General Esm W900
This week, perhaps the most interesting articles include "Take a Look at Snort; Your Computer Will Thank You," "An Open-Source Vulnerability Scanner for PHP Applications," and "Protecting Data with Encrypted Linux Partitions."

Hakin9 Magazine - Hacking, IT Security and More Subscribe today and get 10% off! Covers all things hackers need including techniques about breaking into computer systems, defense and protection methods. A great new magazine that'll be sure to keep you on the cutting edge. Want to learn more about the magazine?

Get 10% the regular subscription price if you sign up by the end of June!


LinuxSecurity.com Feature Extras:

Review: Practical Packet Analysis - In the introduction, McIlwraith points out that security awareness training properly consists of communication, raising of issues, and encouragement to modify behaviour. (This will come as no surprise to those who recall the definition of training as the modification of attitudes and behaviour.) He also notes that security professionals frequently concentrate solely on presentation of problems. The remainder of the introduction looks at other major security activities, and the part that awareness plays in ensuring that they actually work.

Security on your mind?

Protect your home and business networks with the free, community version of EnGarde Secure Linux. Don't rely only on a firewall to protect your network, because firewalls can be bypassed. EnGarde Secure Linux is a security-focused Linux distribution made to protect your users and their data.

Guardian Digital Makes Email Safe For Business - Microsoft 365, Goo....

Take advantage of our Linux Security discussion list! This mailing list is for general security-related questions and comments. To subscribe send an e-mail to This email address is being protected from spambots. You need JavaScript enabled to view it. with "subscribe" as the subject.

Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headline.


Security Fears Slow Virtualization
23rd, June, 2007

"More than half (52 percent) say the technology introduces some new security challenges." I asked this question to myself; What makes virtualization less secure then a physical installation of a Linux OS? What is the fear? Is it the fear of a attack called guest-to-guest attack or is the fear of virtualization software it's self? As the with any software which gains popularity there will be an increase of vulnerabilities but it's up to the user to make it secure.

Using RBL and DCC for Spam Protection
16th, June, 2007

I run a Postfix-based mail server that services a few hundred users with an average load of a couple of thousand legitimate messages a day -- but thanks to spam, the actual load on the server is much higher. I use Realtime Blackhole Lists (RBL) and Distributed Checksum Clearinghouse (DCC) clients on Postfix and SpamAssassin to reduce the impact of spam.

news/network-security/using-rbl-and-dcc-for-spam-protection
Take a Look at Snort; Your Computer Will Thank You
20th, June, 2007

If you think that Snort is not worth the time to learn and setup; this article will change your mind. "Snort is, by far, the gold standard among open source NIDS systems, with over 100,000 users and 3 million downloads to date." With the help of the Snort's website which, contains a wealth of documentation any Linux user should be able to setup Snort quickly.

news/network-security/take-a-look-at-snort-your-computer-will-thank-you
Firefox Extensions Waiting to Be Exploited
21st, June, 2007

Firefox has been hit hard with security vulnerabilities in the past few months. "I would also point out that there is a fairly sizable security concern that may be addressed, as effectively as some security experts might like. It's called the Firefox extension. ". Should we all just stop using any extensions? Or should we just check any extension updates before we install them. After reading this article the next time I download a update on Firefox I will think twice before preceding to install it.

news/network-security/firefox-extensions-waiting-to-be-exploited
Suse Linux Gets Better Virtualization, Security?
20th, June, 2007