Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
81
software distributioncensorshipcopyright lawSOPA: Legal Risks for Tor Distribution and Online Freedom
A little-noticed section of the Stop Online Piracy Act could make it illegal to distribute Tor and other software that can "circumvent" attempts by the U.S. government to block pirate Web sites. . The controversial Hollywood-backed copyright bill allows injunctions to be filed against "any" person, nonprofit organization, or company that distributes a "product or service" that can be used to circumvent or bypass blockades erected against alleged pirate Web sites such as ThePirateBay.org. The link for this article located at CNET is no longer available. . The PROTECT IP Act may make it illegal to share VPNs or analogous applications designed to bypass internet restrictions.. Tor Software,Circumvention Tools,Online Censorship,SOPA Impacts. . LinuxSecurity.com Team
Dec 22, 2011
•
Privacy
77
patch managementsoftware updatesIT efficiencyExploring Patch Management Tools To Improve IT Efficiency
If cars were sold in the same way as software, you would have to hook your Mondeo to the internet and download the latest code update before you left the garage. Managing software patches across an organisation can be one of the biggest headaches for IT departments, but luckily there are products to help. . According to Mark Nicolett, a research director at Gartner, there are three main types of patch management tool. The first, supplier-specific utilities, manage patches for a single company's product set. The second, software distribution systems, fold patch management into a wider set of software management functions such as asset management, complete application roll out and configuration, and helpdesk systems. The link for this article located at ComputerWeekly is no longer available. . Explore various patch management solutions designed to optimize software upgrades and enhance overall IT productivity.. Patch Management Tools, Software Update Automation, IT Asset Management, Configuration Control. . LinuxSecurity.com Team
Nov 16, 2005
•
Server Security
82
software distributionfree speechlegal rulingCalifornia Supreme Court Decision On DVD Copying Code And Free Speech
The California Supreme Court ruled Monday that a Web publisher could be barred from posting DVD-copying code online without infringing on his free speech rights.. . .. The California Supreme Court ruled Monday that a Web publisher could be barred from posting DVD-copying code online without infringing on his free speech rights. The state's high court overturned an earlier decision that said blocking Web publishers from posting the controversial piece of software called DeCSS, which can be used to help decrypt and copy DVDs, would violate their First Amendment rights. An industry technology coalition called the DVD Copy Control Association (DVD CCA) had sued dozens of people in California courts, contending that posting the software online violated its trade secrets rights. Monday's state Supreme Court decision did leave room for another legal about-face, asking a lower court to revisit the question of whether any industry trade secret rights actually were violated. The link for this article located at ZDNet is no longer available. . The California Supreme Court ruled Monday that a Web publisher could be barred from posting DVD-copy. california, supreme, court, ruled, monday, publisher, barred, posting, dvd-copy. . Anthony Pell
Aug 26, 2003
•
Government
83
security advisorysecurity issuemalwareOpenBSD: Backdoor In Dsniff 2.3 And Fragroute 1.2 Critical Security Issue
the dsniff-2.3, fragroute-1.2, and fragrouter-1.6 tarballs were all modified at 3 AM on May 17th to include the same configure backdoor as described in the irssi advisory. no other public web content was modified, and the system was restored a week later, from scratch.. . .. the dsniff-2.3, fragroute-1.2, and fragrouter-1.6 tarballs were all modified at 3 AM on May 17th to include the same configure backdoor as described in the irssi advisory. no other public web content was modified, and the system was restored a week later, from scratch. Date: Fri, 31 May 2002 12:34:49 -0400 From: Dug Song To: bugtraq@ Cc: dsniff@monkey.org Subject: Re: Trojan/backdoor in fragroute 1.2 source distribution On Fri, May 31, 2002 at 09:55:21AM +0200, Anders Nordby wrote: > Although downloading it now seems safe, I think folks should know > this. The changes done were similar to what happened to irssi, but > with a different IP. monkey.org was compromised on May 14th, via an epic4-pre2.511 client-side hole which produced a shell to one of the local admin's accounts. this was later used to reattach to one of his screen sessions, which apparently had a root window open (su very bad!). the dsniff-2.3, fragroute-1.2, and fragrouter-1.6 tarballs were all modified at 3 AM on May 17th to include the same configure backdoor as described in the irssi advisory. no other public web content was modified, and the system was restored a week later, from scratch. the correct checksums are: MD5 (dsniff-2.3.tar.gz) = 183e336a45e38013f3af840bddec44b4 MD5 (fragroute-1.2.tar.gz) = 7e4de763fae35a50e871bdcd1ac8e23a MD5 (fragrouter-1.6.tar.gz) = 73fdc73f8da0b41b995420ded00533cc of the 1951 hosts that successfully downloaded one of the backdoored tarballs, 992 of them were Windows machines and 193 were automated ports downloads for the *BSD dsniff or fragrouter ports, leaving 746 Linux (and a few Solaris and MacOS) hosts potentially vulnerable, and 20 FreeBSD and OpenBSD hosts. we have since migrated our system to OpenBSD-current, importing NielsProvos' excellent systrace subsystem: /u/provos/systrace/ which allows us to run all user sessions under a restricted syscall policy (e.g. so an IRC client cannot exec(), open() anything outside ~/.irc, etc.), similar in spirit to Goldberg and Wagner's Janus sandbox, or Cowen's SubDomain. in the future, our software distributions may carry embedded signatures via gzsig: /~dugsong/gzsig-0.1.tar.gz but for the time being, please be careful what you download, and carefully audit or sandbox any third-party scripts or software you run... -d. --- /~dugsong/ . the dsniff-2.3, fragroute-1.2, and fragrouter-1.6 tarballs were all modified at 3 AM on May 17th to . dsniff-2, fragroute-1, fragrouter-1, tarballs, modified. . LinuxSecurity.com Team
Jun 02, 2002
•
Hacks/Cracks
81
software distributionnetwork controldigital advertisingKazaa Downloads: Remote Network Activation By Brilliant Digital Software
A California company has quietly attached its software to millions of downloads of the popular Kazaa file-trading program and plans to remotely "turn on" people's PCs, welding them into a new network of its own.. . .. A California company has quietly attached its software to millions of downloads of the popular Kazaa file-trading program and plans to remotely "turn on" people's PCs, welding them into a new network of its own. Brilliant Digital Entertainment, a California-based digital advertising technology company, has been distributing its 3D ad technology along with the Kazaa software since late last fall. But in a federal securities filing Monday, the company revealed it also has been installing more ambitious technology that could turn every computer running Kazaa into a node in a new network controlled by Brilliant Digital. The link for this article located at ZDNet is no longer available. . A Texas-based firm has discreetly linked its application to countless installations of the widely-used LimeWire file-sharing tool.. Kazaa Downloads, P2P Network, Remote Activation, Brilliant Digital. . LinuxSecurity.com Team
Apr 02, 2002
•
Privacy
67
software distributionopen sourcesoftware implementationGlobal RSA Algorithm Release: Open Source Software for Cryptography
The release of the algorithm is a good thing because you can now create cryptographic software using one RSA implementation and distribute it worldwide without having to license anything from RSA. ... This is good news because you can, for example, . . . . The release of the algorithm is a good thing because you can now create cryptographic software using one RSA implementation and distribute it worldwide without having to license anything from RSA. ... This is good news because you can, for example, download OpenSSL and OpenSSH Solaris 8.0 packages I created and use them now. I never bothered to compile them against RSAREF, so you would have had to wait another two weeks to download them. The link for this article located at SecurityPortal is no longer available. . This upgrade enables worldwide dissemination of encryption software without necessitating RSA permissions. Investigate fresh applications for the RSA cryptographic framework.. RSA Algorithm, Open Source Cryptography, Software Development. . LinuxSecurity.com Team
Sep 08, 2000
•
Cryptography
67
encryptionsoftware distributionlegal rulingU.S. Appeals Court Ruling On Encryption Source Code Protection
A U.S. Appeals Court judge has ruled that encryption source code is constitutionally protected and not subject to restrictions imposed by the U.S. government. The U.S. government had previously limited its distribution until January of this year, but the latest . . .. A U.S. Appeals Court judge has ruled that encryption source code is constitutionally protected and not subject to restrictions imposed by the U.S. government. The U.S. government had previously limited its distribution until January of this year, but the latest decision could now have far-reaching implications for other pending cases concerning the freedom to distribute controversial software. The link for this article located at ComputerWeekly is no longer available. . A federal appellate court affirmed that encryption software falls under constitutional protections, shaping the landscape for program sharing.. Encryption Source Code, Legal Cases, Constitutional Protections. . LinuxSecurity.com Team
Apr 12, 2000
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More