Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
81
internet securityprivacy rightsinternet surveillanceImpacts Of CALEA-II On Internet Security And Privacy Rights
The FBI wants a new law that will make it easier to wiretap the Internet. Although its claim is that the new law will only maintain the status quo, it's really much worse than that. This law will result in less-secure Internet products and create a foreign industry in more-secure alternatives. . It will impose costly burdens on affected companies. It will assist totalitarian governments in spying on their own citizens. And it won't do much to hinder actual criminals and terrorists. The link for this article located at Schneier on Security is no longer available. . The recent legislation from the FBI could impose challenges on businesses, compromise online safety, and enhance state monitoring activities.. CALEA II, Internet Monitoring, Privacy Rights. . LinuxSecurity.com Team
Jun 05, 2013
•
Privacy
81
security breachprivacy protectionlegal implicationsLarry Ropp Indicted: Federal Wiretap Law Violation for Keyboard Logging
LS Commentary: It looks like Larry Ropp really was trying to put an end to a very noxious, illegal practice on the part of his employer, an auto insurance company. Certainly, it would appear that his intentions were good, and people may wonder why he's indicted for it. But the FBI could put a keyboard logger on you only under very defined circumstances, and a warrant is almost always required. These rules are in place to protect all of us; we simply cannot do normal business without the expectation of a degree of default privacy. To allow individuals to violate the privacy of others, even for causes they consider just, would make a mockery of the protections provided by law. There was nothing about this case that prevented the employer from taking this matter to the authorities and allowing them to obtain a warrant. They still might have used his services to plant the logger, but then, at least, it would have been sanctioned by law. . . .. A former claims adjuster for a U.S. insurance company is the first to be charged under federal wiretap law for the covert use of a hardware keystroke logger, after he was caught using the device while secretly helping consumer attorneys gather information to use against his own company. Larry Ropp, 46, was indicted Tuesday by a federal grand jury in Los Angeles on a single count of endeavoring to intercept electronic communications. Ropp is accused of installing a "KEYKatcher" keystroke logger on the PC of a secretary to a vice president at the Bristol West Insurance Group where he worked. The KEYKatcher attaches inline with a keyboard connector, and stores every keystroke in an internal memory for later retrieval. In an interview with SecurityFocus, Ropp admitted to using the device, which he says he ordered off the Internet. But he defended his office skullduggery as a necessary evil to expose improper anti-consumer practices at the company. "The FBI themselves use key loggers quite a bit," he said. "Here, I'm a whistleblower, and I'm getting the shaft." Ropp wasworking at Bristol West's Anaheim, California office last year when a state appeals court ruled that the company had been illegally canceling the policies of customers who were a single day late with their payments. Under California law, an insurance company must give 10 days notice before canceling a delinquent customer's automobile liability policy. Bristol West had been circumventing that requirement by issuing "cancellation notices" with every bill, before payment was due, so that by the due date the 10 days had already passed. "If it was due Tuesday, and you had an accident on Wednesday, you didn't have any insurance," says Ropp. "It was out-and-out a wrongful, illegal denial." A California appellate court ruled against Bristol West in January, in a lawsuit filed by a customer, Curtis Mackey, who'd been involved in an auto accident two weeks after missing a payment, and was consequently denied a claim. Without admitting wrongdoing, the company subsequently agreed to pay six million dollars to settle a separate class action lawsuit filed on behalf of customners whose policy was canceled without proper notice. The link for this article located at SecurityFocus is no longer available. . A former claims adjuster for a U.S. insurance company is the first to be charged under federal wiret. commentary, looks, larry, really, trying, noxious, illegal. . LinuxSecurity.com Team
Mar 26, 2004
•
Privacy
82
privacy rightsgovernment regulationstelecommunicationAnalyzing Government Regulations on Telecommunications and Privacy Rights
Oscar S. Cisneros writes: "A new government-approved standard for telecommunications equipment violates the Fourth Amendment's prohibition against unreasonable searches and seizures, critics say. The standard, released in updated form last week by the Telecommunication Industry Association, instructs telecommunications hardware manufacturers on . . . . Oscar S. Cisneros writes: "A new government-approved standard for telecommunications equipment violates the Fourth Amendment's prohibition against unreasonable searches and seizures, critics say. The standard, released in updated form last week by the Telecommunication Industry Association, instructs telecommunications hardware manufacturers on how to build their equipment so that it complies with a federal wiretap law passed by Congress in 1994." In today's day and age where we are all prone to our traffic being sniffed an issue like this should be important to all of us. The link for this article located at Wired News is no longer available. . Oscar S. Cisneros recently highlights concerns about a newly sanctioned telecommunications protocol by the government, claiming it violates Fourth Amendment protections. Telecommunications Regulations, Privacy Advocacy, Government Surveillance. . Anthony Pell
Aug 14, 2000
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More