Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
74
key managementdnssecverisignICANN and VeriSign Outline DNSSEC Root Zone Security Strategy
Preparations for securing the domain name system root zone using the DNS Security Extensions (DNSSEC ) protocol are entering a key phase. At the 76th meeting of the Internet Engineering Task Force (IETF) in Hiroshima, the design team from VeriSign, the internet administration authority ICANN and the US NTIA presented the strict security conditions under which the various keys required will be generated, held and renewed. IETF developers expressed concern about the lack of channels for both explaining the DNSSEC rollout, scheduled to commence in January, to ISPs and for collecting reports of anything untoward from the ISPs.. In October, ICANN and VeriSign surprised many observers with their proposed timetable for DNSSEC root zone signing. Signatures will be used internally from as early as 1st December and the first root server will serve the zone to the outside world from January. Cryptographically secured DNSSEC signatures are intended to prevent DNS information from being changed en-route from sender to recipient. If a response comes from the wrong domain, this will be revealed by checking private against public keys. The link for this article located at H Security is no longer available. . The collaboration between ICANN and VeriSign regarding the deployment schedule for the DNSSEC root zone sparks concerns and obstacles related to cybersecurity.. DNS Security Extensions, Root Zone Signing, DNSSEC Implementation, ICANN, VeriSign. . Anthony Pell
Nov 12, 2009
•
Network Security
82
information securityinternet safetycybersecurity expertRichard Clarke's Departure and the National Cybersecurity Strategy
Cybersecurity czar Richard Clarke will step down next month after he finishes a comprehensive Internet-security plan, industry and government sources said Tuesday. Clarke, a longtime White House aide who has led efforts to combat terrorism and bolster the security of the nation's computer systems. . .. Cybersecurity czar Richard Clarke will step down next month after he finishes a comprehensive Internet-security plan, industry and government sources said Tuesday. Clarke, a longtime White House aide who has led efforts to combat terrorism and bolster the security of the nation's computer systems , will look for work in the private sector rather than take a position in the new Department of Homeland Security, people close to the situation said. Sources suggested that Clarke was unsatisfied with the new positions offered him, as they would be a step down from his current role as national point man for cybersecurity efforts. A spokesman with Clarke's office declined to comment. Clarke will announce his resignation after presenting the final version of the National Strategy to Secure Cyberspace, a wide-ranging document that seeks to encourage "safe computing" practices among business, government and individual users, the sources said. The product of more than a year of discussion with a wide range of experts, the report has been the subject of intense lobbying by privacy advocates worried about online surveillance and businesses who fear excessive regulation. Security experts, meanwhile, have criticized the plan as toothless because it imposes few hard rules on users who operate in an online environment still rife with security holes. Cybersecurity concerns have mounted in the face of devastating attacks such as last weekend's "SQL Slammer" virus, which knocked out wide swaths of the Internet, forcing Korean stock brokers to trade with paper and pencil, and shutting down many automatic teller machines in the United States. Critics say the state of online security will remain dismal as long asbusinesses do not make it a priority. At the same time, Clarke and others on the President's Critical Infrastructure Board say the government cannot browbeat the industry into compliance because 85 percent of the Internet is privately owned. The link for this article located at News.com is no longer available. . Cybersecurity chief Richard Clarke is set to resign next month upon completing a detailed online-safety strategy.. Richard Clarke, National Security, Cybersecurity Strategy. . Anthony Pell
Jan 29, 2003
•
Government
82
vulnerabilitygovernment oversightIT administrationMicrosoft's Vulnerability Plan: Under Government Scrutiny
Microsoft Corp.'s vulnerability-handling plan is a good start but may end up being insufficient as the specter of government regulation of Internet security looms, according to security experts. As IT security administrators and CIOs were absorbing the details of Microsoft's plan . . . . Microsoft Corp.'s vulnerability-handling plan is a good start but may end up being insufficient as the specter of government regulation of Internet security looms, according to security experts. As IT security administrators and CIOs were absorbing the details of Microsoft's plan last week (see "Cracking Down on Hackers"), the U.S. House Committee on Energy and Department of Commerce's Subcommittee on Commerce Trade and Consumer Protection was holding hearings to determine whether the industry was doing everything possible to secure the nation's computing infrastructure. The link for this article located at eWeek.com is no longer available. . The security framework of Microsoft Corp. might overlook certain weaknesses in light of increasing regulatory examination.. Microsoft Security, Vulnerability Management, IT Administration. . Anthony Pell
Nov 19, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More