Linux 4.15 rc8
Linux Today - Security
Top 20 OpenSSH Server Best Security Practices
(Jan 19, 2018, 19:00) (0 talkbacks)
nixcraft: OpenSSH is the implementation of the SSH protocol.
Securing the Linux filesystem with Tripwire
(Jan 19, 2018, 12:00) (0 talkbacks)
opensource.com: Linux integrity checker notifies you if malware or other events make changes to your filesystem.
Linux Lite Developer Creates Automated Spectre/Meltdown Checker for Linux OSes
(Jan 18, 2018, 13:00) (0 talkbacks)
softpedia: Jerry Bezencon, the creator of the Linux Lite distribution, decided to make it easy for users to use the spectre-meltdown-checker script
SPARTA - Network Penetration Testing GUI Toolkit
(Jan 18, 2018, 06:00) (0 talkbacks)
SPARTA is GUI application developed with python and inbuild Network Penetration Testing Kali Linux tool.
General Data Protection Regulation and personal data in web server logs
(Jan 17, 2018, 19:00) (0 talkbacks)
NGINX and Apache web server logs contain IP addresses, which are now defined as personal data and require special consideration under the EU's new data protection regulation.
Why DevSecOps matters to IT leaders
(Jan 17, 2018, 15:00) (0 talkbacks)
EnterprisersProject: DevSecOps what it means and why it's important to IT leaders who have embraced a culture of DevOps
Facebook Awards Security Researchers $880,000 in 2017 Bug Bounties
(Jan 17, 2018, 06:00) (0 talkbacks)
eWEEK: The average reward payout in 2017 was $1,900, up from $1,675 in 2016 as Facebook continues to reward researchers for responsibly disclosing security vulnerabilities.
How to Show Asterisks While Typing Sudo Password in Linux
(Jan 16, 2018, 05:00) (0 talkbacks)
Most applications normally display a feedback using asterisks (*******) when a user is typing a password
Canonical Fixes Ubuntu 16.04 LTS Regression Causing Boot Failure on Some PCs
(Jan 11, 2018, 11:00) (0 talkbacks)
Some users running Ubuntu 16.04 LTS immediately reported that their systems failed to boot after installing the new kernel update.
Setup A Private Server With ownCloud, Kopano And Let???s Encrypt On UCS
(Jan 11, 2018, 06:00) (0 talkbacks)
ostechnix: This comprehensive guide describes how to setup your own private server with ownCloud, Kopano and Let's Encrypt on Univention Corporate Server.
Jumble Password - Create Unique IDs and Passwords on Linux
(Jan 10, 2018, 19:00) (0 talkbacks)
Jumble Password is an electron-based utility app that you can use to create unique password combinations using your date of birth and name.
Greg Kroah-Hartman on Meltdown and Spectre Bugs: Go Update Your Linux Kernel
(Jan 10, 2018, 12:00) (0 talkbacks)
softpedia: Greg Kroah-Hartman urges all users to update to the latest Linux kernel versions immediately, but it looks like the work isn't over yet and more updates are coming.
Technologies That Secure the Home, WiFi and More Debut at CES 2018
(Jan 10, 2018, 07:00) (0 talkbacks)
eWEEK: Amid the avalanche of new TVs, connected cars and voice-powered devices, multiple new security technologies were announced at CES 2018 (Linux-powered!)
The Linux vs Meltdown and Spectre battle continues
(Jan 09, 2018, 23:00) (0 talkbacks)
ZDnet: Fixing Meltdown and Spectre will take Linux -- and all other operating systems -- programmers a long, long time.
Intel CEO Addresses Meltdown and Spectre CPU Flaws at CES 2018
(Jan 09, 2018, 14:00) (0 talkbacks)
eWEEK: Intel CEO Brian Krzanich used the opening of his Consumer Electronics Show keynote in Las Vegas on Jan. 8 to publicly comment on the recently disclosed Meltdown and Spectre security vulnerabilities that impact the majority of the world's CPUs.
Fix 'The plain HTTP request was sent to HTTPS port' Error in Nginx
(Jan 09, 2018, 10:00) (0 talkbacks)
Tecmint: This error normally arises when you try to configure Nginx to handle both HTTP and HTTPS requests.
Benchmarking Linux With The Retpoline Patches For Spectre
(Jan 09, 2018, 07:00) (0 talkbacks)
Phoronix: While the Kernel Page Table Isolation (KPTI) patches were quick to land in the mainline Linux kernel for addressing the Meltdown CPU vulnerability, the "Retpoline" patches are still being worked on
Critical CSRF Security Vulnerability in phpMyAdmin Database Tool Patched
(Jan 08, 2018, 11:00) (0 talkbacks)
How Hackers Can Read Your Websites' Passwords Using Meltdown And Spectre [With Solution]
(Jan 08, 2018, 08:00) (0 talkbacks)
Everyone is talking about Meltdown and Spectre, the two security flaws found in Intel, AMD(less vulnerable) and ARM CPUs.
Why Raspberry Pi isn’t vulnerable to Spectre or Meltdown
(Jan 06, 2018, 06:00) (0 talkbacks)
Eben Upton: The lack of speculation in the ARM1176, Cortex-A7, and Cortex-A53 cores used in Raspberry Pi render us immune to attacks of the sort.
How To Display Asterisks When You Type Password In terminal
(Jan 05, 2018, 14:00) (0 talkbacks)
ostechnix: Display Asterisks When You Type Password In terminal.
Allowing OCSP stapling in Apache Web Server with SELinux policies
(Jan 05, 2018, 12:00) (0 talkbacks)
Meltdown and Spectre CPU Flaws Expose Modern Systems to Risk
(Jan 04, 2018, 10:00) (0 talkbacks)
eWEEK: Critical CPU flaws are revealed by security researchers that impact most modern CPUs. Patches are now available, though some experts warn that new hardware might be needed.
Twistlock 2.3 Advances Container Security with Serverless Support
(Jan 03, 2018, 10:00) (0 talkbacks)
eWEEK: Container security vendor adds new capabilities including per-layer vulnerability analysis and an improved Cloud Native App Firewall.
SELinux could have saved Equifax: Hardening Apache Struts with SELinux
(Jan 02, 2018, 14:00) (0 talkbacks)
If you're going to place Apache Struts directly facing the internet and with reachable sensitive data, like Equifax did, here is an idea: Enable SELinux!
Linode and Vultr no longer disables SELinux by default
(Jan 02, 2018, 13:00) (0 talkbacks)
One of Fedora's differentiating features compared to other Linux distributions is its well-maintained and low-friction default SELinux policy set.
The mysterious case of the Linux Page Table Isolation patches
(Jan 02, 2018, 07:00) (0 talkbacks)
tl;dr: there is presently an embargoed security bug impacting apparently all contemporary CPU architectures that implement virtual memory, requiring hardware changes to fully resolve.
Debian and the EU GDPR privacy regulation
(Dec 30, 2017, 14:00) (0 talkbacks)
GDPR is a new EU regulation for privacy. The name is short for "General Data Protection Regulation" and it covers all organisations that handle personal data of EU citizens and EU residents.
How to Find All Failed SSH login Attempts in Linux
(Dec 29, 2017, 09:00) (0 talkbacks)
Tecmint: Each attempt to login to SSH server is tracked and recorded into a log file by the rsyslog daemon in Linux.
How to Disable SSH Root Login in Linux
(Dec 28, 2017, 12:00) (0 talkbacks)
Tecmint: The root account is often the most targeted account by crackers via SSH under Linux.
Tutorial on how to create a paper and digital offline Bitcoin wallet with Linux
(Dec 27, 2017, 15:00) (0 talkbacks)
The objective is to create an offline digital and paper bitcoin wallet using Linux operating system, VirtualBox and Electrum Bitcoin wallet.
Important Debian Stretch Linux Kernel Security Update Patches 18 Vulnerabilities
(Dec 27, 2017, 08:00) (0 talkbacks)
Issues have been found in Linux kernel's DCCP implementation
3 Step procedure to Setup ubuntu firewall
(Dec 27, 2017, 05:00) (0 talkbacks)
Having a firewall provides more security to your system.
Building a Hacking Kit with Raspberry Pi and Kali Linux
(Dec 26, 2017, 14:00) (0 talkbacks)
The Raspberry Pi has some unique features that are very powerful and easily accessible for a Hacking Kit.
18 Cyber-Security Trends Organizations Need to Brace for in 2018
(Dec 24, 2017, 10:00) (0 talkbacks)
eWEEK: Looking into the Security Crystal Ball for 2018, security experts predict key trends
Guardian Project Debuts Haven Security App to Protect Personal Privacy
(Dec 22, 2017, 08:00) (0 talkbacks)
eWEEK: The Freedom of the Press Foundation joins with The Guardian Project to develop the Haven Android app that can help to protect personal spaces, by using sensors on Android device to detect potential intruders.