Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
83
security conferencehacker culturesecurity communityDefCon 19: Gathering of Security Professionals and Hacker Culture
At DefCon III in 1995, the young crowd of 470 spent their time jamming a local radio station broadcast and playing Hacker Jeopardy at midnight when they couldn't drink at the bar. "Free Kevin" stickers were plastered everywhere protesting the jailing of fugitive hacker Kevin Mitnick, and a 14-year-old ran away from home to attend the event. (I know because I was there.). At DefCon 19 this year, plenty of the nearly 12,000 attendees had gray hair, most work as security professionals, and some even brought their children. Mitnick was there signing copies of his latest book, "Ghost in the Wires," and posing for photographs, before appearing as a guest on "The Colbert Report" last week. A community is growing and growing up. The link for this article located at CNET is no longer available. . During EuroSec 2021, an expanding network of cybersecurity experts gathers to exchange knowledge and forge relationships among varied participants.. DefCon Event,Hacker Community,Security Industry,Tech Culture,Youth in Hacking. . LinuxSecurity.com Team
Aug 24, 2011
•
Hacks/Cracks
76
software developmentsecure codingcoding practicesIntroducing SC-L Forum for Secure Coding Practices and Discussions
I would like to announce the availability of a new and free resource to the software security community, the SC-L email discussion forum. The moderated forum is open to the public. The group's purpose is, "to further the state of the practice of developing secure software, by providing a free and open, objectively moderated, forum for the discussion of issues related to secure coding practices throughout a software development lifecycle process (including architecture, requirements and specifications, design, implementation, deployment, and operations).". . . . I would like to announce the availability of a new and free resource to the software security community, the SC-L email discussion forum. The moderated forum is open to the public. The group's purpose is, "to further the state of the practice of developing secure software, by providing a free and open, objectively moderated, forum for the discussion of issues related to secure coding practices throughout a software development lifecycle process (including architecture, requirements and specifications, design, implementation, deployment, and operations)." (The complete text of the group's charter, including its acceptable and unacceptable usage policies, can be found at ) To subscribe to the list, simply connect to and follow the directions on the form. Submissions should be sent (by subscribers only) to
Dec 01, 2003
•
Organizations/Events
82
software flawsgovernment initiativecybersecurity practicesGovernment's Directive: Responsible Disclosure of Software Flaws
The government is urging "white hat" hackers to search for security flaws in software, but also wants them to only pass information about those flaws on to software vendors and the government, not to the rest of the security community as . . . . The government is urging "white hat" hackers to search for security flaws in software, but also wants them to only pass information about those flaws on to software vendors and the government, not to the rest of the security community as is common practice today. Speaking at the annual Black Hat Conference of Information Technology Professionals in Las Vegas Wednesday, Richard Clarke, President Bush's special advisor for cyber space security, said security professionals have an obligation to be responsible with the disclosure of security vulnerabilities. They should first report vulnerabilities to the vendor who makes the software in which the vulnerability is found, and then tell the government if the vendor doesn't take action. Only after a patch for the vulnerability is distributed, he said, should others be notified about the vulnerability. The link for this article located at Internetnews.com is no longer available. . Officials advocate for "ethical" hackers to disclose security vulnerabilities exclusively to developers and regulatory bodies initially.. White Hat Hackers, Software Flaws, Cybersecurity Practices. . Anthony Pell
Aug 01, 2002
•
Government
76
network securityinformation sharingcybersecurity conferenceDefCon 2022: The Biggest Hacker Event in Las Vegas This Year
Sin City is about to be packed with thousands of hackers, wannabe geeks and phreaks who envision the perfect world as the following: Computer networks would welcome curious exploration, all information would be openly shared, a lot of public toilets would . . . . Sin City is about to be packed with thousands of hackers, wannabe geeks and phreaks who envision the perfect world as the following: Computer networks would welcome curious exploration, all information would be openly shared, a lot of public toilets would be filled with concrete and no swimming pool would go unfilled with several blocks of dry ice. Welcome to Defcon 2002, billed as the "the largest Internet security gathering on the planet." With plenty of booze, boasts and hard information on how to subvert systems and society, Defcon can't accurately be described as a polite or sober sort of event. But the worst that usually happens to the unwary or witless are occasional hassles born of attendees' overindulgence in alcohol and ego, along with exposure to a lot of good-natured practical jokes like the eerily smoking pools and occasionally blocked restroom facilities. The link for this article located at Wired is no longer available. . Delve into the vibrant atmosphere of DefCon, where cybersecurity enthusiasts unite in the neon-lit expanses of Las Vegas for collaboration and knowledge exchange in safeguarding technology.. DefCon 2022, Cybersecurity Conference, Hacker Gathering. . Anthony Pell
Aug 01, 2002
•
Organizations/Events
78
vulnerability disclosuresecurity communityBugTraqImpact of Symantec's Acquisition on the BugTraq Community
There's been considerable discussion this weekend of the recent sale of SecurityFocus to mega-corporation Symantec for a sweet $75 million. At issue in particular is SF's BugTraq mailing list, which has for years been the most popular full-disclosure vulnerability list going.. . .. There's been considerable discussion this weekend of the recent sale of SecurityFocus to mega-corporation Symantec for a sweet $75 million. At issue in particular is SF's BugTraq mailing list, which has for years been the most popular full-disclosure vulnerability list going. While Symantec has stated that it will not exert influence on BugTraq, which it now owns, many list members find that assurance hard to trust. However, in this case only time will tell. I personally have little doubt that the SF staff intend to keep BugTraq and its extensive archives independent and free. Whether they'll succeed in the long run is an entirely different matter. The deal has generated further controversy because SF has sold something quite valuable which it received free of charge, namely the exploits submitted by list members. These are valuable for developing scanning software like Snort, Nessus, and the like. And naturally, when this much cash changes hands, people may get envious. They may also feel they're owed something for the free contributions they've voluntarily made. . There's been considerable discussion this weekend of the recent sale of SecurityFocus to mega-corpor. there's, considerable, discussion, weekend, recent, securityfocus, mega-corpor. . LinuxSecurity.com Team
Jul 23, 2002
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More