Thank you for subscribing to our Linux Security Week newsletter! In this weekly newsletter, we strive to provide readers with a comprehensive overview of the week’s most relevant open source security news. We want to provide you with the type of content you are interested in, and would love to hear your thoughts on this week's articles.


Today’s newsletter highlights our two most recent feature articles: TANSTAAFL! The Tragedy of the Commons Meets Open-Source Software and Securing a Linux Web Server: A Primer. We also examine various topics including balancing Linux security with usability, how unpatched Linux servers lead to persistent backdoors and the removal of support for the disabling of SELinux at run-time with the release of Fedora 34. Happy Monday - and happy reading!

TANSTAAFL! The Tragedy of the Commons Meets Open-Source Software - Open-source projects can become victims of their own success. What can developers do to secure their open-source software?

Securing a Linux Web Server: A Primer - Over the next couple of weeks and months, LinuxSecurity editors and contributors will be writing a series on Linux Web Server Security. This week, were summarizing the risks Linux administrators face when trying to secure their systems, as well as outlining the first steps that should be taken toward ensuring that your systems are secure. This series will dive deeper into topics including preventing information leakage, firewall considerations, protecting file and directory permissions, securely running PHP applications, monitoring logs and how to verify the security of a Linux server.

  Securing a Linux Web Server: A Primer (Sep 20)
 

Over the next couple of weeks and months, LinuxSecurity editors and contributors will be writing a series on Linux Web Server Security. This week, were summarizing the risks Linux administrators face when trying to secure their systems, as well as outlining the first steps that should be taken toward ensuring that your systems are secure. This series will dive deeper into topics including preventing information leakage, firewall considerations, protecting file and directory permissions, securely running PHP applications, monitoring logs and how to verify the security of a Linux server.
  TANSTAAFL! The Tragedy of the Commons Meets Open-Source Software (Sep 21)
 

Open-source projects can become victims of their own success. What can developers do to secure their open-source software?
  Announcement of the passing of Jari Fredriksson (Sep 21)
 

Today we learned of the passing of a long-time contributor to the Linux and SpamAssassin communities. Jari Fredriksson ran a mirror for sa-update for a long time, contributed to our masscheck system, tested numerous releases, and has given us tons of great feedback over the years. He'll be missed. May his memory be a blessing.
  Microsoft’s Edge browser is coming to Linux in October (Sep 23)
 

Have you heard that  Microsofts  Edge browser is coming to Linux in October? Linux users will get the same Edge experience as users on Windows and macOS, as well as access to its built-in privacy and security features.
  Linux vulnerabilities: How unpatched servers lead to persistent backdoors (Sep 24)
 

Humans make mistakes, software has bugs and some of these bugs are exploitable vulnerabilities. The existence of vulnerabilities in software is not a new problem, but as the volume of software in existence grows, so does the number of exploitable vulnerabilities. Learn more about this worrisome trend in an interesting Security Boulevard article.
  Microsoft Says Important Windows 10 Fix for Linux Users is Coming (Sep 23)
 

Microsoft has announced that its working on fixing a Windows Subsystem for Linux (WSL), and the rollout should start with the upcoming 20H2 servicing release.
  Fedora 34 Aims To Further Enhance Security But Will Lose Runtime Disabling Of SELinux (Sep 25)
 

With the release of Fedora 34, the popular Linux distro aims to further increase security by removing support for the disabling of SELinux at run-time.
  How to encrypt files on your Linux servers with gocryptfs (Sep 21)
 

Looking for a user-friendly encryption tool to secure data on your Linux servers? If so, you'll want to check our gocryptfs. In this tutorial, Jack Wallen demonstrates how to install and use gocryptfs.
  Taming the tar command: Tips for managing backups in Linux (Sep 22)
 

Learn how the tar command can help you create and manage backups smartly and easily in this quick, informative tutorial.
  Balancing Linux Security with Usability (Sep 28)
 

Security is a balance between accessibility, usability, and restriction - too far in any of those directions, and you're in for trouble. Here are some tips on how to strike that balance with your Linux system.