Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
83
malwaresecurity threatLinuxSurge in Malicious Python Attacks on Linux and Windows Requires Caution
A new set of malicious Python projects are targeting Linux and Windows systems. Security Brief states, "There has been a significant rise in the number of attacks involving Python." . These attacks have increased because they are cheap and easy to execute—the cost of renting or purchasing these tools is low compared to other types of malware like ransomware or viruses. This makes it easier for anyone with basic knowledge about how malware works (including criminals) to get started doing this kind of attack. So who exactly is being targeted in these attacks? Malicious hackers are targeting Linux systems such as web servers running Apache or OpenSSH. This means that hackers are trying to break into any kind of server containing sensitive information—like credit card numbers or passwords from users who pay for things online with their cards. To safeguard against these attacks, Python developers must carefully examine the code they download before installing it onto their systems. This kind of abuse of PyPI will likely continue, and therefore developers must proceed with caution when installing code from any public software repository. Stay up-to-date on the latest Linux security information and insights required to secure your systems by subscribing to our weekly newsletters. Have additional questions about securing your Linux systems and open-source projects? Connect with us on X @lnxsec - we're here to help! Stay safe out there, fellow Linux users! . The surge in budget-friendly Python vulnerabilities poses risks for Windows environments, highlighting the necessity to thoroughly review purchased applications.. Python Malware, Linux Security Threats, Web Server Hacks. . LinuxSecurity.com Team
Dec 28, 2023
•
Hacks/Cracks
77
OpenSSLpatch managementinternet securityLow OpenSSL Patch Levels Raise Security Concerns for Web Servers
Only 3 percent of Web servers running the open-source version of a secure communications component, OpenSSL, may be using the latest, bug-free software, according to a recent survey by Internet watcher NetCraft. The OpenSSL secure sockets layer software allows servers to . . . . Only 3 percent of Web servers running the open-source version of a secure communications component, OpenSSL, may be using the latest, bug-free software, according to a recent survey by Internet watcher NetCraft. The OpenSSL secure sockets layer software allows servers to securely communicate with browsers across the Internet. The survey found that nearly half of polled Web servers ran a version of OpenSSL that could be remotely exploited to bypass the server's security. (The 50,000 servers queried in the study were limited to those computers that returned a valid OpenSSL signature.) Other versions had lesser vulnerabilities. The survey did come with one major caveat: Many Linux distributions that include the software don't update the version numbers, making it falsely appear that the software is vulnerable. The link for this article located at ZDNet is no longer available. . Investigating the troubling update statuses of OpenSSL across various web hosting platforms, with merely 3% operating on the most current secure iteration.. OpenSSL Security, Web Server Security, Patch Management. . LinuxSecurity.com Team
Nov 05, 2003
•
Server Security
67
access controlsecurity methodsclient authenticationAccess Control with Basic and Client Authentication Techniques
One of the most common kinds of access control for secure web servers is Basic Authentication, in which a login and password are required. Access controls can apply to part or all of a web site. The restricted area is called . . . . One of the most common kinds of access control for secure web servers is Basic Authentication, in which a login and password are required. Access controls can apply to part or all of a web site. The restricted area is called the "authorization realm." Even though Basic Authentication is the most common kind of access control, it is not the most secure. The most secure kind of access control is Client Authentication. Client Authentication uses client certificates installed in users' web browsers or other client applications (clients) to authenticate users, and only lets clients with the right client certificates into the authorization realm. (In this article, an authorization realm with client authentication will be called a "Client Authentication Realm.") . One of the most common kinds of access control for secure web servers is Basic Authentication, in wh. common, kinds, control, secure, servers, basic, authentication. . LinuxSecurity.com Team
Apr 09, 2001
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More