Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
77
ftp serverproftpdfile transferComparing the Differences Between Vsftpd and ProFTPd FTP Servers
FTP is a standard protocol that is used to transfer files widely, and FTP servers like Vsftpd and ProFTPd provide a way to use that protocol and access plus transfer files stored on a remote server. Here we quickly learn the difference between Vsftpd and ProFTPd. . vsftpd (Very Secure FTP Daemon) is a GPL-licensed FTP server software developed to provide a secure but fast way to transfer files. It is popular among Linux users because of its simplicity and efficient use of system resources. That’s the reason why most Linux distros such as Redhat, Fedora, Ubuntu, Debian, and more offer this FTP server package to install directly from the base repository of the system. Learn – How to install VSFTPD to Setup FTP Server on Ubuntu 22.04. ProFTPd (Pro FTP daemon) is also an open-source FTP server just like Vsftpd but comes highly customizable and extensible. It offers a wide range of advanced features like virtual hosts, SSL/TLS encryption, and LDAP authentication. It is designed to be a highly feature-rich FTP server. . When comparing vsftpd and ProFTPd, both excel in secure file transfers, but vsftpd is simpler and more performance-oriented, while ProFTPd offers flexibility and advanced features. Vsftpd, ProFTPd, FTP Server Comparison, File Transfer Protocols. . LinuxSecurity.com Team
Mar 29, 2023
•
Server Security
79
security advisorybackdoorsource codeVsftpd 2.3.4 Security Alert: Uncovered Backdoor Vulnerability Detected
Chris Evans, aka Scary Beasts, has confirmed that version 2.3.4 of vsftpd's downloadable source code was compromised and a backdoor added to the code. Evans, the author of vsftpd . The bad tarball included a backdoor in the code which would respond to a user logging in with a user name ":)" by listening on port 6200 for a connection and launching a shell when someone connects. The link for this article located at H Security is no longer available. . A vulnerability was identified in the source code of OpenSSH version 7.6, creating a significant threat to its users.. Vsftpd Backdoor, Source Code Breach, Authentication Security. . LinuxSecurity.com Team
Jul 05, 2011
•
Security Projects
79
debianftp serversecurity setupConfiguring Vsftpd with MySQL: Enhanced FTP Security on Debian
Layers upon layers of security should make anyone feel warm and fuzzy about their secured application. I like the fact that if anyone is going to root me, they're going to have to WORK for it. FTP was always an area where I felt it could use a little more work in locking down its defenses. Enter Vsftpd along with a tag team partner of virtualization, and you've got a how-to of sandboxing your FTP server into a virtual environment. . Vsftpd is one of the most secure and fastest FTP servers for Linux. Usually vsftpd is configured to work with system users. This document describes how to install a vsftpd server that uses virtual users from a MySQL database instead of real system users. This is much more performant and allows to have thousands of ftp users on a single machine. The link for this article located at HowtoForge is no longer available. . Secure your FTP server to protect sensitive data with Vsftpd on Debian. Use MySQL for virtual user management, ensuring enhanced security and usability. Vsftpd Ftp Server, MySQL Integration, Debian Security, Virtual User Management. . LinuxSecurity.com Team
Jun 26, 2007
•
Security Projects
78
security advisoryaccess controlEnGarde Secure LinuxEnGarde Secure Linux FTP Daemon Setup and Access Control Guide
This is the first in a series of documents I'm writing on utilizing EnGarde Secure Linux. In this document I show all of the necessary steps to enable the ftp daemon. Since it does not come enabled by default . . . . This is the first in a series of documents I'm writing on utilizing EnGarde Secure Linux. In this document I show all of the necessary steps to enable the ftp daemon. Since it does not come enabled by default it is highly recommended that anybody running EnGarde Secure Linux read this. Introduction ------------ This document provides the steps a user can perform to enable and configure the ftp daemon (ftpd) for EnGarde Secure Linux 1.0.1 (Finestra). It is assumed that the reader is familiar operating as the root user and knows how to use a text editor such as vi(1) or pico(1). The proper forum to ask questions is one of the "EnGarde Mailing Lists" (see "Resources" below). If you have a problem configuring the ftpd, please send an email to that list so one of the EnGarde developers can help. Procedure --------- Below are the steps you must perform to get the ftpd working. It is highly recommended that you follow all of these steps, in order, even though some of these steps are optional. Step 1: Access Control ----------------------- Before anybody can connect to the ftpd you must first give them access by editing the file '/etc/hosts.allow'. You must add a line "vsftpd:" followed by a list of IP addresses you wish to grant access to. Some examples: To allow access from localhost: vsftpd: 127.0.0.1 To allow access from everybody on the 192.168.1.0/24 subnet: vsftpd: 192.168.1. To allow access from two specific addresses: vsftpd: 192.168.1.100 192.168.5.53 To allow access to everybody: vsftpd: ALL Step 2: vsftpd Configuration ----------------------------- vsftpd has three configuration files: /etc/vsftpd.banned_emails -- List of anonymous email addresses to deny. /etc/vsftpd.chroot_list -- List of local users to chroot. /etc/vsftpd.conf -- General configuration options. To ban a certain anonymous email address such as "mozilla@", simply put it in this file. One address per line. To chroot a local user to their home directory, put their username in this file. One username per line. Please note this only matter is you: a) are allowing local users to login. b) have "chroot_local_user=NO" in /etc/vsftpd.conf The configuration options in the vsftpd.conf are commented quite good, so I will not go into much detail here. I will just note a few defauls: a) anonymous logins are enabled by default b) anonymous users are chrooted to '/home/ftpsecure' c) the daemon runs as the user 'ftpsecure' Step 3: Enable and Restart xinetd ---------------------------------- The first step is to make it so xinetd will be enabled "by default". This means xinetd will start up whenever the machine is restarted. To do this, execute the command: # chkconfig --add xinetd The next step is to start up xinetd right now. To do this, execute the command: # /etc/init.d/xinetd start The ftpd is now running as will accept connections from any of the addresses you defined in "Step 1". The ftpd will also start up whenever the machine is booted. Step 4: Populate the Tree -------------------------- As said in "Step 2", all anonymous users as chrooted to "/home/ftpsecure". This means they will not be able to access any files outside of that directory. You should put all the files you want anonymous ftp users to see in this directory. Although not necessary, it is recommended that you set up two files: /home/ftpsecure/etc/passwd /home/ftpsecure/etc/group When an anonymous user issues the command "ls", the ftpd will search these files to get the userid to username mappings. If you do not have these files the user will seesomething like this (note the '0's): ftp> ls -la 227 Passive mode engaged (127,0,0,1,30,4) 150 Here comes the directory listing. -rw-r--r-- 1 0 0 0 Apr 13 20:03 that -rw-r--r-- 1 0 0 0 Apr 13 20:03 this 226 Directory send OK. As a starting point, you can copy the system /etc/passwd to /home/ftpsecure/etc/passwd and the system /etc/group to /home/ftpsecure/etc/group. After this is done you should remove any users and groups that will not be used in /home/ftpsecure. For example, you will probably want to remove the users 'webd', 'halt', 'sync', etc. A sample /home/ftpsecure/etc/passwd would be: root::0:0:root:/root:/dev/null nobody:*:99:99:Nobody:/: rwm:x:501:502:Ryan W. Maple:/home/rwm:/dev/null ben:x:500:502:Ben Thomas:/home/ben:/dev/null dave:x:502:502:Dave Wreski:/home/dave:/dev/null nick:x:503:502:Nick DeClario:/home/nick:/dev/null pete:x:504:502:Pete O'Hara:/home/pete:/dev/null A sample /home/ftpsecure/etc/group would be: root::0:root nobody::99: gdftp::502:dave,nick,pete,ben,rwm Now when a user executes the command "ls", they will see something like this (note was was '0' is now 'root'): ftp> ls -la 227 Passive mode engaged (127,0,0,1,109,222) 150 Here comes the directory listing. drwxr-xr-x 2 root root 4096 Apr 13 20:07 etc -rw-r--r-- 1 root root 0 Apr 13 20:03 that -rw-r--r-- 1 root root 0 Apr 13 20:03 this 226 Directory send OK. Resources --------- EnGarde Mailing Lists: Guardian Digital Makes Email Safe For Business - Microsoft 365, Goo.... . Learn to configure the FTP daemon in EnGarde Secure Linux with vsftpd through a step-by-step process for secure and efficient file transfers. EnGarde Secure Linux, FTP configuration, vsftpd setup, access control, secure Linux administration. .LinuxSecurity.com Team
Apr 17, 2001
•
Vendors/Products
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More