Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
81
international standardsfacial recognitionstandardizationChinese Companies Drive Standards For Global Facial Recognition Technology
The use of facial recognition technology iscontinuing to expand, despite concerns about itsaccuracy and fairnessand about how it could be used by governments to spy on people. These concerns have been heightened following a report by theFinancial Timeswhich shows that Chinese groups have a significant influence in shaping international standards regarding the technology. Learn more: . The report details how Chinese companies including ZTE, Dahua and China Telecom are proposing standards for facial recognition to the UN's International Telecommunication Union (ITU), the body responsible for global technical standards in the telecommunication industry. Usually, the standards set by the ITU are technical in nature, but human rights campaigners say the proposals under discussion in this case are more like policy recommendations. The standards proposed include recommendations for use cases, suggesting that facial recognition can be used by police, by employers to monitor employees, and for spotting specific targets in crowds. The link for this article located at Engadget is no longer available. . Chinese firms are influencing worldwide facial recognition benchmarks amidst worries regarding privacy and equity.. Facial Recognition, Global Standards, Technology Influence, Chinese Companies. . LinuxSecurity.com Team
Dec 02, 2019
•
Privacy
74
identity managementauthenticationenterpriseSimplifying Enterprise Security With SAML Authentication Framework
Your identity-management system doesn't have to dictate your corporate security strategy anymore. SAML (Security Assertion Markup Language) provides a standard way to exchange authentication and authorization information between different vendors' other applications so you can switch from LDAP to RADIUS authentication, for instance, without recoding your applications.. . .. Your identity-management system doesn't have to dictate your corporate security strategy anymore. SAML (Security Assertion Markup Language) provides a standard way to exchange authentication and authorization information between different vendors' other applications so you can switch from LDAP to RADIUS authentication, for instance, without recoding your applications. It's all about simplifying security. SAML, which has its roots in consumer-based e-commerce, is catching on in the enterprise because it frees you from getting tied down to one vendor's identity system or authentication method. Rather than having each application use a different authentication scheme, all applications speak SAML. SAML 1.1 is an XML framework developed by OASIS (Organization for the Advancement of Structured Information Standards). It's used for Web single sign-on in the Liberty Alliance specification 1.1 as well as for authentication services in the alliance's Web Services Security specification. (For more on the Liberty Alliance spec, see "Give Me Liberty?" and "Making ID Management Manageable".) Web services are emerging as a hot spot for SAML: Provisioning packages such as Novell's Nsure and Computer Associates' eTrust Admin soon will support SAML. Meanwhile, key software vendors, including CrossLogix, IBM's Tivoli Systems, Netegrity, Novell, Oblix, RSA Security and Sun Microsystems, offer support for SAML in their security applications. And Microsoft's new .Net Server operating system will come with SAML support, too (for more on Web Services Security, see "Dive Carefully". The link for this article located at SecurityPipeline is no longer available. . SAML offers a consistent framework for user verification that enhances enterprise security and simplifies partnerships with third-party providers.. Standardized Authentication,SAML Framework,Corporate Security,Identity Management,Vendor Integration. . Anthony Pell
Oct 30, 2003
•
Network Security
81
security concernprivacy issuenetworkingExploring ENUM and DNS Privacy Challenges in Modern Networking
There's a lot happening with ENUM fairly quickly, and it's hard to keep track of half of it. Alas, one thing about ENUM seems pretty clear: as currently specified, ENUM's intersection with the DNS creates a major privacy problem for the . . . . There's a lot happening with ENUM fairly quickly, and it's hard to keep track of half of it. Alas, one thing about ENUM seems pretty clear: as currently specified, ENUM's intersection with the DNS creates a major privacy problem for the average person. ENUM partisans tend to admit this in person, often even before being cornered. The trouble is, they keep pressing on trying to write standards without dealing with the problem. (All the more reason why WHOIS privacy issues matter so much!) Here -- I think -- is not just one case in point, but two, both of which dropped into my mailbox today: Internet-drafts for " Registration for enumservices voice and video" and for "IFAX service of ENUM". The two documents also provide an interesting stylistic contrast in methods of flagging the issue. The link for this article located at ICANNWatch is no longer available. . The merging of ENUM with DNS brings forth serious privacy issues that require urgent focus and harmonization initiatives.. Enum Privacy Issues, DNS Integration, Networking Challenges. . LinuxSecurity.com Team
Feb 25, 2003
•
Privacy
81
user interfaceprivacy policyinternet regulationExplore P3P: Transforming Privacy Policies for Safer Browsing
The Platform for Privacy Preferences (P3P) will soon change all that. Developed by the World Wide Web Consortium (W3C), P3P is a specification that standardizes privacy policy generation and enables browsers and plug-ins to translate sites' policies into point-and-click user interfaces.. . .. The Platform for Privacy Preferences (P3P) will soon change all that. Developed by the World Wide Web Consortium (W3C), P3P is a specification that standardizes privacy policy generation and enables browsers and plug-ins to translate sites' policies into point-and-click user interfaces. At its most basic level, P3P is a standardized set of multiple-choice questions covering all the major aspects of a Web site's privacy policies. Taken together, they present a clear snapshot of how a site handles personal information about its users. P3P-enabled Web sites make this information available in a standard, machine-readable format. P3P-enabled browsers can read this snapshot automatically and compare it to the consumer's own set of privacy preferences. If a site violates those preferences, the browser can issue alerts or even block sites that don't conform. "What makes P3P so good is that it empowers users to make choices on the information collected," says Josh Freed, director of privacy technology for Washington, D.C.-based Internet Education Foundation. Because of the power it gives consumers, it will force sites not only to P3P-enable their privacy policies, but also to improve the policies they have, he adds. If a site does not cater to user privacy preferences, it will lose their business to sites that do. The link for this article located at ComputerUser is no longer available. . The Personal Data Protection Framework (PDPF) offers an innovative approach to streamline and oversee individual consent efficiently.. P3P Specification, Internet Privacy Standards, User Privacy Management. . LinuxSecurity.com Team
Apr 02, 2002
•
Privacy
67
cybersecurityauthentication systempublic key infrastructureIllinois Unification Of Electronic Transactions With Entrust PKI
Illinois has decided to standardize its electronic transaction authentication system, but questions remain about how it will work. The state's public-key infrastructure program, which uses digital certificates to authenticate users for electronic transactions, will be standardized on Entrust Technologies Inc.'s . . . . Illinois has decided to standardize its electronic transaction authentication system, but questions remain about how it will work. The state's public-key infrastructure program, which uses digital certificates to authenticate users for electronic transactions, will be standardized on Entrust Technologies Inc.'s system, said Brent Crossland, deputy technology officer for Illinois, speaking Monday at the Entrust SecureSummit 2001 conference in San Diego. The link for this article located at FCW is no longer available. . Illinois seeks to unify electronic transaction verification using Entrust's PKI system, prompting worries about deployment challenges.. Entrust Technologies, Electronic Transaction Authentication, Public Key Infrastructure, Cybersecurity. . LinuxSecurity.com Team
Jan 25, 2001
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More