Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
82
security improvementfederal agencydata exposureOPM Breach Highlights Major Security Flaws in Federal Agency Systems
The massive hack at the Office of Personnel Management showed not just room for improvement but a lack of very basic security fundamentals -- and expertise.. The immediate thoughts from the security community when news broke of the data breach at the Office of Personnel Management (OPM) that exposed personnel files of four million federal workers were that this was yet another sign of the room for improvement in the federal government on the cybersecurity front. But as details continue to emerge about the true state of security at the agency prior to the breach and the plans officials have laid out to prevent such attacks in the future, the problem seems to be much bigger than originally thought. The link for this article located at Dark Reading is no longer available. . An extensive data breach at OPM uncovers significant vulnerabilities in their security framework, highlighting the pressing demand for upgrades in cybersecurity measures.. OPM Breach,Systemic Weakness,Cybersecurity Gap,Data Protection. . Anthony Pell
Jun 10, 2015
•
Government
79
ethical hackingsecurity gaphacker debateDebate Over Legal Protections For Ethical Hackers In The Netherlands
A Dutch MP who brought to light a security gap on a medical site is himself being accused of hacking crimes, pulling him into an ongoing debate in the Netherlands over 'ethical hacking.'. Henk Krol does not fit the stereotype of a computer hacker. He's not even that good with technology. The link for this article located at Christian Science Monitor is no longer available. . Mark Van der Meer sheds light on privacy concerns after revealing vulnerabilities in a financial platform but encounters potential lawsuits.. Ethical Hacking Issues, Legal Protections, Security Gaps, Hacker Debate, Dutch Law. . LinuxSecurity.com Team
Jan 17, 2013
•
Security Projects
83
exploitattackopen sourceLinux Kernel Exploit Reveals Serious Risks in Overlooked Weaknesses
A recently published attack exploiting newer versions of the Linux kernel is getting plenty of notice because it works even when security enhancements are running and the bug is virtually impossible to detect in source code reviews.. The exploit code was released Friday by Brad Spengler of grsecurity, a developer of applications that enhance the security of the open-source OS. While it targets Linux versions that have yet to be adopted by most vendors, the bug has captured the attention of security researchers, who say it exposes overlooked weaknesses. Linux developers "tried to protect against it and what this exploit shows is that even with all the protections turned to super max, it's still possible for an attacker to figure out ways around this system," said Bas Alberts, senior security researcher at Immunity. "The interesting angle here is the actual thing that made it exploitable, the whole class of vulnerabilities, which is a very serious thing." The link for this article located at The Register is no longer available. . A critical flaw affects the latest iterations of the Linux kernel, exposing hidden weaknesses even with robust security protocols in place.. Linux Kernel Exploit, Grsecurity Risks, Overlooked Security Flaws. . LinuxSecurity.com Team
Jul 18, 2009
•
Hacks/Cracks
82
security measuresfraud riskelectronic votingConcerns Over E-Voting Machine Security Gaps and Fraud Risks
Electronic voting machines will be vulnerable to fraud this election season unless countermeasures are taken, according to a report issued last week by the New York University School of Law. E-voting devices, such as touch-screen or optical scan systems, are becoming more prevalent nationwide, and most of them are vulnerable to external attack, according to the report compiled by the school's Brennan Center for Justice. . he report was prepared over an 18-month period by computer scientists and voting machine experts working on a task force set up by the Brennan Center to examine voting system security. Larry Norden, chairman of the task force and an attorney at the Brennan Center, said that over the past several years, half of all manual voting systems in the U.S. have been replaced with electronic devices. Elections officials cite the need to meet the requirements of various federal laws and the need for improved accuracy in installing the systems. However, Norden said, "we've not necessarily adapted our [security] procedures to that new technology." The report cites some 120 potential threats to e-voting systems and notes that most states have no system in place to detect malicious software attacks. The link for this article located at ComputerWorld is no longer available. . Digital ballot systems encounter risks of manipulation during this electoral period, necessitating immediate protective strategies and safeguards.. Electronic Voting,Election Security,Voting Systems,Fraud Risks,Security Measures. . Brittany Day
Jul 04, 2006
•
Government
72
firewallthreat mitigationcorporate securityMicrosoft Security Expert Highlights Firewall Shortcomings
Firewalls aren't doing a good enough job of protecting corporate networks, according to a Microsoft security expert. Speaking in London on Monday at a technical briefing on the need for next generation firewalls, Microsoft security technology architect Fred Baumhardt outlined some of the gaps that traditional firewalls are leaving open. . . .. Firewalls aren't doing a good enough job of protecting corporate networks, according to a Microsoft security expert. Speaking in London on Monday at a technical briefing on the need for next generation firewalls, Microsoft security technology architect Fred Baumhardt outlined some of the gaps that traditional firewalls are leaving open. "We are all bloody lucky that something hasn't obliterated IT on earth," said Baumhardt. "Firewalls are like retarded routers. They just look at the ports, sources and destinations they like. If a train comes from Gare du Nord [Paris] to Waterloo [London] via Eurostar you allow it to enter the country because you trust it. That's what firewalls currently do. They don't check to see if al-Quaeda is riding inside." Ports allow certain types of Internet traffic to travel if they correspond with the correct port number. For example, HTTP runs on port 80 and is often regarded as a trusted port, and left open. In the past firewalls have often worked on this basis, without checking the content of traffic. But Baumhardt called for IT professionals to ensure they had better equipment. The link for this article located at zdnet.co.uk is no longer available. . Network security is failing to meet expectations, claims a briefing from a specialist at Microsoft.. Firewall Protection, Corporate Network Security, Next Generation Firewalls, Threat Mitigation. . Anthony Pell
Oct 06, 2004
•
Firewalls
74
security advisorycriticalremote accessOpenSSH Remote Access Advisory Critical: Security Issues Exposed
In a recent discussion about the Apache Chunk Handling vulnerability, which consisted of many debates and rants on how the reporting was done, ISS mentioned that they found another serious vulnerability in one other vendor's open source product. Theo de Raadt . . . . In a recent discussion about the Apache Chunk Handling vulnerability, which consisted of many debates and rants on how the reporting was done, ISS mentioned that they found another serious vulnerability in one other vendor's open source product. Theo de Raadt from OpenBSD and OpenSSH development team yesterday shed some light and announced that OpenSSH is vulnerable. This is his post to BugTraq mailing list: There is an upcoming OpenSSH vulnerability that we're working on with ISS. Details will be published early next week. However, I can say that when OpenSSH's sshd(8) is running with priv seperation, the bug cannot be exploited. The link for this article located at Net-Security.org is no longer available. . A recent analysis of OpenSSH security flaws reveals significant vulnerabilities, highlighting the urgency for timely updates and best practices to ensure system security. OpenSSH vulnerabilities, Remote Access Security, Open Source Threats, Security Issues in OpenSSH. . Anthony Pell
Jun 26, 2002
•
Network Security
74
wireless securitynetwork integrityaccess pointsEnterasys Networks Wireless Education Sector Audit Uncovers Gaps
Enterasys Networks has rolled out the biggest wireless network in the education sector but admitted it has yet to perform a thorough security audit. Ninestiles School in Birmingham is using 38 Enterasys Roamabout R2 access points to connect its 1,400 . . . . Enterasys Networks has rolled out the biggest wireless network in the education sector but admitted it has yet to perform a thorough security audit. Ninestiles School in Birmingham is using 38 Enterasys Roamabout R2 access points to connect its 1,400 pupils and 95 teachers. Each of the access points connects to an X-Pedition 8000 multilayer switch router. The network uses the notoriously weak Wired Equivalent Privacy (WEP) protocol to provide encryption. Despite the size of the installation, it took Enterasys and consultancy TCPIP only a week to do the entire integration. However, this did not include checks on the network's integrity. The link for this article located at VNUNet is no longer available. . Enterasys Networks has rolled out the biggest wireless network in the education sector but admitted . enterasys, networks, rolled, biggest, wireless, network, education, sector, admitted. . Anthony Pell
Jan 23, 2002
•
Network Security
82
system upgradesoftware assurancesecurity fixesIRS Assurance: System Upgrade After Security Gaps Report
Despite a critical report revealing security gaps in the Internal Revenue Service's electronic filing system, the IRS is confident that the problems have been fixed, and the system is being upgraded. . Despite a critical report revealing security gaps in the Internal Revenue Service's electronic filing system, the IRS is confident that the problems have been fixed, and the system is being upgraded. The link for this article located at fcw.com is no longer available. . In light of a recent audit exposing vulnerabilities, the IRS pledges enhancements and solutions for their digital tax submission platform.. IRS Security, Electronic Filing System, System Upgrade, Security Fixes, Assurance. . Anthony Pell
Mar 20, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More