Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
67
trust issuesadoption challengesdigital currencyNavigating Trust Issues in the Adoption of Cryptocurrency Technologies
Have you considered what the future of cryptocurrency looks like? Loss of crypto coins through hacks, fake trading and volatility destroy trust in cryptocurrency, but those aren't its only problems. . The promise of a cheap, anonymous, distributed, fiat cryptocurrency that is detached from any country’s sovereignty is a pipe dream. It will never happen. My opinion hasn’t changed since bitcoin first hit the market in 2009. People will play with it, some businesses will accept it, fortunes will be made and lost, but it isn’t a threat to any nation’s fiat currency on that level. People lack trust in even the most established cryptocurrencies. Here’s why. The link for this article located at CSO Online is no longer available. . Cryptocurrency faces critical challenges that threaten its future. Hacks and market instability raise trust issues, impacting investor confidence and acceptance. Cryptocurrency Future, Trust Issues, Digital Currency Risks. . LinuxSecurity.com Team
Jul 18, 2019
•
Cryptography
74
data securityVPNsecurity risksDHS Warns of Trust Issues with VPN Services and Security Risks
Before we get into the latest scary-virtual private network (VPN) news, let’s do as Naked Security’s Paul Ducklin advises and repeat after him: . A VPN doesn’t magically improve security. All it really does is to make your VPN provider into your new ISP – your “first hop” on the internet. That first hop is the one place where a single provider gets to see all your traffic, whether it’s encrypted or not. You need to trust your VPN provider. A lot. Many people do trust their VPN provider. A lot. Unfortunately, some of them shouldn’t, going by what a Department of Homeland Security (DHS) higher-up recently said. The link for this article located at NakedSecurity is no longer available. . A VPN doesn’t magically improve security. All it really does is to make your VPN provider into your first hop.. latest, scary-virtual, private, network, (vpn), let’s, naked, security. . Brittany Day
May 31, 2019
•
Network Security
67
cybersecurityweb securitysecurity breachTrustworthiness of Digital Certificates Compromised by Security Breach
The keepers of the Internet have become acutely concerned about the Web's core trustworthiness. Hackers cracked three companies that work with the most popular Web browsers to ensure the authenticity of Web pages where consumers type in sensitive information, such as account log-ons, credit card numbers and personal data.. The hacked firms are among more than 650 digital certificate authorities, or CAs, worldwide that ensure that Web pages are the real deal when served up by Microsoft's Internet Explorer, Firefox, Opera, Apple's Safari and Google's Chrome. The link for this article located at USA Today is no longer available. . Digital certificate authorities (CAs) are vital for secure internet communications. Their compromise can lead to fraudulent certificates, posing significant security risks. Digital Certificates, Web Trust Issues, Cybersecurity Threats. . LinuxSecurity.com Team
Sep 28, 2011
•
Cryptography
81
data breachcybersecuritysecurity threatsRecent Data Breaches in Online Services and Their Trust Implications
Every time you turn around another company is reporting a serious data breach. Last week it was the LastPass online password management service that lost some e-mail addresses and master passwords, as CNET's Seth Rosenblatt reported in The Download Blog.. A couple of weeks before that, hackers broke into the servers of German software maker Ashampoo and made off with many of its customers' e-mail addresses; Elinor Mills provides details of the attack in her InSecurity Complex blog. But these losses pale in comparison to the data breaches reported last month by e-mail service provider Epsilon and the ongoing saga of Sony's PlayStation Network. Erica Ogg examines the most recent attack on Sony's PSN in her Circuit Breaker blog. The link for this article located at CNET is no longer available. . A couple of weeks before that, hackers broke into the servers of German software maker Ashampoo and . every, around, another, company, reporting, serious, breach. . LinuxSecurity.com Team
May 10, 2011
•
Privacy
77
data breachIT managementrisk assessmentCyber-Ark Survey Reveals Insider Breach Risks Among IT Professionals
Last issue we talked about the recent survey of IT managers concerning risk management in their enterprises conducted for Courion. Today we'll look at another recent survey which included IT managers -- and more.. Cyber-Ark has just released results of its fifth annual "Trust, Security and Passwords" survey, conducted in the spring of 2011 with 1,422 IT staff and C-level professionals across North America and EMEA (Europe, Middle East and Africa). One eye-opener was the extent to which IT personnel admitted to insider data breach: When asked if they had ever accessed information on a system that was not relevant to their role, 28% of North American IT staff respondents admitted to snooping, while an even greater number in EMEA, 44%, admitted to the same behavior. Similarly, 74% of North American respondents and 31% of EMEA respondents said that they or one of their colleagues had used an administrative password to access information that was otherwise confidential or sensitive. The link for this article located at Network World is no longer available. . Unveil pivotal findings from Cyber-Ark's security research, highlighting concerning behaviors from internal IT personnel.. Data Breach, Insider Threats, Security Survey, IT Management Insights. . LinuxSecurity.com Team
Apr 20, 2011
•
Server Security
76
OpenBSDopen sourcetrust issuesExploring Open Source Trust Issues With Theo de Raadt in OpenBSD
Theo de Raadt is one of the key hackers outside the mainstream GNU/Linux world. Here's his self-penned bio: I am the founder of OpenBSD -- a freely redistributable 4.4BSD-based operating system with an emphasis on security. Donations allow me to put my efforts into OpenBSD and related projects. In 1999, I created OpenSSH with other members of OpenBSD. . It is now incorporated into all Unix systems plus hundreds of other network enabled products. It is now the most "vendor re-used" piece of open source software, with more than 90% of the SSH market. Unfortunately, de Raadt raises the disturbing possibility that there is a big problem with part of OpenBSD - and one that undermines that The link for this article located at Computer World UK is no longer available. . The reliability of open source software is complex, with advocates like Theo de Raadt emphasizing security and transparency while facing critiques on usability and access.. OpenSSH, OpenBSD Security, Theo de Raadt Insights, Trust in Software, Open Source Concerns. . Alex
Dec 18, 2010
•
Organizations/Events
78
security advisorytrust issuesiOS updateApple iPhone Security Issues With Exchange And VPN Compliance
It turns out that Apple's iPhone 3.1 OS fix of a serious security issue, falsely reporting to Exchange servers that pre-3G S iPhones and iPod Touches had on-device encryption, wasn't the first such policy falsehood that Apple has quietly fixed in an OS upgrade. It fixed a similar lie in its June iPhone OS 3.0 update. Before that update, the iPhone falsely reported its adherence to VPN policies, specifically those that confirm the device is not saving the VPN password (so users are forced to enter it manually). Until the iPhone 3.0 OS update, users could save VPN passwords on their Apple devices, yet the iPhone OS would report to the VPN server that the passwords were not being saved.. The fact of the iPhones' false reporting of their adherence to Exchange and VPN policies has caused some organizations to revoke or suspend plans for iPhone support, said several readers who did not want their names or agencies identified. One reader at a large government agency describes the IT leader there as "being bitten by the change," after taking a risk to support the popular devices. "I guess we will all have to start distrusting Apple," said another reader at a different agency. The link for this article located at Tech World is no longer available. . The fact of the iPhones' false reporting of their adherence to Exchange and VPN policies has caused . turns, apple's, iphone, serious, security, falsely, reporting, exchan. . LinuxSecurity.com Team
Sep 16, 2009
•
Vendors/Products
67
authenticationencryption techniqueskey exchangeChallenges In Symmetric Cryptography: Trust And Key Exchange
One big issue with using symmetric algorithms is the key exchange problem, which can present a classic catch-22. The other main issue is the problem of trust between two parties that share a secret symmetric key. Problems of trust may be . . . . One big issue with using symmetric algorithms is the key exchange problem, which can present a classic catch-22. The other main issue is the problem of trust between two parties that share a secret symmetric key. Problems of trust may be encountered when encryption is used for authentication and integrity checking. As we saw in Chapter 3, a symmetric key can be used to verify the identity of the other communicating party, but as we will now see, this requires that one party trust the other. . One big issue with using symmetric algorithms is the key exchange problem, which can present a class. using, symmetric, algorithms, exchange, problem, which, present, class. . LinuxSecurity.com Team
Dec 19, 2003
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More