Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Link to Us
Linux Jobs

Most Read Stories

Editor's Picks

Shall We Fork Debian?
DebianFork: We are Veteran Unix Admins and we are concerned about what is happening to Debian GNU/Linux to the point of considering a fork of the project. (Oct 20, 2014)

More on LinuxToday

Linux Today - Security

5 Deadly Linux Commands You Should Never Run
(Oct 22, 2014, 06:00) (0 talkbacks)

Epoch Times: As a Linux user, you probably have searched online for articles and tutorials that show you how to use the terminal to run some commands

Tor GUI `SelekTOR` Sees New Major Release
(Oct 22, 2014, 05:00) (0 talkbacks)

webupd8: SelekTOR, an open source Java-based GUI front-end for Tor

PHP 5.6.2 and 5.4.34 Update for Critical Security Flaws
(Oct 20, 2014, 11:00) (0 talkbacks)

InternetNews: No Sandworms, Heart-bleeds or POODLEs here but don't let the lack of a fancy marketing name fool you - this is serious

Kickstarter Suspends Anonabox Security Appliance Project
(Oct 18, 2014, 18:00) (0 talkbacks)

eWEEK: The Anonabox episode serves to highlight the simple fact that there is a great hunger in the marketplace for easily deployed privacy solutions.

Tails 1.2 is out
(Oct 17, 2014, 19:00) (0 talkbacks)

This release fixes numerous security issues and all users must upgrade as soon as possible.

Drupal releases patch for severe SQL injection flaw
(Oct 17, 2014, 06:00) (0 talkbacks)

 NetworkWorld: Drupal has released a patch for a highly critical flaw in its content management system, which could allow rogue code to run.

Tiny $51 Tor router runs OpenWRT
(Oct 15, 2014, 11:00) (0 talkbacks)

 LinuxGizmos: A Kickstarter project called Anonabox offers a tiny Tor router for anonymous Internet use, running OpenWRT Linux on a MediaTek MT7620n WiFi chipset.

POODLE Flaw Found in Legacy SSL 3.0 Encryption
(Oct 15, 2014, 08:00) (0 talkbacks)

eWEEK: A vulnerability in an older Secure Sockets Layer version could enable an attacker to decipher encrypted communications, Google disclosed in a research paper.

CAINE Linux Distribution Helps Investigators With Forensic Analysis
(Oct 14, 2014, 06:00) (0 talkbacks)

eWEEK: The CAINE 6.0 "Dark Matter" operating system was first released on Oct. 7 and includes new and updated applications to help forensics investigators.

How To Configure SSL In Tomcat
(Oct 13, 2014, 15:00) (0 talkbacks)

 website-security: Use SSL to secure the communication to and from your Tomcat servlet container.

VeraCrypt a Worthy TrueCrypt Alternative
(Oct 13, 2014, 12:00) (0 talkbacks)

 eSecurityPlanet: A fork of TrueCrypt's code, VeraCrypt strengthens the open source encryption software's transformation process and addresses other weaknesses.

How to replace Shorewall with FirewallD on ROSA Desktop Fresh R4
(Oct 13, 2014, 08:00) (5 talkbacks)

 LinuxBSDos: This tutorial show how to replace it with FirewallD, a firewall application with support for network zones (also IP zones).

How to configure peer-to-peer VPN on Linux
(Oct 09, 2014, 13:00) (0 talkbacks)

 xmodulo: A traditional VPN (e.g., OpenVPN, PPTP) is composed of a VPN server and one or more VPN clients connected to the server.

Google Patches Chrome for 159 Security Vulnerabilities
(Oct 08, 2014, 14:00) (0 talkbacks)

eWEEK: As part of the security updates, Google is paying out $75,633.70 in bug bounties to a number of security researchers for properly reporting issues to Google.

Announce: OpenSSH 6.7 released
(Oct 08, 2014, 09:00) (0 talkbacks)
OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support.

The Internet is one step closer to universal HTTPS
(Oct 07, 2014, 13:00) (1 talkbacks)

 NetworkWorld: The Electronic Frontier Foundation (EFF), which is on the front lines for protecting digital freedom and preventing censorship of the web, applauded content delivery network provider CloudFlare for the company's recent announcement that it will offer encrypted HTTPs as its default setting for any website it hosts.

How to configure a host intrusion detection system on CentOS
(Oct 07, 2014, 07:00) (0 talkbacks)

 xmodulo: One of the first safety measures that any sysadmin may want to implement in their production servers is a mechanism to detect file tampering

Configure No Password SSH Keys Authentication with PuTTY on Linux Servers
(Oct 06, 2014, 14:00) (0 talkbacks)

 tecmint: This article will show you how you can generate and use SSH Keys from Windows based platforms using Putty client to automatically perform remote logins on Linux servers without the need to enter passwords.

How to Remove a Password from a PDF File in Linux
(Oct 06, 2014, 13:00) (0 talkbacks)

HowToGeek: The PDF Toolkit is a handy command line tool for manipulating PDF files.

OpenVPN + Squid3 Transparent Proxying on Debian Wheezy HowTo
(Oct 06, 2014, 05:00) (0 talkbacks)

 Iodigitalsec: A step by step HOWTO covering Squid3 transparent proxying on an OpenVPN server.

Google Threatened With $100 Million Lawsuit Over Hacked Celebrity Pictures -
(Oct 03, 2014, 14:00) (2 talkbacks)

eWEEK The impact of the hacked Apple iCloud images spreads to Google, but is the search giant actually responsible?

Shellshock Vulnerability Spreads to NAS Devices
(Oct 02, 2014, 19:00) (2 talkbacks)

eWEEK: Shellshock is getting NASty. The vulnerability is being exploited in network-attached storage devices, FireEye reports.

Google Increases Bug Bounty Payouts
(Oct 02, 2014, 07:00) (0 talkbacks)

eWEEK: Finding bugs isn't an act of charity; it's a time-consuming process that researchers should be rewarded for.

Encrypt Your Dog (Mutt and GPG)
(Oct 02, 2014, 06:00) (0 talkbacks)

LinuxJournal: For those of you who aren't acquainted with it, Mutt is a command-line mail client (some would say Mail User Agent or MUA) that is highly configurable and uses vi key bindings that so many of us know and love.

The Xen Vulnerability That Rebooted the Public Cloud
(Oct 01, 2014, 23:00) (0 talkbacks)

eWEEK: By getting all the major cloud providers fixed before the flaw was publicly disclosed, the Xen Project likely saved the IT world from a major security nightmare.

An Open Source Solution to Shellshock
(Oct 01, 2014, 19:00) (0 talkbacks)

eSecurityPlanet: An open source tool can mitigate risks associated with Bash shell attack.

Linux Top 3: Fedora 21 Goes Alpha, Qubes Hits Version 2 and OpenElec 4.2
(Sep 30, 2014, 14:00) (0 talkbacks)

LinuxPlanet: 2014 has been a strange year for Fedora and one in which the Red Hat community distribution has yet to release a single milestone update.

Firefox, Google Chrome Updates Fix BERserk Crypto Flaw
(Sep 29, 2014, 23:00) (0 talkbacks)

eWEEK: The NSS issue, identified as CVE-2014-1568, is a vulnerability that could enable a digital signature forgery attack. -

What does SELinux do to contain the the bash exploit?
(Sep 29, 2014, 09:00) (0 talkbacks)

DanWalsh: Now this is a horrible exploit but as you can see SELinux would probably have protected a lot/most of your valuable data on your machine.

Free Software Foundation statement on the GNU Bash "shellshock" vulnerability
(Sep 29, 2014, 05:00) (2 talkbacks)

GNU Bash has been widely adopted because it is a free (as in freedom), reliable, and featureful shell.

Shellshock: Better 'bash' patches now available
(Sep 28, 2014, 10:00) (0 talkbacks)

 ZDnet: The patches are ready. Now it's up to you to put them into place as quickly as possible.

Shellshock: How to protect your Unix, Linux and Mac servers
(Sep 26, 2014, 14:00) (3 talkbacks)

 ZDnet: The Unix/Linux Bash security hole can be deadly to your servers.

Unix/Linux Bash: Critical security hole uncovered
(Sep 24, 2014, 15:00) (3 talkbacks)

 ZDnet: The popular Linux and Unix shell has a serious security problem that means real trouble for many web servers.

What happens when you put slow loris DOS attack on steroid?
(Sep 24, 2014, 11:00) (0 talkbacks)

 Darkmoreops: SlowHTTPTest is a highly configurable tool that simulates some Application Layer Denial of Service attacks

Former VMware CTO Now a General Catalyst for Investing in Enterprise Technology
(Sep 23, 2014, 23:00) (0 talkbacks)

eWEEK: Steve Herrod, a former VMware CTO and now a venture capitalist, discusses what he's investing in today and why security is his top priority.

Receive news via our XML/RSS feed

LinuxToday Security Archives