Linux 5.0 rc1
Linux 4.20 Kernel Release Caps a Busy 2018 for Linux
Linux Today - Security
Kubernetes security: 4 tips to manage risks
(Jan 17, 2019, 10:00) (0 talkbacks)
EnterprisersProject: Use these strategies to avoid missteps in work with containers and orchestration
Oracle Patches 284 Vulnerabilities In January Critical Patch Update
(Jan 16, 2019, 10:00) (0 talkbacks)
eWEEK: Oracle releases its first Critical Patch Update (CPU) of 2019, with vulnerabilities in Fusion Middleware leading the way.
Turn a Raspberry Pi 3B+ into a PriTunl VPN
(Jan 16, 2019, 08:00) (0 talkbacks)
opensource.com: Turn a Raspberry Pi 3B+ into a PriTunl VPN
Synopsys Improves Coverity Static Application Security Testing
(Jan 15, 2019, 15:00) (0 talkbacks)
eWEEK: New version of Coverity Static Application Security Testing provides broader testing capabilities to help organizations find vulnerabilities in code.
Open-Source Metasploit Framework 5.0 Improves Security Testing
(Jan 14, 2019, 19:00) (0 talkbacks)
eWEEK: The first major milestone update to the open-source Metasploit Framework since 2011 is now available, making it easier for security researchers to test cyber-security defenses against exploits.
Researchers Reveal Play With Docker Security Vulnerability
(Jan 14, 2019, 12:00) (0 talkbacks)
eWEEK: Researchers from CyberArk discovered a way to hack the popular Play-with-Docker training site, escaping the confines of the container isolation boundary, revealing misconfigurations that have now been fixed.
New Linux Systemd security holes uncovered
(Jan 13, 2019, 18:00) (0 talkbacks)
ZDnet: Systemd, the popular but controversial Linux system and service manager, has three recently discovered security holes.
What is DevSecOps?
(Jan 12, 2019, 18:00) (0 talkbacks)
The journey to DevSecOps begins with empowerment, enablement, and education.
7 Tips for Container and Kubernetes Security
(Jan 10, 2019, 19:00) (0 talkbacks)
eSecurityPlanet: Simply deploying containers with a managed service isn't enough. Learn top tips to keep Kubernetes container deployments safe and secure.
Mozilla Firefox 65 Promises Enhanced Security for Linux, Android, and macOS
(Jan 09, 2019, 11:00) (0 talkbacks)
To help ensure the security of our digital lives, Mozilla is adding an extra layer of security to the Linux, Android, and macOS platforms by implementing an enhanced stack smashing protection in Firefox 65
How ASLR protects Linux systems from buffer overflow attacks
(Jan 09, 2019, 08:00) (0 talkbacks)
NetworkWorld: ASLR is a memory exploitation mitigation technique used on both Linux and Windows systems.
Buttercup - A Free, Secure And Cross-platform Password Manager
(Jan 08, 2019, 15:00) (0 talkbacks)
ostechnix: Buttercup is a free, open source, secure and cross-platform password manager written using NodeJS.
Tiger - The Unix Security Audit and Intrusion Detection Tool
(Jan 08, 2019, 10:00) (0 talkbacks)
Tecmint: Tiger is a free, open source collections of shell scripts for security audit and host intrusion detection, for Unix-like systems such as Linux
Kodachi Builds Privacy Tunnel for Linux
(Jan 07, 2019, 23:00) (0 talkbacks)
LinuxInsider: Not all Linux distros are created with the same degree of attention to security and privacy control.
Protego Labs Boosts Serverless Security With Open-Source DVSA Project
(Jan 07, 2019, 14:00) (0 talkbacks)
eWEEK: Serverless computing offers new opportunities for cloud efficiency, but it also comes with new risks that Protego Labs is looking to help enterprises better understand.
Using the SSH Config File
(Jan 07, 2019, 13:00) (0 talkbacks)
Linuxize: Learn what's important to remember for SSH connections
How to Encrypt Your DNS With DNSCrypt on Ubuntu and Debian
(Jan 05, 2019, 06:00) (0 talkbacks)
Even if you encrypt your traffic with HTTPS or even use a VPN, in some cases, your DNS traffic remains open and readily readable to your ISP and the rest of the world.
Tmate - Securely Share SSH Terminal Session with Linux Users
(Jan 04, 2019, 12:00) (0 talkbacks)
Tecmint: tmate is a clone of tmux (terminal multiplexer) that provides a secure, instant and easy-to-use terminal sharing solution over an SSH connection.
Linux Servers Appear Most Affected by IPMI Enabled JungleSec Ransomware Attacks
(Jan 03, 2019, 23:00) (0 talkbacks)
ITprotoday: Linux servers top the list of victims to a ransomware attack that seems to take advantage of poorly configured IPMI devices.
CastHack Exposes Google Chromecast Device Users to Risk
(Jan 03, 2019, 09:00) (0 talkbacks)
eWEEK: Hackers post an un-authorized message on vulnerable Google Chromecast devices, revealing a flaw that users can easily remediate.
USB Type-C Set To Become More Secure with Authentication Standard
(Jan 02, 2019, 08:00) (0 talkbacks)
eWEEK: USB Type-C authentication standard is moving forward in an effort to help protect systems against malicious USB devices.
Looking Back at the Top Cyber-Security Incidents of 2018
(Dec 31, 2018, 10:00) (0 talkbacks)
eWEEK: 2018 was another year of challenges for IT security professionals with no shortage of major vulnerabilities, privacy concerns and data breaches, that will continue to inform decisions and policies into 2019.
10 Top Container and Kubernetes Security Vendors
(Dec 27, 2018, 10:00) (0 talkbacks)
eSecurityPlanet: Containers can get applications running quickly, but that convenience comes with a number of security concerns. Here are the container security vendors that can help.
How To Install OpenLDAP Server for Centralized Authentication
(Dec 21, 2018, 07:00) (0 talkbacks)
Tecmint: Lightweight Directory Access Protocol (LDAP in short) is an industry standard, lightweight, widely used set of protocols for accessing directory services.
How to Enable TLS 1.3 in Nginx
(Dec 20, 2018, 11:00) (0 talkbacks)
HowToForge: Transport Layer Security (TLS) 1.3 is the latest version of the Transport Layer Security (TLS) protocol, published as an IETF standard in RFC 8446 in August 2018.
6 tips and tricks for using KeePassX to secure your passwords
(Dec 18, 2018, 09:00) (0 talkbacks)
Get more out of your password manager by following these best practices.
How to secure Apache with Let's Encrypt Certificates on RHEL 8
(Dec 17, 2018, 13:00) (0 talkbacks)
Nixcraft: RHEL 8 supports Application-Layer Protocol Negotiation (ALPN) and HTTP/2 out of the box.
How Shopify Fixed A Kubernetes Vulnerability, Thanks To A Bug Bounty
(Dec 17, 2018, 11:00) (0 talkbacks)
eWEEK: At KubeCon + CloudNativeCon NA 2018, Shopify and Google detail a Kubernetes security incident that was reported by a bug bounty security researcher that was quickly remediated before any harm was done.