The Linux Foundation and allies will pay developers to help secure Linux and open-source software programs.
The post Get Paid to Improve Linux and Open-Source Security appeared first on Linux Today.
The biggest change in the IPFire 2.27 Core Update 159 release is a new major kernel update as the firewall/router distribution is now powered by the long-term supported Linux 5.10 LTS series, which will receive updates for five years, until December 2026. As expected, the new kernel version brings better hardware support with its many […]
The new Ubuntu Linux security patches are available for the Ubuntu 21.04 (Hirsute Hippo), Ubuntu 20.04 LTS (Focal Fossa), and Ubuntu 18.04 LTS (Bionic Beaver) operating system series, and addresses three security issues related to the Bluetooth subsystem and NFC implementation affecting all three releases. These are CVE-2021-3564 and CVE-2021-3573, two flaws discovered in the […]
Tribler is a free and open-source file-sharing app for Linux, macOS, and Windows. It adds something unique to the BitTorrent peer-to-peer protocol: onion routing. Onion routing, best known from the Tor Browser project, is a network routing scheme that relays connections via multiple proxies. Tribler encrypts your connections in layers so that each relay proxy […]
SIEM solutions can be expensive and difficult to manage, so one company built its own – and is pleased with the results. At last week’s Black Hat USA, NYC-based financial technology firm Two Sigma Investments took the virtual stage to outline why their existing solution didn’t cut it, the work needed to create an in-house security […]
SUSE Linux Enterprise Server 15 SP2 is now EAL 4+ level certified for IBM Z, Arm and x86-64 architectures, signifying compliance with the most demanding security requirements for mission-critical infrastructure.
SUSE’s Common Criteria EAL 4+ software s…
Managing network traffic is one of the toughest jobs system administrators have to deal with. They must configure the firewall in such a way that it will meet the system’s and users’ requirements for both incoming and outgoing connections, …
A vulnerability (CVE-2021-28372) in the SDK that allows IoT devices to use ThroughTek’s Kalay P2P cloud platform could be exploited to remotely compromise and control them, Mandiant researchers have discovered. Further attacks are possible depending on the functionality exposed by a device. Due to how the Kalay protocol is integrated by original equipment manufacturers (OEMs) […]
For everything from minor network infractions to devastating cyberattacks and data privacy troubles, digital forensics software can help clean up the mess and get to the root of what happened. Since the inception of data forensics almost forty years ago, methods for investigating security events have given way to a market of vendors and tools offering […]
In the following tutorial, you will learn how to install ModSecurity with Nginx on Ubuntu 20.04. ModSecurity, often referred to as Modsec, is a free, open-source web application firewall (WAF). ModSecurity was created as a module for the Apache HTTP Server. However, since its early days, the WAF has grown and now covers an array of HyperText Transfer Protocol request and response […]
Rkhunter stands for “Rootkit Hunter” is a free and open-source vulnerability scanner for Linux operating systems. In this tutorial, we will explain, how to install and use Rkhunter on Debian 10 server.
The post Scan a Debian Server for Rootkits with Rk…
Website security is now one of the greatest concerns across most organizations and users alike in the face of growing cyber threats. There are several ways of securing your website. One of the primary ways of implementing some basic protection against hackers is to encrypt your site using an SSL/TLS certificate. Let’s look at how […]
Open source security has been a big focus of this week’s Black Hat conference, but no open source security initiative is bolder than the one proffered by the Open Source Security Foundation (OpenSSF). Amid discussions on the security of open source technologies like eBPF and Hadoop, OpenSSF speakers Jennifer Fernick, SVP and head of global […]
Two of the largest government security agencies are laying out the key cyberthreats to Kubernetes, the popular platform for orchestrating and managing containers, and ways to harden the open-source tool against attacks. In a 52-page report released this week, the National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) noted the advantages to enterprises […]
Data encryption is a must-have feature in today’s world of cybersecurity. It allows you to encode your data making it unintelligible to someone who doesn’t have the authorized access. To be more secure online, it might be a good idea to opt for software that comes with this useful feature by default. In this article, […]
Administrators overseeing the Python Package Index (PyPI) in recent days found themselves responding to vulnerabilities found in the repository of open source software, the latest security problems to hit the Python community. Most recently, the PyPI group sent out fixes for three vulnerabilities that were discovered by security researcher RyotaK and published on his blog. Two […]
Once you learn top ethical hacking terminologies, it’s time to learn how to protect your online identity. These days it is one of the biggest challenges to stay anonymous while browsing the web. In this article, I will mention ways to stay anonymous on…
Once you learn top ethical hacking terminologies, it’s time to learn how to protect your online identity. These days it is one of the biggest challenges to stay anonymous while browsing the web. In this article, I will mention ways to stay anonymous online. I have discussed this topic in…
Whether you want to hide your identity from prying eyes or access content blocked by geo-restrictions, running a WireGuard server is an excellent solution to run your own VPN server. If you’ve got five minutes, you’ve got time to install it…
Lynis is an open-source security auditing tool for extensive scanning of systems and its security defense to achieve compliance testing and system hardening. This article will help you to install Lynis from its official package repository and audit the…