Linux Today - Security

HowToGeek: SSH offers more than just a secure, remote terminal environment

Linux Magazine: For its size, fail2ban, a utility that scans logfiles and bans suspicious IP addresses, punches well above its weight.

eSecurityPlanet: Recent reports from Panda Security, Trend Micro, Websense, Verizon, Sophos, Symantec, Group-IB and Bit9 have shed light on the current state of malware, phishing, and other attack methods.

 Datamation: Ask any long-term Linux enthusiast, and they'll be the first to tell you there isn't much you can do with another operating system that you can't do with Linux.

 HowToForge: This document describes how to add WiKID two-factor authentication to Apache 2.2.22 using mod_auth_radius on Ubuntu 12.04.

ZDnet: An essential Linux, Unix, and Mac OS X administration tool had a major security problem. It has been fixed, and now you need to patch your system ASAP.

eSecurityPlanet: There are three methods for "sanitizing" a hard drive

 Linuxaria: OpenVAS is a framework that includes services and tools for scanning and the complete managment of vulnerability.

eHacking: Even with numerous meterpreter scripts available, you are free to write and to create your own script that is best suited to your work.

eSecurityPlanet: The big problem Bromium is working on is called Byzantine Fault Tolerance. In computer science, this concept describes a system that is able to survive multiple and arbitrary forms of attack or failure of its component parts.

 Begin Linux: An object in Nagios is a unit of information, such as a host, service, contact, group, timeperiod, etc

Linux Magazine: Storing sensitive data like passwords and confidential information on your Android device unprotected is risky to say the least. Fortunately, the Secret Space Encryptor (SSE) app can take good care of your precious data.

InternetNews: From the 'I miss Mozilla Weave' files

eSecurityplanet: Cloud provider Rackspace seeks to dispel the myth that multi-tenancy makes public clouds an inherent security risk.

IT Pro: Malware authors are setting up alternative app marketplaces to defraud unwitting Android phone users, according to anti-virus software vendor AVAST.

HowtoForge: This tutorial shows how you can use EncFS on Debian Squeeze/Ubuntu 11.10 to encrypt your data.

eSecurityPlanet: Don't let a lost or stolen laptop put your business at risk. Here's how to prevent a data breach by encrypting your organization's hard drives.

HowtoForge: This document describes how to install a Postfix mail server that is based on virtual users and domains, i.e. users and domains that are in a MySQL database.

Webopedia: Collateral hacking refers to when a company’s critical data is compromised as a result of a third party in possession of the company’s sensitive data being hacked.

IT World: On most Linux systems, you can use PAM (the "pluggable authentication module") to enforce password complexity.

Full Disclosure: I know there's not much new here, but I am amazed that Ubuntu, Linux Mint and friends ship with a Guest account present and enabled.

 eSecurityPlanet: To beat a hacker, you have to think like one. Plus, a CEH certification can give your IT security career a big boost.

Softpedia: The security flaws can be fixed if you upgrade your system(s) to the linux-image-3.0.0-19 (3.0.0-19.33) package(s).

Garron: Using Nginx, PHP-FPM, APC and Varnish, there is no need to use WP Total Cache, or any other equivalent.

eSecurityPlanet: China was responsible for 13 percent of total attack traffic overall, an increase from 8.6 percent in the previous quarter.

eSecurityPlanet: New data shows familiar trends of good news and bad news, with some surprises.

Newsfactor: An anonymous hacker is claiming credit for stealing more than 1 terabyte of confidential source code from VMware.

 eSecurityPlanet: Big customers force IBM to finally support Snort signatures

eSecurityPlanet: WordPress is a popular target for hackers, but there are steps you can take to make your installation more secure.

eSecurityPlanet: According to HP's new Top Cyber Security Risks Report for 2011, there was a 19.5 percent decrease in the number of new publicly reported vulnerabilities over the course of last year.

Help Net Security: SPYRUS announced a new version of Secure Pocket Drive that allows end users to build and distribute their own secure bootable Linux OS image.

Dark Reading: "The U.S. Department of Energy's Pacific Northwest National Laboratory is offering an open-source version of a homegrown tool that gathers an additional layer of intelligence during an attack."

eSecurityPlanet: Apple got tagged this week, because their Java release is always behind Oracle's - thanks to OpenJDK that's about to change.

Dark Reading: "The open-source Samba group this week released an update to the Samba program to fix a bug that could allow an attacker to remotely acquire root access to the targeted server."

LinuxJournal: Traditionally on any desktop environment I've used, I would configure a Ctrl-Alt L keybinding that locked my screen.

LinuxBSDos: I hope that I am wrong, but your new Ubuntu system could be used to spy on you.

eSecurityPlanet: Latest browser update includes a Flash fix that no other platform will receive.

eSecurityPlanet: CEO provides color on what happened and why consumers aren't necessarily at risk.

PC World: "Although some open source groups, such as OpenBSD, are 'quite good' in how they manage vulnerability disclosures, says Williams, the vast majority handle these kinds of security issues in haphazard fashion and with uncertain disclosure methods."

InternetNews: From the 'Is it FUD?' files: