Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 3 articles for you...
81
storage securityauthentication flawinternet exposureExposed iSCSI Storage Clusters Present Major Data Breach Threats
Over 13,000 iSCSI storage clusters are currently accessible via the internet after their respective owners forgot to enable authentication. . This misconfiguration has the risk of causing serious harm to devices' owners, as cyber-criminal groups could access these internet-accessible hard drives (storage disk arrays and NAS devices) to replace legitimate files with malware, insert backdoors inside backups, or steal company information stored on the unprotected devices. The link for this article located at ZDNet is no longer available. . More than 12,000 open SMB file shares can be found on the internet, posing a threat of unapproved access and possible information leaks.. iSCSI Access Risk, Storage Cluster Security, Internet Vulnerability. . LinuxSecurity.com Team
Apr 02, 2019
•
Privacy
81
data sanitizationstorage securitysecurity challengeSSD Sanitization Difficulties: Research Insights and Implications
Solid state drives (SSDs) have a small security problem: they're tough to erase. That warning comes from researchers at the University of California at San Diego. "Sanitization is well-understood for traditional magnetic storage, such as hard drives and tapes," said the researchers' in their study summary. . "Newer solid state disks, however, have a much different internal architecture, so it is unclear whether what has worked on magnetic media will work on SSDs as well." Accordingly, the researchers tried 14 different file sanitizing techniques -- ranging from Gutman's 35-pass method to the Schneier 7-pass method -- on SSDs. To study each technique's effectiveness, the researchers didn't query the flash translation layer (FTL) that's part of an SSD, but rather accessed the chips at the lowest level possible, via their pins. (Dismantling chips is straightforward, they said.) The link for this article located at Information Week is no longer available. . Scientists uncover difficulties in effectively wiping SSDs when juxtaposed with conventional storage techniques. Explore the ramifications.. SSD Security, Data Sanitization, Solid State Drives, Storage Challenges, Erasure Techniques. . LinuxSecurity.com Team
Feb 22, 2011
•
Privacy
77
trusted computingdata encryptionstorage securityExploring Trusted Computing Standard: Strengthening Storage Security
Trusted Computing chips are already built into most new business PCs. At this week’s RSA Security show, the Trusted Computing Group unveiled a draft specification that will add a simplified version of the chip to storage devices, too. Intended mainly for hard disks and USB flash drives, it can be used for both and portable and networked storage. Seagate Technology last year launched a laptop drive that automatically encrypted all data at wire speed. At the show, the company announced that this was based on the draft specification, which allows encryption keys to be transferred between drives and the Trusted Platform Module (TPM) chips in PCs. . The link for this article located at Information Week is no longer available. . Discover the forthcoming Secure Data Protocol aimed at improving storage safety and fortifying encryption functionalities.. Trusted Computing, Data Encryption, Storage Security. . LinuxSecurity.com Team
Feb 17, 2006
•
Server Security
77
data integritysecurity strategystorage managementConfidentiality And Integrity In Storage Management Strategies
In the first part of our Storage Security Basics series, we looked at authentication, authorization, accountability and access control. In this installment, we examine confidentiality and integrity. If you manage a storage network, one of your primary goals is to ensure that the data is secure. As the administrator, the confidentiality and integrity of information is your responsibility. (Data confidentiality refers to the process of encrypting information to prevent it from being read by users who weren't intended to have access to it. Data integrity means that information has not been changed or modified during transit.) . When it comes to designing a data security strategy, you need to consider where the data is located. For example, is it on the LAN/WAN, SAN or even located on the tape backup set? The location of data will often determine the type of processes and measures you use to secure that information. In this Storage Basics article, we'll explore how the concepts of confidentiality and integrity are applied in each of these areas. The link for this article located at Enterprise Storage Forum is no longer available. . Creating a robust data protection plan necessitates recognizing where data resides while safeguarding its privacy and accuracy.. Storage Management, Data Security, Confidentiality Strategies. . LinuxSecurity.com Team
Aug 15, 2005
•
Server Security
67
data securitydata protectionapplication securityIngrian Networks: Enhancing Data Security With Network Attached Encryption
Application security specialist Ingrian Networks has developed a technology to offload encryption functions from application or database servers onto appliances with the aim of providing more robust security for data in storage. . .. Application security specialist Ingrian Networks has developed a technology to offload encryption functions from application or database servers onto appliances with the aim of providing more robust security for data in storage . Ingrian, which made its name marketing hardware platforms to speed up the processing of SSL, secure caching, and secure switching (securing data in transit - a market that has become commoditised), has developed software service engines to secure data in storage as well. It calls this technology Network Attached Encryption. In trying to lock-down data in storage from prying eyes, hackers, and malicious attack, companies have turned to encryption technologies to secure their applications and data. But traditional encryption technologies require some re-writing of applications, and place a heavy load on servers. There's also the issues of keys residing on the same server where applications are running, which Ingrian argues poses a security risk. . Application security specialist Ingrian Networks has developed a technology to offload encryption fu. application, security, specialist, ingrian, networks, developed, technology, offload, encryption. . LinuxSecurity.com Team
Oct 31, 2002
•
Cryptography
67
data protectiondata encryptiondata confidentialityData Encryption For Transit And Storage Confidentiality
You're exposing yourself to significant risk as long as the data on your network (data in transit) and in your storage (data at rest) is not encrypted. That's what a paranoid security specialist will tell you. . .. You're exposing yourself to significant risk as long as the data on your network (data in transit) and in your storage (data at rest) is not encrypted. That's what a paranoid security specialist will tell you . Is it true? That depends on the sensitivity of your data and on any government regulations that require the data to be encrypted--in the healthcare industry, for example. But the number of people out there who want to steal, tamper with, or destroy your data is going up, not down. And the chances are growing that you'll be targeted for such an attack either randomly or because the attacker has a political vendetta against the nation in which you're located. I'm fairly convinced that the day will come when all data--in transit and at rest--will be encrypted. It's just a question of clearing some hurdles. The link for this article located at ZDNet is no longer available. . You're exposing yourself to significant risk as long as the data on your network (data in transit) a. you're, exposing, yourself, significant, network, (data, transit). . LinuxSecurity.com Team
Jul 10, 2002
•
Cryptography
78
enterprise solutionsstorage securitytechnical advisoryNeoScale Systems: New Advisory Board to Boost Storage Security
Jim Azevedo writes, "NeoScale Systems, Inc., a provider of enterprise storage security solutions for the burgeoning network storage market, today announced the formation of its technical advisory board - comprised of accomplished and recognized contributors to the storage and security industries.. . .. Jim Azevedo writes, "NeoScale Systems, Inc., a provider of enterprise storage security solutions for the burgeoning network storage market, today announced the formation of its technical advisory board - comprised of accomplished and recognized contributors to the storage and security industries. The formation of the board comes just weeks after NeoScale's corporate launch, in which the company announced it had begun beta testing CryptoStor, a wire-speed, policy-based storage security appliance that delivers network storage and media privacy. Advisory board members include some of the most recognizable names in the storage and security industries, including: Vijay Ahuja; Tom Clark; Marc Farley; Michel E. Kabay; Robert Moskowitz; Wayne Rickard; Paul Scammell; and Doug Whiting. The purpose of NeoScale's technical advisory board is to bring together industry leaders who, based on their expertise and combined experience, will collaborate to provide the company with valuable market, customer, and technology insight. The participants will also play a key role in advising the company on its product advancements and business initiatives. The link for this article located at Neoscale is no longer available. . Alex Rivera unveils QuantumGuard Innovations' expert advisory panel to bolster data protection technologies.. NeoScale Systems, Enterprise Storage Security, Advisory Board. . LinuxSecurity.com Team
May 16, 2002
•
Vendors/Products
78
data protectioninternet threatsdisaster recoveryStorage Security: Addressing New Threats from Internet and Hackers
Storage security will become an "imperative" this year as the adoption of Internet technologies undermines the comforting notion that storage networks are safe from hacker attacks. In an analysis of storage security, the Yankee Group concludes that security will become an . . . . Storage security will become an "imperative" this year as the adoption of Internet technologies undermines the comforting notion that storage networks are safe from hacker attacks. In an analysis of storage security, the Yankee Group concludes that security will become an essential aspect of deployment strategies as users expand disaster recovery planning or roll out storage networks that mix multiple network protocols. Yankee is seeking to dispel the impression that dedicated, Fibre Channel storage networks are "closed" networks i.e. not subject to security breaches. As mixed IP-Fibre Channel storage networks or IP storage networks become deployed security will be even more important, the research house argues. . As online innovations rise, the safeguards for data holding systems need to advance to counteract the growing threats posed by cybercriminals.. Storage Security, Hacker Risks, Data Protection, Disaster Recovery, Network Protocols. . LinuxSecurity.com Team
Jan 25, 2002
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More