Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
79
security managementsoftware securitysoftware innovationOpenSSF Develops Dynamic SBOMs to Enhance Software Security
Since 41% of organizations are still not confident about their open-source software security, more innovations are needed to change this narrative. Even though software bill of materials offer more visibility, the Open Source Security Foundation seeks to alter SBOMs from just being a mechanism to be organism-based so that they address issues such as changes in metadata and compiler flags, according to Omkhar Arasaratnam , general manager of OpenSSF at The Linux Foundation. . “If we look back to the SANS Top 20 — or I guess this is now known the CIS Top 20 — number one has been asset management for the last three decades,” Arasaratnam said. “If we extend that thinking to our assets no longer being servers, laptops and network kit, but also software assets, that is what the SBOM seeks to address. Talking about how that evolves and how the data structures are supported through operational process, now I know I have Log4j.” Arasaratnam and Brian Behlendorf (right), chief technology officer of OpenSSF at The Linux Foundation, spoke with theCUBE industry analyst John Furrier and guest analyst Rob Strechay at Open Source Summit NA , during an exclusive broadcast on theCUBE, SiliconANGLE Media’s livestreaming studio. They discussed the importance of SBOMs in the open-source software security landscape and how OpenSSF fits in the picture. . Explore the advancements made by OpenSSF in the realm of SBOMs, aimed at boosting software security and mitigating threats within open-source ecosystems.. Dynamic SBOM, OpenSSF Innovations, Software Security Management. . LinuxSecurity.com Team
May 15, 2023
•
Security Projects
79
open source softwarecybersecuritysoftware innovationExploring Open Source Innovations In Automotive Cybersecurity
After Volkswagen used software that manipulated exhaust values and defeated emissions tests, it has affected 11 million VW diesel cars built since 2008. A 2007 letter from VW parts supplier Bosch warned Volkswagen not to use the software for regular operations; in 2011, a Volkswagen technician raised concerns about the illegal practices in connection with the emissions levels. . . In light of the recent Volkswagen emissions controversy, integrating open-source platforms could enhance automotive cybersecurity.. Automobile Security, Open Source Innovation, Cybersecurity Solutions, Emissions Standards. . LinuxSecurity.com Team
Mar 14, 2017
•
Security Projects
76
open source movementLinux developmentsoftware innovationLinus Torvalds: The Driving Force Behind Linux Development
Portland, Oregon is the unlikely capital of a global software revolution. The revolution is called Open Source. And its leader? Linus Torvalds, the reclusive founder of Linux. Linux is the free software code developed by a global community of programmers. It's also the world's fastest growing operating system and number two behind Microsoft. . Torvalds works full time overseeing the development of Linux which he created back in 1991 while at university in Helsinki. Usually media shy, the 36-year-old Finn invited Kristie Lu Stout and the Global Office team into his home for an insight into life at the helm of the operating system that is giving Microsoft some serious headaches. The link for this article located at www.cnn.com is no longer available. . Delving into Linus Torvalds' odyssey and influence on Linux from its inception in 1991 as he steers its worldwide advancement.. Linus Torvalds, Open Source Movement, Linux Revolution, Tech Leadership. . Brittany Day
May 20, 2006
•
Organizations/Events
81
security assessmentsoftware innovationproprietary softwareDoD Procurement: Balancing Open Source And Proprietary Software
The Initiative for Software Choice, a software industry trade group whose members include Microsoft, Intel and Cisco, has advised the U.S. Department of Defense not to adhere to a policy that promotes open source software at the expense of proprietary software. . . . . The Initiative for Software Choice, a software industry trade group whose members include Microsoft, Intel and Cisco, has advised the U.S. Department of Defense not to adhere to a policy that promotes open source software at the expense of proprietary software. The group has issued a report arguing that the DoD's evaluation of software purchases should not be influenced by "a preconception that open source software is somehow inherently more secure." "ISC is against government policy that restricts procurement to any kind of software," ISC executive director Bob Kramer told NewsFactor. He noted that the group has no prejudice against any software, but that government procurement policies "should focus on obtaining the best software to solve the problem." The ISC Mission The Washington, D.C.-based ISC was founded in May. The group states it is "dedicated to the principle that governments should procure their software products on their merits rather than categorical preferences." Therefore, its goal is to "educate policymakers about the need to remain neutral about the governmental purchase of software." Toward that goal, the ISC recently issued a report that countered another report written by defense contractor MITRE. The MITRE report noted that open source software "plays a more critical role in the [DoD] than has generally been recognized," and that the DoD has 115 open source applications with 251 identified uses. It then concluded that open source products are a viable alternative to proprietary products made by Microsoft and others, and recommended that they be used more widely. The ISC Response The ISC strongly contested MITRE's conclusions, stating that MITRE's preference for open source stymies software innovation. Thebest way to promote innovation, according to the ISC, is to "ensure that customers -- both public and private -- have a broad range of choices in their software purchasing decisions." In particular, the ISC disagreed with the MITRE report's findings that open source products allow "early and rapid closure of security holes ... [which is] generally impractical in closed source products." In arguing against this finding, the ISC stated that "no single development mode inherently produces safer, more secure software." GPL Issues The ISC report also found fault with MITRE's conclusions about the General Public License (GPL). The GPL , which is used by some programmers in the open source community, requires developers to make their source code publicly available if they modify a program already licensed under the GPL. The ISC noted that, if there were a government policy requiring all software purchases to be licensed under the GPL, it would entail significant loss for commercial software developers. These developers "expend significant resources walling off their proprietary intellectual property," the report said. ISC pointed to MITRE's findings that more than 50 percent of the DoD's open source products are GPL-based, and that if proprietary developers were required to use the GPL, it would "foreclose proprietary companies ... from further developing and commercializing the results." . The Initiative for Software Choice, a software industry trade group whose members include Microsoft,. software, initiative, choice, industry, trade, group, whose, members, include, microsoft. . LinuxSecurity.com Team
Dec 02, 2002
•
Privacy
67
data protectionsecurity technologysoftware innovationBitArts Develops Unbreakable Polymorphic Encryption System
BitArts, a company founded by a group of ex-computer software crackers, has developed a revolutionary encryption system they claim is all but unbreakable. John Safa, BitArt's founder and chief technical officer, told Newsbytes that the encryption system works by changing the . . . . BitArts, a company founded by a group of ex-computer software crackers, has developed a revolutionary encryption system they claim is all but unbreakable. John Safa, BitArt's founder and chief technical officer, told Newsbytes that the encryption system works by changing the data on-the-fly while it is in the memory of a PC. This means that elements of the program itself - which is used to encrypt and decrypt the required data - actually change within the PC's memory, making a disassembly of how the software works utterly impossible. The only way in which an encrypted data stream could be broken, he said, would be by using a brute force approach and stepping through every possible decryption combination possible until an understandable data string resulted. The link for this article located at NewsBytes is no longer available. . BitArts, a company founded by a group of ex-computer software crackers, has developed a revolutionar. bitarts, company, founded, group, ex-computer, software, crackers, developed, revolutionar. . LinuxSecurity.com Team
Apr 08, 2001
•
Cryptography
82
data securitycloud securityvirtualizationVMware And NSA Collaboration: Near Crack-Proof Data Security
Software emulation firm VMware announced it has teamed up with researchers at the National Security Agency to create a nearly crack-proof computer that can place sensitive data in virtual vaults inside the PC. The concept, assuming it works, would streamline the . . . . Software emulation firm VMware announced it has teamed up with researchers at the National Security Agency to create a nearly crack-proof computer that can place sensitive data in virtual vaults inside the PC. The concept, assuming it works, would streamline the methods intelligence agencies use to manage data. At present, the NSA--the military surveillance arm of the United States intelligence community--physically separates networks carrying data of a particular classification. For example, top-secret data might be kept on a different computer than data classified merely as sensitive material. Sometimes, in order for a worker to have access to the information they need, up to six different computers can be on a single desk. The link for this article located at ZDNet is no longer available. . Software emulation firm VMware announced it has teamed up with researchers at the National Security . software, emulation, vmware, announced, teamed, researchers, national, security. . Anthony Pell
Feb 01, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More