Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -3 articles for you...
83
apacheweb securitybugtraqApache UTF-7 XSS Discussion: Responsibility for Security Issues
There is a great debate on the bugtraq mailing list regarding the apache utf7 xss issue. In this debate William Rowe (Apache) discusses why the Apache utf7 vulnerability is in fact not a vulnerability in Apache but in Internet Explorer for not following specifications properly. William first posted to bugtraq https://seclists.org/bugtraq/2008/May/166 with the following "Internet Explorer's autodetection of UTF-7 clearly violates this specification, introducing the opportunity for myriad similar attacks. These are literally everywhere on the web today, we can trust the kids to continue to explore this vector until it is fixed by Microsoft." What do you think about this debate? Who should be responsible in fixing this vulnerability? This article looks at both side of the debate, letting you decide. . . There is a great debate on the bugtraq mailing list regarding the apache utf7 xss issue. In this deb. there, great, debate, bugtraq, mailing, regarding, apache. . LinuxSecurity.com Team
May 27, 2008
•
Hacks/Cracks
77
security advisoryapachememory overflowApache 1.3.28 Release Notes: Key Updates for SysV, XSS, and Buffer Overrun
This version fixes multiple security vulnerabilities including a SysV a SysV shared memory-based scoreboards attack, a XSS vulnerability in the default 404 page handling hosted on a domain that allows wildcard DNS lookups, and some possible overflows in ab.c which could be exploited by a malicious server.. . .. This version fixes multiple security vulnerabilities including a SysV a SysV shared memory-based scoreboards attack, a XSS vulnerability in the default 404 page handling hosted on a domain that allows wildcard DNS lookups, and some possible overflows in ab.c which could be exploited by a malicious server. Apache 1.3.27 Major changes Security vulnerabilities The main security vulnerabilities addressed in 1.3.27 are: Fix the security vulnerability noted in CAN-2002-0839 (cve.mitre.org) regarding ownership permissions of System V shared memory based scoreboards. The fix resulted in the new ShmemUIDisUser directive. Fix the security vulnerability noted in CAN-2002-0840 (cve.mitre.org) regarding a cross-site scripting vulnerability in the default error page when using wildcard DNS. Fix the security vulnerability noted in CAN-2002-0843 (cve.mitre.org) regarding some possible overflows in ab.c which could be exploited by a malicious server. New features The main new features in 1.3.27 (compared to 1.3.26) are: The new ErrorHeader directive has been added. Configuration file globbing can now use simple pattern matching. The protocol version (eg: HTTP/1.1 ) in the request line parsing is now case insensitive. ap_snprintf() can now distinguish between an output which was truncated, and an output which exactly filled the buffer. Add ProtocolReqCheck directive, which determines if Apache will check for a valid protocol string in the request (eg: HTTP/1.1 ) and return HTTP_BAD_REQUEST if not valid. Versions of Apache prior to 1.3.26 would silently ignore bad protocol strings, but 1.3.26 included a more strict check. This makes it runtime configurable. Added support for Berkeley-DB/4.x to mod_auth_db. httpd -V will now also print out the compile time defined HARD_SERVER_LIMIT value. New features that relate to specific platforms: Support Caldera OpenUNIX 8. Use SysV semaphores by default on OpenBSD. Implemented file locking in mod_rewrite for the NetWare CLib platform. Bugs fixed The following bugs were found in Apache 1.3.26 and have been fixed in Apache 1.3.27: mod_proxy fixes: The cache in mod_proxy was incorrectly updating the Content-Length value from 304 responses when doing validation. Fix a problem in proxy where headers from other modules were added to the response headers when this was already done in the core already. In 1.3.26, a null or all blank Content-Length field would be triggered as an error; previous versions would silently ignore this and assume 0. 1.3.27 restores this previous behavior. Win32: Fix one byte buffer overflow in ap_get_win32_interpreter when a CGI script's #! line does not contain a \r or \n (i.e. a line feed character) in the first 1023 bytes. The overflow is always a '\0' (string termination) character. The link for this article located at Apache Foundation is no longer available. . Apache 1.3.27 has been launched addressing several security concerns such as a SysV memory exploit and cross-site scripting flaws.. Apache Security, Memory Overflow, Web Server Security, XSS Issue, SysV Attack. . LinuxSecurity.com Team
Oct 04, 2002
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More