Linux Today - Security

SELinux (Security Enhanced Linux) is a Linux kernel security module that allows administrators and users more control over access controls.

itprotoday: Not that we needed it, but there's more evidence today that Intel has been playing fast and loose with security in order to stay ahead of the fast-chip competition.

eWEEK: At Defcon, security researchers revealed 37 new vulnerabilities in tracking apps that could have enabled attackers to steal information and track users.

eSecurityPlanet: At Black Hat USA, Netflix engineer explains how the streaming media giant uses cloud logs to spot security issues.

Improve your skills managing and using Security-Enhanced Linux with this helpful guide.

Tecmint: The tools presented in this article are created for these security scans and they are able to identity Virus, Malwares, Rootkits, and Malicious behaviors. Y

HowToForge: Strongswan is an open source multiplatform IPSec implementation.

Discovered and reported by security researcher Juha-Matti Tilli, the security flaw (CVE-2018-5390) could allow a remote attacker to cause a denial of service on affected machines

 EnterprisersProject: As you build a DevSecOps culture, use these priorities to close the gap between developers and security pros

HowToForge: Suricata is an IDS / IPS capable of using Emerging Threats and VRT rulesets like Snort and Sagan.

MakeTechEasier: Within your Linux system, there's a file called 'sudoers'  which permits or denies users from gaining super-user access and holds some special preferences for sudo.

Consisting of the 2018-08-01 and 2018-08-05 security patch levels, the Android Security Patch for August 2018 addresses a total of 43 security vulnerability across several components

ZDnet: Facebook open-sources its Fizz library for the next-generation Transport Layer Security protocol.

eSecurityPlanet: Security researchers, vendors and IT pros are headed for Las Vegas for Black Hat USA 2018. Here are 10 talks that shouldn't be missed.

Learn how to generate an SSH key pair by using the ssh-keygen command and how to configure the SSH Daemon to only allow logins by key.

NetworkWorld: Commands for reliably encrypting files on Linux systems are easy to come by and quite versatile.

Get step-by-step instructions for getting up and running with Standard Notes.

Linuxize: Learn how to secure your Apache web server with Let's Encrypt using the certbot tool on Ubuntu 18.04.

The most prominent new feature in IPFire 2.21 Core Update 122 is the Linux 4.14.50 kernel, which contains mitigations for both the Meltdown and Spectre security vulnerabilities

TechRepublic: EasySSH offers a convenient way to connect to your remote Linux servers. Even with a couple of caveats, it can make your admin life a bit easier.

The Kata Containers project announces the availability of their Kata Containers virtual machine software in Canonical's Snap Store

eWEEK: Researchers have discovered a method that could potentially enable an attacker to use the Spectre CPU vulnerabilities over a remote network connection.

Kubernetes security has come a long way since the project's inception, but still contains some gotchas.

LinuxJournal: it's very cool that Intel is consulting with the kernel people about these sorts of hardware decisions.

HowToForge: This tutorial will show you step by step how to encrypt a full drive with Cryptsetup on Debian 9.4 or Ubuntu 18.04 LTS (Bionic Beaver).

Linuxize: FirewallD is a complete firewall solution that manages the system's iptables rules and provides a D-Bus interface for operating on them.

Earlier this month, on July 2, Canonical released a Linux kernel security update for Ubuntu 18.04 LTS (Bionic Beaver) users, addressing a total of six security vulnerabilities, one of which introduced a regression also causing boot failures

Anyone can snoop your unencrypted DNS traffic even though connected to privacy and security enhanced HTTPS based web service.

The passwd command is used to set or change user account passwords and sometimes it'll thow out a mysterious error.

LinuxConfig: Setting up a firewall can be a huge pain.

EncryptPad is a simple, free and open source text editor that encrypts saved text files and allows protecting them with passwords, key files, or both

Tecmint: Osquery is a free open source, powerful and cross-platform SQL-based operating system instrumentation, monitoring, and analytics framework for Linux

2DayGeek: Two easy ways to force user to change their password on next login in Linux.

ZDnet: IBM Research has created a new way to measure software security

eWEEK: ustin Cappos, assistant professor at New York University and founder of The Update Framework (TUF) open-source project provides insight into the process of securing software updates.