Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 3 articles for you...
67
access controluser authenticationsecurity implementationCost-Effective Methods For Implementing Two Factor Authentication
Typically, implementing two factor authentication means buying tokens or smart cards for all of your users. This can be expensive (from what I have seen $50/user is typical in smaller deployments) and it is only manageable for users with whom you have an existing relationship (employees, in some cases customers). . So how do you implement two factor authentication for "cheap"? Here are a few methods I have seen used... The link for this article located at SANS is no longer available. . Investigate budget-friendly methods to establish two-step verification without relying on expensive hardware tokens. Uncover alternatives today!. Two Factor Authentication, Cost-Effective Security, User Authentication Methods. . LinuxSecurity.com Team
Sep 21, 2010
•
Cryptography
74
risk managementsecurity implementationauthentication flawsUnderstanding Twitter OAuth Issues and Authentication Flaws
Twitter officially disabled Basic authentication this week, the final step in the company's transition to mandatory OAuth authentication. Sadly, Twitter's extremely poor implementation of the OAuth standard offers a textbook example of how to do it wrong. . This article will explore some of the problems with Twitter's OAuth implementation and some potential pitfalls inherent to the standard. I will also show you how I managed to compromise the secret OAuth key in Twitter's very own official client application for Android. OAuth is an emerging authentication standard that is being adopted by a growing number of social networking services. It defines a key exchange mechanism that allows users to grant a third-party application access to their account without having to provide that application with their credentials. It also allows users to selectively revoke an application's access to their account. Some of the more technical aspects of this article will be easier to understand if you have a basic familiarity with the standard and the problems that it is trying to solve. We published a primer earlier this year that you can refer to if you are looking for additional background information. The article located at arsTechnica is no longer available. . This article will explore some of the problems with Twitter's OAuth implementation and some potentia. twitter, officially, disabled, basic, authentication, final, company's, transiti. . Alex
Sep 02, 2010
•
Network Security
76
security practicesSELinuxpolicy managementLolpolicy Implementation for SELinux Policy Management at LinuxCon
Ever wonder how lolspeak, the language of lolcats could be used to secure Linux? At LinuxCon, Joshua Brindle from Linux security vendor Tresys detailed something he called lolpolicy for making SELinux security policies easier to manage.. Lolpolicy is Brindle's half-serious implementation of something he referred to as -CIL (Common Intermediary Language) - which is an intermediate policy language for SELinux. It's an attempt to clean up some of the management layer of SELinux, Brindle said. The link for this article located at Internet News is no longer available. . Dive into the transformative impact of lolpolicy on SELinux administration, streamlining security measures at LinuxCon by leveraging cutting-edge methodologies.. Lolpolicy Management, SELinux Policy, Linux Security Solutions. . Alex
Aug 12, 2010
•
Organizations/Events
67
risk managementdata integritycryptographyDatabase Security And Risk Handling Through Cryptography Techniques
Excerpt: This chapter discusses how cryptography can address the concerns raised in the previous chapter. After explaining what cryptography is and providing a general idea of how it works, we dig into the various types of cryptographic algorithms and see where the strengths and weaknesses of each lie. . Finally, we look at where database cryptography sits in an organization's security portfolio.With respect to threats against confidentiality and integrity, we examine how cryptography can help with security. We also look at the common pitfalls and difficulties encountered in implementing a cryptographic system. Not only does a poorly implemented system not provide the needed protection, it can actually weaken overall security. We spend time looking at what kinds of risks a poor cryptographic system introduces. The link for this article located at is no longer available. . Cryptography is essential for database security, employing techniques to protect data integrity and confidentiality, ensuring only authorized access and trust in systems. Cryptographic Algorithms, Data Encryption, Privileged Access, Security Risks. . LinuxSecurity.com Team
Mar 14, 2006
•
Cryptography
78
performancesecurity implementationsyslogSDSC Secure Syslog: High Performance Implementation And Security Features
The Security Technologies group at the San Diego Supercomputer Center (SDSC) is pleased to announce the early availability of "SDSC secure syslog" (), a replacement for the standard Linux/UNIX syslog daemon that adds security and performance features, while . . . . The Security Technologies group at the San Diego Supercomputer Center (SDSC) is pleased to announce the early availability of "SDSC secure syslog" (), a replacement for the standard Linux/UNIX syslog daemon that adds security and performance features, while retaining backwards compatibility. We believe it is the first syslog implementation of "syslog-reliable" (RFC 3195) and it is the first syslog targeted at very high performance and forensically-sound auditing. Authors of other RFC3195-compliant software, please contact us at
Dec 05, 2002
•
Vendors/Products
74
risk assessmentnetwork accesssecurity implementationDetailed Implementation Guide for Secure WLAN Protection Strategies
In implementing a secure WLAN, you'll need to ante up to acquire security hardware and software and accept the burden of increased complexity. One size definitely does not fit all. First, you need to understand the key elements of a comprehensive . . . . In implementing a secure WLAN, you'll need to ante up to acquire security hardware and software and accept the burden of increased complexity. One size definitely does not fit all. First, you need to understand the key elements of a comprehensive WLAN security system. Next, you must assess your organization's level of risk aversion and the price you are willing to pay to achieve security. Finally, you have to understand the alternative systems available. Organizations have long recognized that providing mobile access to information using WLANs can improve the bottom line. In one of the most systematic studies of WLAN benefits, NOP World Technology, a British research outfit owned by United Business Media, concluded that companies implementing WLAN technology can increase the amount of time an enterprise network is available by 70 minutes per day for the average user, boosting his or her productivity by as much as 22 percent. This study did a good job of identifying the types of organizations that benefit most from WLAN deployment and the types of applications for which the technology is best suited. If the employees in your organization spend all day, every day, glued to the computers in their cubicles and don't have much need for mobility, you won't see many benefits from a WLAN, save perhaps for reduced wiring costs. At the other extreme, if mobile access to information can transform your business processes, you can look forward to some significant ROI (return on investment). The link for this article located at Network Computing is no longer available. . To safeguard your wireless network, utilize a combination of devices, applications, and a comprehensive awareness of the intricacies involved.. Wireless LAN, WLAN Security, Security Implementation.. Anthony Pell
Jun 04, 2002
•
Network Security
72
network architectureopen source securitysecurity implementationDesigning Secure Small Networks with OpenBSD and DMZ Approach
This article describes the design and implementation of a small network with a split private/DMZ design that allows a high level of protection for its users while making some services available to the outside world. The design is easy to implement and administer, even for beginners, and can serve as a foundation for custom security installations.. . .. This article describes the design and implementation of a small network with a split private/DMZ design that allows a high level of protection for its users while making some services available to the outside world. The design is easy to implement and administer, even for beginners, and can serve as a foundation for custom security installations. Our goal is to achieve maximum protection from attacks originating from outside of our network (insider attacks are a separate subject that I may get to in a separate article). At the same time, we do not want to spend a lot of money, which limits our options to open source or free software. This is not as bad as it sounds, because all major free operating systems contain high-quality network security software that can meet requirements of an enterprise client, let alone those of a small business or school network. Also, many of these free solutions are often incorporated into commercial products. To keep things simple, I will assume that the network we are building will have just one connection to the Internet and that it will only have about a dozen or so internal users. Of course, you can always scale it up or down as you please, keeping in mind that you may need to use faster hardware, split the network into many smaller subnets to avoid bottlenecks, or even add more connection points to the outside world. . Implementing a split network architecture enhances security for small networks using open source solutions to protect private segments and DMZ against threats. small network security, DMZ design, OpenBSD, network protection, open source solutions. . Anthony Pell
Mar 01, 2002
•
Firewalls
74
network securityrisk managementsecurity implementationEffective Network Security Plan for LAN Admins in Just Ten Days
This August 2001 article answers the questions, "What would you do if you were given ten days to secure your network?" You're a new LAN administrator and you been given the charge of "securing" the network. What would be the most . . . . This August 2001 article answers the questions, "What would you do if you were given ten days to secure your network?" You're a new LAN administrator and you been given the charge of "securing" the network. What would be the most effective plan of action in the shortest period of time? What could you do to make your network more secure quickly? This paper will present ten days of effective tasks, with a quick task and long term task each day. Each essential security action listed below in the day-by-day tables has three characteristics: Focuses on real threats rather than theoretical threats Can be implemented quickly and inexpensively Are proven and effective The link for this article located at SANS is no longer available. . This May 2013 report provides insights into enhancing cybersecurity in two weeks through effective strategies.. Network Security, LAN Administration, Security Planning. . Anthony Pell
Dec 12, 2001
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More