Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 7 articles for you...
209
IT infrastructuresecurity strategyvirtualizationDual Boot or VM: Securely Transitioning to Linux Infrastructure
Given its potential security implications, switching from Windows to Linux can be intriguing and daunting for administrators . Instead of taking an abrupt leap and abandoning Windows altogether, creating an environment in which both operating systems coexist can make this transition process smoother and safer. . Taking this approach not only enhances testing capabilities but also provides protection from disruptive failures. Furthermore, this gradual migration approach enables critical services and workloads to be safely moved before a full switchover to Linux. Let's examine how dual booting or using virtualization software provides a balanced, secure route towards adding Linux into your IT infrastructure. Exploring the Dual Boot Advantage Establishing a dual boot system involves installing both Windows and Linux onto one machine, allowing users to boot into either system at startup. This provides organizations an effective means for testing security practices - acting as an ideal testing ground where Linux-specific security tools or patches may be trialed before expanding them across an entire network. Security administrators can use this setup to conduct vulnerability assessments without endangering their existing Windows setup. Testing updates or open-source security software in an isolated Linux environment provides peace of mind knowing any potential issues won't threaten critical Windows systems. Incorporating both operating systems simultaneously ensures greater operational continuity while mitigating risks associated with software compatibility issues. Virtual Machines: A Flexible Approach Virtual machines (VMs) offer administrators several benefits over dual booting methods. One such advantage is access to Linux as an application within Windows without needing to reboot their machine and use its security tools. Running a Linux virtual machine (VM) can greatly enhance security operations by providing real-time testing of security scenarios without impacting liveenvironments. Admins can test potential threats in virtualized Linux environments before exploiting vulnerabilities for real. This process enhances security measures and creates more robust response strategies. Virtual machines (VMs) enable admins to efficiently prioritize current tasks on Windows systems while exploring security frameworks or protocols in Linux on one machine, thus expanding their understanding and utilization of Linux's vast security features. Security: Mitigating Risks with a Dual Strategy One of the primary concerns when switching operating systems is security risks that might emerge. Using dual boot or virtualization technology can help minimize these risks significantly, especially since cyber threats have become far more sophisticated in recent years. Running two distinct OSes on one machine adds another layer of protection. Suppose one operating system becomes compromised due to malware or a security breach. In that case, its counterpart remains undamaged, providing admins a crucial advantage in responding to incidents without resorting to emergency restoring procedures. Admins can leverage Linux's robust security tools without completely cutting ties with all their Windows applications, maintaining operational flexibility and assurance that would otherwise be impossible with a single OS system. Gradual Learning Curve and Migration Transitioning from Windows to Linux can be a steep learning curve, particularly for those entrenched in a Windows-based environment. A phased approach via dual boot or VM allows IT professionals to acquaint themselves with Linux at their own pace, testing waters and developing competencies without immediate pressure. This comfort in learning fosters a deeper understanding of Linux’s capabilities, from superior security protocols to tweaking system configurations that enhance your security posture. Over time, as familiarity grows, critical services and workloads can be moved from Windows to Linux with confidence. Admins canensure that all security standards are rigorously tested and maintained during this gradual migration, reducing the potential for disruption and increasing the resilience of IT infrastructure. Enhancing Your Overall Security Strategy Both dual boot and VM solutions encourage a more comprehensive approach to strengthening an organization’s overall IT security strategy. By integrating Linux into their systems in a controlled and incremental fashion, security professionals can leverage the best aspects of each OS. Windows continues to provide familiarity and compatibility with established systems, while Linux offers unparalleled opportunities for innovation and enhanced security practices. Admins can monitor and adjust policies in real time, dynamically applying insights from the Linux environment into more extensive network-wide security plans. Switching effortlessly between systems facilitates continuous learning and adaptation, essential qualities for any security-conscious admin to develop. Our Final Thoughts on The Benefits of a Dual Boot or VM When Transitioning to Linux For IT security admins considering the leap to Linux, opting for a dual boot or VM offers a prudent, security-focused strategy. It promotes a balanced learning curve and encapsulates security benefits that aren't just theoretical but demonstrably practical in mitigating risks and maintaining business continuity. As organizations continue navigating the challenges of today's digital environment, such a transitional strategy ensures readiness and resilience, empowering security admins to deliver secure, reliable IT solutions. Ready to get started? Tom's Hardware offers an excellent guide on setting up a dual boot system . Canonical also offers a great guide on setting up a VM with VirtualBox. Have additional questions or concerns? Reach out to us on X @lnxsec - we're here to help! . Boost your testing potential and fortify security by transitioning to Linux via dual boot setups or virtual machines, whileexpertly minimizing associated risks.. Dual Boot, Virtualization, IT Security, Linux Transition. . Brittany Day
Feb 28, 2025
•
Security Trends
78
virtual machinecontainer securityKubernetesMicrosoft’s Azure Kubernetes Service Deploys Pod Sandboxing for Security
Last week, Microsoft released a new update that adds pod sandboxing support to its Azure Kubernetes Service (AKS). The new feature allows organizations to run modern applications on AKS in an isolated and secure environment. . Microsoft explained that it’s a standard practice to use Kubernetes for hosting and managing modern applications in cloud environments. However, one of the major drawbacks is that the service doesn’t provide robust support for multi-tenancy capabilities. This makes it impossible to host multiple customers or workloads within a single instance of Kubernetes. According to Microsoft, modern applications that are bundled together as containers use the same operating system. Each container works like a separate process running on the computer which makes it challenging to keep the containers isolated from each other. This problem could be resolved by running each pod (a collection of containers) on a dedicated VM. However, this approach causes significant performance issues for customers. To address this problem, Microsoft has developed a lightweight virtual machine (VM) infrastructure called Kata Containers. It’s compatible with Kubernetes and the container runtime interface (CRI) specifications. Microsoft explained that pods that target Kata Containers are treated by Kubernetes like all other containers. However, the process involves adding the containers to a lightweight virtual machine. The link for this article located at Petri is no longer available. . The latest pod isolation capability from Microsoft boosts security in Azure Kubernetes Service, ensuring safer deployment for applications.. Azure Kubernetes Service, Pod Sandboxing, Container Security, Lightweight Virtualization. . LinuxSecurity.com Team
Mar 03, 2023
•
Vendors/Products
67
kernel updatevirtual machinesystem compatibilityEnhancing AMD SEV-SNP Support For Legacy VMs In Linux 6.2-rc6
Merged on Sunday prior to tagging Linux 6.2-rc6 is a late "fix" for the AMD Secure Encrypted Virtualization Secure Nested Paging (SEV-SNP) code to avoid possible situations of undefined behavior with difficult to debug issues where a modern Linux host with SEV-SNP may try booting a Linux virtual machine with an outdated kernel. . Some AMD SEV-SNP features need guest-side support to work correctly and so if a modern Linux host with a recent kernel that supports newer features of modern AMD EPYC CPUs tries booting a guest virtual machine with a kernel lacking support for some SEV features, there can be problems -- problems that aren't necessarily straight-forward to diagnose. Surprisingly it took until yesterday for the mainline Linux kernel to receive SEV-SNP guest feature negotiation support to deal with this real possibility of the host/hypervisor having a newer kernel than what is found on the guest VMs. This is being treated as a fix so it was picked up for Linux 6.2-rc6 rather than waiting for the next merge window. In turn it will also be back-ported soon to stable Linux kernel series. The link for this article located at Phoronix is no longer available. . Solution for AMD SEV-SNP to improve compatibility between contemporary Linux hosts and legacy virtual machines in the kernel.. AMD SEV-SNP, Kernel Updates, Virtual Machine Management. . LinuxSecurity.com Team
Jan 30, 2023
•
Cryptography
78
Microsoftvirtual machineCanonicalSystemd Integration Now Enabled for WSL2 Linux Distributions by Microsoft
Linux distros running on Windows in a WSL2 virtual machine now can use the systemd init system. . This week Microsoft and Canonical jointly announced the news that the latest build of Windows Subsystem for Linux 2 (version 0.67.6 and higher) has been modified to support systemd. Canonical''s blog post has some technical detail, and also takes the opportunity to promote its LXD container thingamajig. Microsoft''s corresponding announcement is not so technical – and the YouTube demo video even less so – but it does mention that there have been multiple third-party workarounds that have achieved the same thing. . Mozilla and Red Hat unveil support for Wayland in WSL2, improving graphical experience for Linux environments on Windows systems.. WSL2 Support, Systemd Integration, Windows Linux Distros, Canonical Announcement. . LinuxSecurity.com Team
Sep 30, 2022
•
Vendors/Products
82
incident responsecyber attackransomwareChilean Government Agency Ransomware Attack: Virtual Machines Compromised
Chile's national computer security and incident response team (CSIRT) has announced that a ransomware attack has impacted operations and online services of a government agency in the country. . The attack started on Thursday, August 25, targeting Microsoft and VMware ESXi servers operated by the agency. The hackers stopped all running virtual machines and encrypted their files, appending the ".crypt" filename extension. . A cybercriminal incident affected a governmental organization's virtual systems in Chile, commencing on August 25.. Chilean Government, Server Security, Cybersecurity Incident, Virtual Machine Attack. . Brittany Day
Sep 30, 2022
•
Government
76
vulnerabilityanalysisbugVENOM Bug Analysis With Dan Kaminsky: VM Escapes Explored
Dennis Fisher talks with Dan Kaminsky about the VENOM bug, the value of virtual machine escapes, why everyone wants to make every bug the worst one of all time or just a bunch of hype and what the Avengers have to do with vulnerability disclosure.. . Dennis Fisher talks with Dan Kaminsky about the newly revealed VENOM vulnerability, examining its impact on virtual machine security and the hype around it.. VENOM Bug, Virtual Machine Escape, Cybersecurity Trends. . Alex
May 14, 2015
•
Organizations/Events
77
network securitydata protectionaccess controlProtecting Virtual Machines From Data Theft Risks and Threats
Remember the email server or payroll system that you virtualized? Someone with administrator access to your virtual environment could easily swipe it and all the data without anybody knowing. Stealing a physical server out of a data center is very difficult and is sure to be noticed, stealing a virtual machine (VM), however, can be done from anywhere on your network, and someone could easily walk out with it on a flash drive in their pocket.. Virtualization offers many benefits over physical servers, but there are some pitfalls you should be aware of and protect against to avoid losing sensitive data. Because a virtual machine is encapsulated into a single virtual disk file that resides on a virtual host server it is not all that difficult for someone with the appropriate access to make a copy of that disk file and access any of the data on it. This is a fairly simple thing to do, and we will show you how to do it here so you can protect your environment against it. There are basically two ways one could access the virtual disk (.vmdk) file of a virtual machine. The first would be using the ESX Service Console. If someone knew the root password or had a user account on the host, they could gain access to the VMFS volumes that contain the virtual machine files and use copy tools like Secure Copy, or SCP, to copy files from it. The second is using the vSphere/VMware Infrastructure Client which contains a built-in datastore browser; this is the method we will cover here. The link for this article located at SearchVMWare is no longer available. . Cloud environments introduce new vulnerabilities; discover effective methods to protect your systems from data breaches and malicious attacks.. Virtual Machine Security, Data Protection, Access Control, System Virtualization, Network Security. . LinuxSecurity.com Team
Jan 11, 2010
•
Server Security
77
security riskattack methodembedded systemsSecurity Risks in Hypervisors: Impacts Across Technology Sectors
The basic idea/thesis of this article (and the previous, unfinished draft) is this: hypervisors are getting more and more common, and are growing in deployment in everything from datacenter systems to embedded consumer electronics. But, as their deployment increases, more and more security concerns come into play, including a variety of attack methods and the dire consequences of a compromised hypervisor.. If you know what a hypervisor is, then skip this paragraph: A hypervisor is basically a very minimalist operating system designed with the purpose of abstracting real, physical computer hardware from one or more virtual machines running The link for this article located at The Coffee Desk is no longer available. . As virtualization expands across cloud computing and enterprise IT, security concerns tied to hypervisors are rising, necessitating robust measures for protection. Hypervisor Security, Virtualization Risks, Cloud Infrastructure Security. . LinuxSecurity.com Team
Dec 03, 2009
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More