Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
76
security reviewsecurity oversightkernel patchesLinux Foundation Addresses Kernel Concerns Over UMN Patches Review
The Linux Foundation Technical Advisory Board reports on what was found in its complete examination of University of Minnesota patches, putting out the fire between the Linux kernel community and the University of Minnesota (UMN). . The fire between the Linux kernel community and the University of Minnesota (UMN) is being put out. Thanks to an ill-thought-out Linux security project , two UMN graduate students tried to insert deliberately buggy patches into Linux . Greg Kroah-Hartman, the well-respected Linux kernel maintainer for the Linux stable branch, responded by banning not only them but any UMN-connected developers from contributing to the Linux kernel. Now, UMN has addressed the Linux kernel developer's community's concerns . And, in a message to the Linux Kernel Mailing List (LKML) , the Linux Foundation Technical Advisory Board (TAB) and volunteer senior Linux kernel maintainers and developers have reported on what they found when they closely and thoroughly examined patches from UMN academics. The link for this article located at ZDNet is no longer available. . The tension surrounding the collaboration between the Linux developer community and the University of Minnesota (UMN) is being resolved.. Linux Foundation, Kernel Community, Technical Review. . Brittany Day
May 06, 2021
•
Organizations/Events
82
NSAbackdoorsecurity oversightNSA's Criticism On Dual_EC_DRBG Flaw and Its Cryptographic Implications
It was a mistake for the National Security Agency to support a critical cryptographic function after researchers presented evidence that it contained a fatal flaw that could be exploited by US intelligence agents, the agency's research director said.. The comments by NSA Director of Research Michael Wertheimer were included in an article headlined The Mathematics Community and the NSA published this week in a publication called Notices. The article responds to blistering criticism from some mathematicians, civil liberties advocates, and security professionals following documents provided by former NSA subcontractor Edward Snowden showing that the agency deliberately tried to subvert widely used crypto standards. One of those standards, according to The New York Times, was a random number generator known as Dual EC_DRBG, which was later revealed to be the default method for generating crucial random numbers in the BSAFE crypto toolkit developed by EMC-owned security firm RSA.. Concerns arise over NSA's endorsement of the compromised Dual EC_DRBG; essential insights on encryption and safeguarding strategies emerge.. NSA Support of Dual EC_DRBG,Cryptography Security Flaws,Encryption Policy Oversight,Random Number Generation Issues. . Dave Wreski
Jan 15, 2015
•
Government
82
governmentNSAprivacyObama's Lack of Action Endangers Internet Privacy Rights for Users
President Barack Obama in his State of the Union on Tuesday failed to address an issue that affects everyone on the internet . Privacy advocates and business interests were crossing their fingers that Obama would announce he was following the recommendations of a presidential panel that recently urged a dramatic overhaul of the NSA The link for this article located at Wired is no longer available. . Civil liberties supporters anticipated changes in FBI policies while Congress remained mute on vital matters impacting online privacy.. NSA Reform, Internet Surveillance, Privacy Rights, Government Oversight. . Alex
Feb 04, 2014
•
Government
77
web applicationcyber threatsecurity riskWeb 2.0 Security Risks: Innovation Over Protection and User Safety
Web 2.0 is causing a splash as it stretches the boundaries of what Web sites can do. But in the rush to add features, security has become an afterthought, experts say. The buzz around the new technology echoes the '90s Internet boom--complete with pricey conferences, plenty of start-ups, and innovative companies like MySpace.com and Writely being snapped up for big bucks. And the sense of deja vu goes even further for some experts. Just as in the early days of desktop software, they say, the development momentum is all about features--and protections are being neglected. . "We're continuing to make the same mistakes by putting security last," said Billy Hoffman, lead engineer at Web security specialist SPI Dynamics. "People are buying into this hype and throwing together ideas for Web applications, but they are not thinking about security, and they are not realizing how badly they are exposing their users." Yamanner, Samy and Spaceflash are among the higher-profile attacks that have surfaced online. The Yamanner worm targeted Yahoo Mail, harvesting e-mail addresses and forwarding itself to all contacts in a user's Yahoo address book. The Samy and Spaceflash worms both spread on MySpace, changing profiles on the hugely popular social-networking Web site. . 'We're continuing to make the same mistakes by putting security last,' said Billy Hoffman, lead engi. causing, splash, stretches, boundaries, sites. . LinuxSecurity.com Team
Jul 31, 2006
•
Server Security
81
data protectionpersonal dataprivacy lawNew Report on Privacy Laws and Technology Gaps Highlights Urgent Need
A new report by CDT details a widening gap between the technology that collects sensitive personal data and the laws designed to protect that data against government misuse. The National Security Agency's domestic spying program, the Justice Department's efforts to obtain millions of Internet search records, the government's use of cell phones to track suspects, and other developments highlight the law's failure to keep pace with technological advances, according to "Digital Search & Seizure: Updating Privacy Protections to Keep Pace with Technology." Stronger laws are needed to ensure that Americans retain their constitutional privacy protections, the report finds. . The link for this article located at CDT is no longer available. . The study highlights the importance of enhanced security regulations in light of evolving technology to safeguard individual information.. Privacy Law, Data Protection, Technology Oversight. . LinuxSecurity.com Team
Feb 23, 2006
•
Privacy
82
cybersecuritysecurity oversightelection integrityElection Day Security: TechWatch Program for E-Voting Integrity
With accusations spreading about electronic voting susceptibility to tampering, watchdog groups are calling on computer experts to come to the polls not only to vote, but to watch others vote. . . .. With accusations spreading about electronic voting susceptibility to tampering, watchdog groups are calling on computer experts to come to the polls not only to vote, but to watch others vote. So far the Verified Voting Foundation (VVF) has recruited more than 1,300 volunteers for its TechWatch program. Prior to the election, volunteers will observe tests conducted by election officials to make sure the equipment is working correctly. On Election Day, watchers will be posted at the polls and filing web-based incident reports as necessary. The Election Incident Reporting System is designed to allow volunteers to rapidly collect information about election irregularities, and instantly alert attorneys and technology professionals to potential problems. "We have people familiar with the equipment go in, observe, and make comments if they can," said Will Doherty, the VVF's executive director. On Election Day, technologists will be assigned as poll watchers and poll workers. Others will be available for rapid deployment to polling places where problems are reported. The link for this article located at securitypipeline.com is no longer available. . Advocacy organizations rally specialists to oversee digital ballots and safeguard against interference during the polling period.. E-Voting Security, Poll Monitoring, Election Integrity. . Anthony Pell
Oct 13, 2004
•
Government
81
security oversightsurveillance systemfacial recognitionCalls For Oversight Of Facial Recognition Systems Amid Backlash
Facing a growing public backlash, the security industry called on Congress Wednesday to regulate the use of surveillance systems that match faces of people on the street with a database of known criminals. The developer of a prominent face-scanning system, along . . . . Facing a growing public backlash, the security industry called on Congress Wednesday to regulate the use of surveillance systems that match faces of people on the street with a database of known criminals. The developer of a prominent face-scanning system, along with the head of the industry trade group, said the federal government needed to step in to ensure that such systems could not be used by police or private corporations to track or compile profiles of innocent citizens. "This discovery was intended to bring a benefit to society and the world, and my feeling about it is I need help from the federal government to make sure there is no room for misuse," said Dr. Joseph Atick, chief executive of Visionics Corp. The link for this article located at CNN is no longer available. . Tech companies push lawmakers to impose regulations on biometric identification systems due to rising consumer concerns.. Facial Recognition, Surveillance Technology, Privacy Concerns, Security Regulations. . LinuxSecurity.com Team
Aug 09, 2001
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More