Linux Today: Linux News On Internet Time.








Most Read Stories

Editor's Picks

Linux 4.5 rc3
Linus Torvalds: It's Sunday afternoon, and everything is normal... (Feb 07, 2016)

Alpine Linux Goes All In for Docker
eWEEK: While Docker can run on multiple OSes, including various flavors of Linux and Windows, there has been a movement in the last two years toward highly optimized Docker-focused operating systems (Feb 09, 2016)

More on LinuxToday

Linux Today - Security

US Air Force's Secure LPS (Lightweight Portable Security) Linux OS Gets Updated
(Feb 11, 2016, 11:00) (0 talkbacks)

Being built by the US Air Force, LPS has been designed with one purpose in mind: to be as secure as possible and to not leave any trace of the users

Mentor Embedded Linux adds SMACK security and IoT support
(Feb 10, 2016, 05:00) (0 talkbacks)

 LinuxGizmos: Mentor Graphics has updated Mentor Embedded Linux (MEL) with Yocto Project 2.0 code, SMACK security, and support for CANopen, BACNet, and 6LoWPAN.

The Talos Secure Workstation Is A High-Performance Libre System
(Feb 05, 2016, 23:00) (0 talkbacks)

Phoronix: The Talos Workstation is built around the open-source-friendly IBM POWER8 processor.

Rootkit Security: The Next Big Challenge
(Feb 05, 2016, 08:00) (0 talkbacks)

 EnterpriseStorageForum: Servers, networks, disks and SSD drives are all at risk unless vendors have a way of securing firmware

What Are Your Container Security Options?
(Feb 05, 2016, 05:00) (0 talkbacks)

 eSecurityPlanet: As with any nascent technology, container security is a concern.

Top Open Source Firewalls for Small Business
(Feb 04, 2016, 08:00) (0 talkbacks)

 smallbusinesscomputing: We look at five of the best small business open source firewalls available.

7 Things to Consider Before Fuzzing a Large Open Source Project
(Feb 04, 2016, 06:00) (0 talkbacks)

Linux.com: One of the best practices for secure development is dynamic analysis.

WordPress Update Patches Pair of Vulnerabilities
(Feb 03, 2016, 23:00) (0 talkbacks)

eWEEK: Automatic updates that patch the two flaws and fix 17 bugs are now rolling out to users of the open-source WordPress CMS.

Using IPv6 with Linux? You’ve likely been visited by Shodan and other scanners
(Feb 03, 2016, 06:00) (0 talkbacks)

Ars: Shodan caught using time-keeping servers to quietly harvest IP addresses.

How Do I Drop or Block Attackers IP Address With Null Routes On a Linux?
(Feb 02, 2016, 14:00) (0 talkbacks)

 Nixcraft: A null route (also called as blackhole route) is a network route or kernel routing table entry that goes nowhere.

Google Patches 13 Flaws in February Android Update
(Feb 02, 2016, 11:00) (0 talkbacks)

eWEEK: Google has come out with its second security patch update for Android in 2016, this time patching 13 vulnerabilities in the mobile device operating system.

Getting started with Let's Encrypt SSL Certificates on Ubuntu
(Feb 02, 2016, 05:00) (0 talkbacks)

 HowToForge: Let's Encrypt is a new SSL authority that provides free SSL certificates.

Tor Browser 6.0 Now in Development, Devs Switch the Guest VMs to Debian Wheezy
(Jan 30, 2016, 10:00) (0 talkbacks)

Tor Browser 6.0 is now in development

10 Open Source Vulnerability Assessment Tools
(Jan 27, 2016, 15:00) (0 talkbacks)

 eSecurityPlanet: Open source vulnerability assessment tools are a great option for organizations that want to save money or customize tools to suit their needs.

Tails 2.0 is out
(Jan 27, 2016, 08:00) (0 talkbacks)

This release fixes many security issues and users should upgrade as soon as possible.

Firefox 44 Debuts With Improved Security
(Jan 26, 2016, 23:00) (0 talkbacks)

eWEEK: Mozilla adds push notification support and provides 11 security advisories with its latest open-source browser release.

Find Out If Patch Number ( CVE ) Has Been Applied To RHEL / CentOS Linux
(Jan 26, 2016, 19:00) (0 talkbacks)

 Nixcraft: Do you know what your patch level is?

Ghosts in the Linux Machine
(Jan 26, 2016, 13:00) (0 talkbacks)

Hands-On: Kali Linux Light (Xfce) and Mini distributions
(Jan 26, 2016, 08:00) (0 talkbacks)

ZDnet: In addition to their full distribution, Kali Linux offers Light and Mini versions. Here's how I got on with them.

BlackArch Linux Expands Its Roster of Tools for Security Research
(Jan 25, 2016, 23:00) (0 talkbacks)

eWEEK: BlackArch is a security-focused operating system that is based on the Arch Linux distribution.

GPG: a Fedora primer
(Jan 25, 2016, 19:00) (0 talkbacks)

Fedora Magazine: GPG, or GnuPG, refers to the Gnu Privacy Guard utility.

A Look at Linux, Android Zero-Days and the Perils of Patches
(Jan 25, 2016, 11:00) (0 talkbacks)

eWEEK: A zero-day vulnerability is reported against Linux and Android, but the real risk lies in known issues that users have not yet patched.

How to Install Mailpile with Nginx on Ubuntu 15.10
(Jan 22, 2016, 15:00) (0 talkbacks)

 HowToForge: Mailpile is an open source mail client that focuses on encryption and users privacy.

Google confirms new Linux hole not a big deal for Android
(Jan 22, 2016, 14:00) (0 talkbacks)

 ZDnet: Reports of a massive Linux kernel zero-day were somewhat overstated.

Kali Linux, Rolling Edition Released – 2016.1
(Jan 22, 2016, 05:00) (0 talkbacks)

Kali switched to a rolling release model back when we hit version 2.0 (codename “sana”), however the rolling release was only available via an upgrade from 2.0 to kali-rolling for a select brave group.

20 Iptables Examples For New SysAdmins
(Jan 21, 2016, 10:00) (0 talkbacks)

Nixcraft: Linux comes with a host based firewall called Netfilter.

How to block an IP address with ufw on Ubuntu Linux server
(Jan 21, 2016, 05:00) (0 talkbacks)

 Nixcraft: Do you know how to use ufw?

How to Restrict SFTP Users to Home Directories Using chroot Jail
(Jan 20, 2016, 09:00) (0 talkbacks)

 tecmint: In this tutorial, we will be discussing how to restrict SFTP users to their home directories or specific directories.

Don't Panic About Recent Zero-Day Linux Kernel Vulnerability, It's Not That Bad
(Jan 20, 2016, 08:00) (0 talkbacks)

 softepedia: Linux kernel zero-day? Not so fast...

How to setup a intermediate compatible SSL website with LetsEncrypt certificate
(Jan 19, 2016, 19:00) (0 talkbacks)

 HowToForge: Let's Encrypt brings you freedom but also limits you in using the certificate with SHA-256 RSA Encryption.

LibreOffice 5.1.0 to Integrate OpenGL and Coverty Fixes
(Jan 19, 2016, 14:00) (0 talkbacks)

The Document Foundation has revealed the second Release Candidate for LibreOffice 5.1.0, the first major update for the 5.x branch of the famous office suite.

Linux Server Hardening
(Jan 17, 2016, 06:00) (0 talkbacks)

LinuxJournal: Putting an unprotected server out on the Internet is like putting chum in the ocean water you are swimming in

Black Duck Intros Container Scanning
(Jan 16, 2016, 18:00) (0 talkbacks)

LinuxInsider: Adding a containerized scanner to a Docker host enables automatic identification of known open source vulnerabilities in all layers of containers on that host

How to Start/Stop and Enable/Disable FirewallD and Iptables Firewall in Linux
(Jan 15, 2016, 14:00) (0 talkbacks)

 tecmint: In this article, we will discuss how to stop, start, disabe, enable and mask FirewallD and Iptables firewall service on almost all Linux distributions.

How to install and configure vsftpd with TLS on Debian 8 (Jessie)
(Jan 15, 2016, 11:31) (0 talkbacks)

This article explains how to set up a TLS enabled vsftpd server on a Debian 8 server and how to access the FTP server with FileZilla.

How To Patch and Protect OpenSSH Client Vulnerability CVE-0216-0777 and CVE-0216-0778
(Jan 15, 2016, 10:23) (0 talkbacks)

A serious security problem has been found and patched in the OpenSSH software.

How to Encrypt your Data with EncFS on Debian 8 (Jessie)
(Jan 15, 2016, 05:00) (0 talkbacks)

 HowToForge: EncFS provides an encrypted filesystem in user-space.

OpenSSH Flaw Exposes Linux Servers to Roaming Risk
(Jan 14, 2016, 19:39) (0 talkbacks)

eWEEK: The open-source remote access project issues an update to patch a flaw that could enable an attacker to get access to sensitive data.

Mozilla Discontinues Persona Password Security Service
(Jan 13, 2016, 19:11) (0 talkbacks)

eWEEK: Two years after giving it up to be a community project, Mozilla is now shutting its Persona Web authentication operations down entirely, due to low adoption.

Receive news via our XML/RSS feed

LinuxToday Security Archives