSL break techniquesOWASP conferenceEffective SSL Break Techniques by Ivan Ristic at OWASP Sweden
In this video from the OWASP AppSec Research conference in Sweden, security researcher Ivan Ristic of Qualys discusses practical methods for breaking SSL.. The link for this article located at ThreatPost is no longer available. . Uncover techniques for compromising SSL as outlined by specialist Ivan Ristic during the OWASP AppSec event held in Sweden.. SSL Attack Methods, OWASP Conference, Ivan Ristic Insights, Secure Programming Techniques. . LinuxSecurity.com Team
Aug 18, 2010
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More