Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 14 articles for you...
67
data centeropen-sourceUDPExploring Google's Transport-Independent PSP Security Protocol and Its Uses
Hearing "open-source", "PSP", and "security" all together got me excited with my initial reaction thinking it was about AMD's Platform Security Processor (PSP) albeit that's not the case here. Google's PSP is the "PSP Security Protocol" and is designed for dealing with cryptographic hardware offloading at data center scale and used by Google already in production. . Google engineers took to designing their own offload-friendly protocol with TLS not being offload-friendly enough and lacking UDP support while also encountering shortcomings of IPsec. PSP as their solution is described as a TLS-like, transport-independent protocol for per-connection security and offload-friendly. The link for this article located at Phoronix is no longer available. . Microsoft introduces a novel lightweight security framework aimed at optimizing encryption hardware performance.. Google PSP, Security Protocol, Cryptographic Offloading. . LinuxSecurity.com Team
May 22, 2022
•
Cryptography
67
cybersecurityprivacysecurity protocolEncrypting DNS Lookups: The Controversial Path to Enhanced Privacy
The road to routing all Domain Name System lookups through HTTPS is pocked with disagreements over just how much it will help. What is your opinion on this? Learn the details in an informative Wired article: . The security community generally agrees on the importance of encrypting private data: Add a passcode to your smartphone . Use a secure messaging app like Signal . Adopt HTTPS web encryption . But a new movement to encrypt a fundamental internet mechanism, promoted by browser heavyweights like Google Chrome and Mozilla's Firefox, has sparked a heated controversy. The changes center around the Domain Name System, a decentralized directory that acts essentially as the internet's address book. When you send data to or request it from a server, a DNS lookup ensures that it goes to and comes from the right place. Google and Mozilla plan to encrypt those interactions sometime this year. Which sounds straightforward enough—but not everyone is convinced that the shift solves more problems than it potentially creates. The link for this article located at Wired is no longer available. . The discourse on DNS query encryption via HTTPS is evolving, enhancing online privacy and web standards amidst concerns over centralized control and vulnerabilities. Dns Encryption, Privacy, Internet Standards, Cybersecurity Trends, Data Security. . LinuxSecurity.com Team
Oct 09, 2019
•
Cryptography
81
encryptioninternetsecurity protocolIETF Approves TLS 1.3 Standard: Stronger HTTPS Protection Against Snooping
The Internet Engineering Task Force (IETF) has approved version 1.3 of the Transport Layer Security (TLS), the key protocol that enables HTTPS on the web.. TLS 1.3 was approved by engineers at an IETF gathering in London last week. The approved document is the 28th version of the TLS 1.3 proposal that has been hashed out over the past four years. . The latest version of HTTP/3 gained favorable reviews at a meeting of professionals, improving web communication safety for all.. TLS 1.3, HTTPS Security, Internet Encryption, IETF Approval. . LinuxSecurity.com Team
Mar 26, 2018
•
Privacy
74
open sourcenetwork integritysecurity protocolEnhance Network Integrity By Securing DNS With DNSCrypt
This open-source software for Mac and Linux does for DNS what SSL does for HTTP: It encrypts DNS traffic to prevent spoofing, snooping, and man-in-the-middle attacks.. Like most of the network protocols and systems in widespread use today, the Domain Name System (DNS) harbors significant security vulnerabilities. Though DNS provides a deceptively simple service -- translating human-friendly website addresses such as https://www.cnn.com/ into computer-friendly numerical IP addresses such as -- the system's integrity is a crucial cornerstone of Internet operations and trustworthiness. One common attack on the DNS infrastructure is called "DNS spoofing." In this type of attack, also known as "DNS cache poisoning," an attacker tricks a DNS server into returning an incorrect IP address for a target website. For example, an attacker might perform cache poisoning on the DNS entry for a legitimate bank's website, thereby directing visitors to the hacker's fake look-a-like site in order to capture their login or banking details. This type of attack is difficult for users to detect, because the website address displayed in the user's web browser is not altered in any way. A single compromised DNS server at an Internet Service Provider can in this way affect potentially thousands of users. The link for this article located at eSecurity Planet is no longer available. . Fortify your DNS by implementing DNSCrypt to thwart threats such as impersonation and caching problems often encountered in networking protocols.. Dns Security, DnsCrypt, Network Integrity, Encryption, Dns Spoofing. . Dave Wreski
Mar 20, 2012
•
Network Security
78
web securityman-in-the-middle attackFirefoxFirefox 4 Beta 5: Security Protocols And New Audio API Features
Mozilla, which launched the latest beta of Firefox 4 last week, has started to drop features from the still-under-construction browser. . Firefox 4 Beta 5, which shipped Sept. 7, included support for a new audio API (application programming interface) that allows developers to tap raw audio data from within the browser, as well as support for HTTP Strict Transport Security, a Web security protocol that lets site designers force Firefox to automatically use a secure connection. The latter is meant to help stymie "man-in-the-middle" attacks, in which hackers essentially eavesdrop on users' Web traffic -- most often at public Wi-Fi hotspots -- in the hope of snatching clear-language transmission of passwords or credit card numbers. The link for this article located at InfoWorld is no longer available. . Opera 5 Alpha removes functionalities to boost safety with upgraded video framework and safeguards against spying on shared connections.. Firefox Features, Audio API, Web Security, Browser Enhancements, HTTP Security. . LinuxSecurity.com Team
Sep 14, 2010
•
Vendors/Products
74
data integritysecurity protocoldns managementRoot Servers Implement DNSSEC: A Major Step in Domain Security
On Wednesday (5th May) the last of the 13 authoritative root servers for the domain name system switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed.. This precautionary measure is intended to ensure that for the time being it remains possible to switch back to an unsigned root zone, should the need arise. There have been no reports of any problems in the immediate aftermath of VeriSign's J root server starting to serve DNSSEC signatures. Experts at the 60th RIPE meeting in Prague were almost unanimous in predicting a glitch-free switchover, following the successful switchovers of the other 12 root servers in recent months. The only apocalyptic note was sounded by a countdown to the demise of the unsigned root zone. Yesterday's changeover does mean the .root zone is now dead. VeriSign, which operated the master server for the root zone, has for several years used a single entry under .root, that served the purpose of checking that the bulky root zone had been transferred. According to Jaap Akkerhuis, a DNS expert at nl.netLabs, the creation of the .root entry was prompted by a complete outage of the .com zone following a data transfer error. Rigid DNSSEC procedures render this trick for root servers operated by VeriSign and the Internet Corporation for Assigned Names and Numbers (ICANN) obsolete. The link for this article located at H Security is no longer available. . This precautionary measure is intended to ensure that for the time being it remains possible to swit. wednesday, authoritative, servers, domain, system. . Anthony Pell
May 10, 2010
•
Network Security
74
digital signaturecache poisoningdnsNominet Begins DNSSEC Implementation for .uk Domain Protection
Nominet, the U.K.'s domain name registry, will begin implementing a security protocol on Monday designed to protect the DNS (Domain Name System). The system, called DNS Security Extensions (DNSSEC), uses public key cryptography to digitally "sign" the DNS records for Web sites. It is designed to stop attacks such as cache poisoning, where a DNS server is hacked, making it possible for a user to type in the correct Web site name but be directed to a fake Web site.. In 2008, security researcher Dan Kaminsky showed it was possible to poison a cache in just a few seconds with a special kind of attack. Almost every organization running a DNS server have deployed a patch, but DNSSEC is a long-term fix. Nominet will begin signing the ".uk" top-level domain beginning Monday, a process which will conclude a week later, said Simon McCalla, director of IT at the registry. Interestingly, there are just a little over a dozen Web sites that use ".uk" since a decision was made more than a decade ago to close off registrations, he said. Much more common are second-level domains, such as ".co.uk" and ".org.uk," among others. The link for this article located at IT World is no longer available. . Nominet is introducing DNS Security Extensions aimed at bolstering defenses against threats such as DNS spoofing.. DNS Security,Nominet,DNSSEC,Domain Security,Cache Poisoning. . Alex
Feb 26, 2010
•
Network Security
74
security protocoldnssecdomain securityRecent DNSSEC Adoption By .gov And .org Domains Shows Progress
The Domain Name System (DNS) security protocol is finally making inroads on the Internet infrastructure front, but big hurdles remain for widespread, smooth adoption. It has been more than 15 years in the making, but DNSSEC is finally gaining some traction: The .gov and .org top-level domains have begun to adopt the Domain Name Service (DNS) security protocol, and during the past few days, some commercial activity was associated with it.. HP last week announced it will resell Secure64's DNS software, while registrar and managed DNS provider Dynamic Network Services Inc. (Dyn Inc.), announced it has gone live with DNSSEC. DNS product vendor NeuStar, meanwhile, rolled out its own DNS security appliance to protect DNS servers from getting hit with the DNS cache poisoning flaw uncovered last year by researcher Dan Kaminksy. The link for this article located at Dark Reading is no longer available. . The adoption of DNSSEC is on the rise, as .gov and .org domains implement it, with DNS software vendors reporting significant advancements.. DNS Security, DNSSEC Adoption, Security Protocols. . Anthony Pell
Jun 23, 2009
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More