Thank you for reading our Linux Security Week newsletter! In this weekly newsletter, we strive to provide readers with a comprehensive overview of the week's most relevant open source security news. We want to provide you with the type of content you are interested in, and would love to hear your thoughts on this week's articles.

Today’s newsletter highlights our two most recent feature articles: Secure Linux Hosting for Businesses and What Is Threat Intelligence? We also examine various topics including a new report highlighting the fact that stale open-source code is rampant in commercial software, and the release of Cinnamon 5.0 with many improvements that make the desktop environment more secure, stable and reliable, including new GUI and CLI tools for checking, listing, and performing updates of Cinnamon Spices. Happy Monday - and happy reading!

Yours in Open Source,

Brittany Signature 150

LinuxSecurity.com Feature Extras:

Secure Linux Hosting for Businesses - There are a plethora of excellent Linux hosting solutions available to businesses, and selecting a hosting provider may be a bit daunting as a result. To assist in the process, we’ll take a look at three popular types of Linux hosting and the benefits that each offers. We’ll then introduce you to RoseHosting, a provider of fully-managed, highly secure Linux hosting solutions that we love.

What Is Threat Intelligence? - Threat intelligence (or threat intell) is information used to understand past, present, and future threats targeting an organization. It is evidence-based knowledge about a previous, existing or emerging threat to organizational assets. 

  Amazon devices will soon automatically share your Internet with neighbors (May 31)
 

Amazon's experiment wireless mesh networking has turned users into guinea pigs. If you use Alexa, Echo, or any other Amazon device, you have only 10 days to opt out of an experiment that leaves your personal privacy and security hanging in the balance.
  Download AlmaLinux & Oracle Linux based on RHEL 8.4 now! (May 31)
 

Looking for a free and secure CentOS replacement? AlmaLinux and Oracle are great alternatives you'll want to look into. Among the various benefits that the distro offers, AlmaLinux 8.4 offers full UEFI Secure Boot support.
  Stale Open Source Code Rampant in Commercial Software: Report (Jun 2)
 

A new report shows that stale open-source code is rampant in commercial software, and organizations in all industries are struggling to manage open source risk. "In 2020 the percentage of codebases containing high-risk vulnerabilities jumped from 49 to 60 percent. What was more disturbing is that several of the top 10 open source vulnerabilities found in 2019 codebases reappeared in the 2020 audits, all with significant percentage increases."
  How to Do Security Auditing of Linux System Using Lynis Tool (Jun 3)
 

Learn how to install and use Lynis 3.0.4 to automate auditing and improve the security of your Linux system in this tutorial.
  How to reset AlmaLinux / Rocky Linux 8 root password (Jun 1)
 

Learn how to reset or recover a forgotten root user password on your AlmaLinux or Rocky Linux 8 desktop or server in this tutorial.
  Tigera’s Open Source Calico Selected to Address Kubernetes Network Policy in RKE 2 Clusters (Jun 2)
 

Tigera , a leader in Kubernetes security and observability, has announced that Kubernetes management market leader SUSE has chosen to add open source Calico container network interface (CNI) plugin as an option to Rancher Kubernetes Engine (RKE) 2, enabling consistent Kubernetes network policy definition and enforcement. Users will benefit from simplified, consistent, networking, security and observability across our Kubernetes platforms with one technology that addresses their needs.
  Linux Mint 20.2 'Uma' to get beta release by mid-June (Jun 1)
 

Linux Mint 20.2 'Uma' is set for a beta release by mid-June, with a selection of useful new features and improvements. Just like the rest of the 20.x series, 20.2 will be supported until around April or May of 2025. At this point, users will need to upgrade if they want their system to remain secure.
  Cinnamon 5.0 Desktop Environment Released with Support for Updating Spices, More (Jun 4)
 

Cinnamon 5.0 has been released with many improvements that make the desktop environment more secure, stable and reliable, including new GUI and CLI tools for checking, listing, and performing updates of Cinnamon Spices.
  Live Patching Requires Reproducible Builds – and Containers Are the Answer (Jun 3)
 

Live patching can improve security and minimize downtime, but can also lead to potential problems if carried out incorrectly. Learn how reproducible builds can help developers to implement live patching consistently and safely - and how containers are coming to the rescue! - in this article.
  CloudLinux OS Solo is a Low-Cost WordPress Optimized Linux OS (Jun 4)
 

The new CloudLinux OS Solo commercial Linux distro comes with a high degree of automatization, reducing security risks associated with manual operations.