Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
79
software managementsecurity administrationsystem configurationOpenMandriva Overview: Security and Performance for Linux Admins
If you're a Linux security admin searching for an innovative and practical alternative to mainstream Linux distributions, OpenMandriva might be just what you need. It is rooted in classic Mandriva heritage with user-friendly, highly configurable platforms explicitly designed to suit newcomers and experienced professionals. . As it stands alone from Ubuntu, Fedora, Debian, and Arch, OpenMandriva provides fresh ideas while giving unparalleled flexibility in configuration management, software deployment management, and security practices. OpenMandriva has unique advantages, including its Rome (rolling release) and Rock (standard release) models, offering flexible updates while maintaining stable performance. OpenMandriva stands out by using Clang instead of GCC to compile source code, demonstrating their dedication to performance and security - essential for maintaining robust systems. With desktop environments explicitly tailored for use on OpenMandriva as well as preinstalled applications easily accessible from within its menus, OpenMandriva stands out as an invaluable security administration tool allowing us admins to construct secure systems tailored specifically for our individual needs without being limited by more widely adopted distributions. To help you understand how this unique and flexible Linux distro could benefit your administration, let's examine some of the key advantages OpenMandriva offers Linux admins and security-conscious users. Independence and Autonomy One of the primary draws of OpenMandriva is its complete independence. This autonomy translates into integrating customized security measures and innovative features without the constraints imposed by upstream changes typical of more widespread distributions. As a result, OpenMandriva can stay ahead in security advancements and system optimizations, which can be particularly beneficial for environments that demand tailored security configurations. User-Friendly Design Despite its independent development line,OpenMandriva maintains a commitment to ease of use, mirroring the ethos of its Mandriva and Mandrake predecessors. The distribution features the modern and visually appealing KDE Plasma desktop , which offers a streamlined and intuitive interface. For those who might be new to Linux or OpenMandriva specifically, the OM Welcome app acts as a helpful guide, providing easy access to essential system configurations and updates. This user-centric approach ensures that even those with limited experience can quickly adapt and leverage the full potential of the OS. Flexible System Configuration OpenMandriva Settings (source: ZDNet) OpenMandriva excels in system configuration and customization, making it a prime candidate for security admins who must tailor their environments to specific security requirements. The System Settings app offers extensive options covering advanced security settings and hardware configurations, allowing administrators to adjust and secure their systems meticulously. This flexibility ensures that OpenMandriva can be molded to fit various organizations' unique security policies and usability requirements. Robust Software Management Software management is a critical concern for admins, and OpenMandriva addresses this effectively. The distribution comes equipped with various pre-installed applications, such as LibreOffice, Chrome, and KDE Connect, essential for daily operations. Additionally, the Discover app simplifies the process of installing new software. Discover supports Flatpak, making adding applications straightforwardly without excessive command-line interaction. This ease of software management helps maintain system security by ensuring all applications are up-to-date and properly integrated. Innovative Rollout Models OpenMandriva's rollout models—Rome and Rock—offer unique benefits catering to administrative needs. The Rome edition follows a rolling release model, continuously providing the latest features and updates. This is particularlyadvantageous for security admins who prefer to stay on the cutting edge, ensuring their systems benefit from the newest technologies and security patches . Conversely, the Rock edition adheres to a standard release model, emphasizing stability and reliability. Rock offers a secure and consistent platform for environments where dependability is paramount. Diverse Desktop Environments The flexibility of OpenMandriva extends to its support for various desktop environments, known as spins. Whether you prefer GNOME, Lxqt, Xfce, Mate, Cinnamon, Budgie, or the developing COSMIC environment, OpenMandriva has you covered. This variety enables security admins to choose the desktop environment that best aligns with their workflow and security strategies. Each spin provides a unique blend of features and interfaces, allowing a personalized and effective setup tailored to specific needs. Compiler and Toolchain Advantages A distinctive feature of OpenMandriva is its use of the Clang compiler , an open-source alternative to the GCC compiler used by most other distributions. Clang's modular design and C, C++, Objective-C, and Objective-C++ support offer significant performance benefits. Clang's robust static analysis tools and advanced diagnostic capabilities can aid in identifying potential vulnerabilities and optimizing code security. This cutting-edge toolchain enhances system performance and security, setting OpenMandriva apart in the Linux landscape. Exemplary Security Practices OpenMandriva's independent roots allow it to implement specific and optimized security practices . The freedom to integrate custom security measures ensures high protection against vulnerabilities . This independence also means that security updates and kernel patches can be handled uniquely, reducing the systemic risks associated with broader distributions. This translates into a more secure operating environment for security administrators, with updates and practices specifically tuned to OpenMandriva’s architecture. Our Final Thoughts on OpenMandriva: A Worthy Addition to Your Toolkit OpenMandriva presents a robust, flexible, innovative, and practical solution for Linux security admins and new and experienced users alike. Its independence from mainstream distributions provides a fresh perspective on system configuration and security management. Administrators can utilize OpenMandriva's user-friendly design, extensive customization options, and unique features to build secure, stable, and efficient systems. Whether you favor cutting-edge updates with the rolling Rome release or the stability of the Rock release, OpenMandriva offers the tools and flexibility to meet diverse security needs. OpenMandriva's support for a wide range of desktop environments and its use of the Clang compiler further enhance its appeal, providing both usability and performance advantages. These features and unique security practices make OpenMandriva a formidable option for maintaining secure and well-managed Linux systems. Incorporating OpenMandriva into your security administration toolkit can provide a fresh and effective way to address modern security challenges and streamline system management. Whether you're new to Linux or an experienced admin, OpenMandriva offers a compelling blend of independence, innovation, and user-friendliness that can elevate your security practices and overall system performance. So, if you're ready to explore a different Linux distribution that stands out for its autonomy and practical capabilities, give OpenMandriva a try. You might find it the very solution that enables you to craft a more secure, efficient, and adaptable IT environment. Have you given OpenMandriva a try? Let us know what you think @lnxsec! . OpenMandriva offers unique features aimed at Linux admins, enhancing security and optimizing system performance with strong protocols and advanced kernel features. OpenMandriva, Linux Security, System Management, Software Administration, Custom Security Practices. . Brittany Day
Dec 31, 2024
•
Security Projects
210
security practicesuser managementadministrationWhy User Management Is Critical for Linux Security and Attacks
The rise in attacks on Linux in recent years is not due to problems with the Linux OS, but rather issues with individual accounts and poor administration. LinuxSecurity Founder Dave Wreski states: "Although it may be easy to blame the rise in attacks targeting Linux in recent years on security vulnerabilities in the operating system as a whole, this is simply not the truth. The majority of exploits on Linux systems can be attributed to misconfigured servers and poor administration." . Joe McManus, Director of Security at Canonical, said: "Linux and, particularly Ubuntu, are incredibly secure systems but, that being said, it is their popularity that makes them a target." Ian Thornton-Trump, a threat intelligence expert and the CISO at Cyjax, added: "From an economic and mission perspective, it makes sense for a threat actor to invest in open-source skills for flexibility and the ability to target the systems where the good stuff is happening." The link for this article located at Fudzilla is no longer available. . Grasping the impact of user behaviors on Linux security through the lens of professional analysis and practical experience.. Linux Security Insights, User Management Best Practices, Open Source Defense Techniques. . Brittany Day
Apr 21, 2020
•
Security Vulnerabilities
77
user managementLinux administrationsecurity practiceImplementing Password Aging for Better User Security on Linux
Password aging is a mechanism that allows the system to enforce a certain lifetime for passwords. While this may be moderately inconvenient for users, it ensures that passwords are changed occasionally, which is a good security practice. Most Linux distributions do not enable password aging by default, but it's very easy to enable. By editing /etc/login.defs, you can specify a few parameters to set the default settings for password aging: PASS_MAX_DAYS 99999, PASS_MIN_DAYS 0, and PASS_WARN_AGE 7.. . Implement password duration policies on Linux systems to enhance security. Discover how to conveniently activate password expiration for user profiles.. Password Aging, User Accounts, Linux Security, Password Management. . LinuxSecurity.com Team
Sep 13, 2006
•
Server Security
82
security advisoryencryptioninstallation guideNSA Security Guide For Mac OS X 10.3.x: Best Practices Overview
The National Security Agency has posted a 109-page document on its Web site telling agencies how to securely install and use Apple Computer Inc.'s Mac OS X Version 10.3.x operating system, code-named Panther. . . .. The National Security Agency has posted a 109-page document on its Web site telling agencies how to securely install and use Apple Computer Inc.'s Mac OS X Version 10.3.x operating system, code-named Panther. NSA notes that the document is a security guide and "not meant to replace well-structured policy or sound judgment." It warns administrators to test only in a non-production environment as similar as possible to the architecture where the OS will be deployed. In addition to the guidance for secure installation and partitioning of locally administered, networked Mac OS X systems, NSA provides details on system settings, user accounts, Mac OS X Keychain Access and file encryption. The link for this article located at Susan M. Menke is no longer available. . The National Security Agency has posted a 109-page document on its Web site telling agencies how to . national, security, agency, posted, 109-page, document, telling, agencies. . Anthony Pell
Nov 03, 2004
•
Government
74
remote accessSSHsystem configurationComparing Secure Shell (SSH) And Virtual Network Computing (VNC)
In the first of this pair of articles, David compares and contrasts Secure shell (SSH) and Virtual Network Computing (VNC), two technologies that allow a user at one workstation to run an application that lives on another computer. (He does not . . . . In the first of this pair of articles, David compares and contrasts Secure shell (SSH) and Virtual Network Computing (VNC), two technologies that allow a user at one workstation to run an application that lives on another computer. (He does not cover file-and-print sharing or "Internet" services like httpd, ftpd, smtp, or nntpd, even though these technologies also usefully "share" something about the computers in question.) He does, however, give tips on installing and configuring SSH and VNC, and comments on tool stability, choices, and licensing status. The link for this article located at IBM developerWorks is no longer available. . In the first of this pair of articles, David compares and contrasts Secure shell (SSH) and Virtual N. first, articles, david, compares, contrasts, secure, shell, (ssh), virtual. . Anthony Pell
Jan 08, 2002
•
Network Security
79
system configurationArgus SystemsopenhackOpenhack III: 17-Day Security Test Concludes Without Breaches
Shortly after 3 a.m. EST last Thursday, eWEEK's third Openhack interactive security test finished its 17-day run with all prizes remaining unclaimed. This is eWEEK Labs' first Openhack test in three tries that hasn't been penetrated successfully, and the credit goes . . . . Shortly after 3 a.m. EST last Thursday, eWEEK's third Openhack interactive security test finished its 17-day run with all prizes remaining unclaimed. This is eWEEK Labs' first Openhack test in three tries that hasn't been penetrated successfully, and the credit goes to Argus Systems Group Inc.'s PitBull line of operating systems and to the Argus engineering team that configured the systems so securely. This result is all the more surprising to us given that, as we expected, hackers were able to find and exploit a number of application-level security holes to get root-level access on both machines, including the Web server, that had shell access. The link for this article located at ZDNet / eWeek is no longer available. . The final Openhack challenge wrapped up with an impenetrable defense framework, highlighting the robust setups from Sentinel Technologies.. Openhack Security Test, Argus Systems, Security Test Results, Interactive Security Test, System Configuration. . LinuxSecurity.com Team
Feb 05, 2001
•
Security Projects
78
security advisoryRed Hatenterprise softwareRed Hat Linux 7: PentaSafe's 10 Point Security Check Overview
PentaSafe Security Technologies, Inc., a leading developer of enterprise IT auditing and security software today announced that it is shipping its 10 Point Security Check Up Report for Linux on Red Hat's Linux Application CD which ships with Red Hat Professional . . . . PentaSafe Security Technologies, Inc., a leading developer of enterprise IT auditing and security software today announced that it is shipping its 10 Point Security Check Up Report for Linux on Red Hat's Linux Application CD which ships with Red Hat Professional Server Version 7. The Linux Application CD is updated with every new release of the Official Red Hat Linux and contains a variety of third party software applications for servers ranging from Internet and database tools to security. PentaSafe's 10 Point Security Check Up Report for Linux will quickly check Linux systems for frequently overlooked security vulnerabilities, giving the system's security a pass or fail. The 10 Point Security Check Up Report is a mini-version of PentaSafe's VigilEnt Security Agent for UNIX which will pinpoint security vulnerabilities across multiple Linux and UNIX systems from a central point of control. The VigilEnt Security Agent for UNIX will also offer suggestions on how to improve the security of the system to protect confidential corporate systems and data from unauthorized access. The Agent will analyze key aspects of the system including system configuration, user authorities, remote accesses, and more. The link for this article located at Enterprise Linux Today is no longer available. . SecureTech provides a 15 Step Security Audit Document for Windows bundled with Microsoft's Software Pack.. PentaSafe Security, Red Hat Linux Security, IT Auditing Tools. . LinuxSecurity.com Team
Sep 29, 2000
•
Vendors/Products
72
network securitysecurity managementfirewall12 Essential Tips For Building Network Firewalls and Security Policies
Here's a quick 12 tips that describes a firewall, and how to build one. 1.A firewall implements your security policy. A firewall enforces some security policy. If you didn't have a security policy before you put the firewall in place, you . . . . Here's a quick 12 tips that describes a firewall, and how to build one. 1.A firewall implements your security policy. A firewall enforces some security policy. If you didn't have a security policy before you put the firewall in place, you do now. It may be unwritten, but it's still a security policy. If you haven't made explicit decisions about what you want the security policy to be, it's probably not the best policy for your site, and it will certainly be difficult for you to maintain it over time. In order to have a good firewall, you need a good security policy--one that is written down and widely agreed to. 2.A firewall is not usually a single device. Except in the most simple of cases, a firewall is seldom a single device; it is usually a collection of devices acting in concert. Even if you buy a commercial "all-in-one" firewall appliance, you'll still have to configure other machines (your public web server, for example) to work along with it. And these other machines should really be regarded as part of the firewall. This has all sorts of implications for how you configure and manage these machines, what they trust, what trusts them, and so on. You cannot simply choose one box, call it "the firewall," and expect it to assume all responsibility for security. . Evaluate your organization's security needs to tailor your firewall solutions, ensuring a cohesive, multi-layered defense to mitigate threats effectively. Firewall Construction, Network Security Strategies, Security Policy Implementation, Firewall Management. . Anthony Pell
Jul 29, 2000
•
Firewalls
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More