Security Projects - Page 23

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12

The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12. This announcement has significant ramifications for secure Linux system administration, ...
Dec 06, 2024
  0

Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins

The Arch Linux 2024.12.01 ISO release marks&n...
Dec 03, 2024
  0
19.Laptop Bed Esm H115

Deck the Halls with Enhanced Security: Linux Kernel 6.13's Top Features & Improvements

As Linux admins and infosec professionals prepare for t...
Dec 02, 2024
  0
1.Penguin Landscape Esm H115

Discover Security Projects News

January 2013 Issue of Linux Journal: Security

January 2013 Issue of Linux Journal: Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Years ago, I had the brilliant idea that all my users in the finance department should have complex passwords. This made perfect sense to everyone, since dealing with millions of dollars of revenue is something that should be secured. So, the passwords were changed with complexity requirements enforced.

5 tips to retain great security talent

5 tips to retain great security talent

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

You want the best on your security team. And once you have them, you want to keep them happy and keep them in your organization. Three security career and management experts weigh in on what security managers need to do to retain top-notch security talent.

7 deadly sins of cloud computing

7 deadly sins of cloud computing

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Automation, cost savings, and data redundancy -- no wonder cloud adoption is tempting. The CISO can rest easy knowing there is no vice in moving to the cloud to reap these rewards. What may keep her up at night is not knowing how many missteps the enterprise is making in the process.

How Linux reads your fingerprints, helps national security

How Linux reads your fingerprints, helps national security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Gunnar Hellekson has many awesome-sounding job titles. He's the chief technology strategist for Red Hat's US Public Sector group, where he works with government departments to show them how open source can meet their needs, and with systems integrators to show them what they can do to provide the government with what it needs.

Using security metrics to measure human awareness

Using security metrics to measure human awareness

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

It's been said that security is hard to measure. Producing measurable results around a lack of problems or incidents is challenging. But the field of security metrics has evolved considerably in recent years, giving security managers more resources to make the case for investing in security programs and technologies.

Linux: Its Where the Jobs Are

Linux: It's Where the Jobs Are

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Demand for Linux talent is on the rise, but finding those professionals is difficult. Eight in 10 (81%) survey respondents say that hiring Linux talent is a priority in 2012. This pressing matter is particularly evident when Linux demand is compared to hiring in other skill sets: 63 percent of hiring managers are increasing Linux hires relative to jobs created in other skill areas.

Let someone break the rules to improve security

Let someone break the rules to improve security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The lessons I learned letting my son break the rules hold true for security, too. Here's why sometimes breaking a rule leads to better compliance: 1. It creates an opportunity for an individual to practice autonomy, on the condition that they live with the consequences. This allows an individual to be recognized, and feel respected.

BlackHole 2.0 gives hackers stealthier ways to pwn

BlackHole 2.0 gives hackers stealthier ways to pwn

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A new version of the BlackHole exploit kit is now out on the web and ready to start infecting. The developer of the toolkit, who goes by the handle "Paunch," recently announced the availability of Blackhole 2.0, which removes much of its trove of known and patched exploits, and replaces them with a whole new crop

Tricks arent protecting you from todays hackers

Tricks aren't protecting you from today's hackers

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security breaches happen so often nowadays, you're probably sick of hearing about them and all the ways you should beef up your accounts. Even if you feel you've heard it all already, though, unfortunately, today's password-cracking tools are more advanced and cut through the clever password tricks many of us use.

Hey, Hackers: Defense Is Sexy, Too

Hey, Hackers: Defense Is Sexy, Too

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Pleasing the crowd at the Black Hat and Def Con computer security conferences that took place in Las Vegas last week is relatively easy: simply hop on stage and confidently show how to compromise, or "pwn," a system that no one has hacked into before (see "Mobile Payment Chips Could Let Hackers into Your Phone").

Hacktivists UGNazi attack 4chan, CloudFlare and Wounded Warrior Project

Hacktivists UGNazi attack 4chan, CloudFlare and Wounded Warrior Project

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

After the FBI arrested Cosmo, the alleged leader of the UGNazi hacking group, the hackers attacked CloudFlare via a flaw in Google's two-factor authentication system. The CloudFlare hack allowed UGNazi to change the DNS for 4chan, so visitors to the site were redirected to a UGNazis Twitter account. The attack on the Wounded Warrior Project site was allegedly done for no reason but to spite The Jester.

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved