Linux Events - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

How strictly do your users obey your security policies?

	To the letter.
	For the most part.
	When it suits them.
	By chance.
	Not at all.

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

Emily Ratliff: OS Security

DanWalsh LiveJournal

Security Bloggers Network

Latest Newsletters

Linux Advisory Watch: November 21st, 2008

Linux Security Week: November 17th, 2008

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Linux Events

Samba Developers Quash Serious Bug

16 May 2007

User Rating:

How can I rate this item?

Source: ComputerWorld - Posted by Bill Keys

Users of the open-source Samba software are being urged to patch their code following the discovery of a critical bug in the file-and-print software.

The bug is one of three vulnerabilities that were patched Monday by the Samba team in the Samba 3.0.25 release. The flaw is considered to be particularly worrisome for two reasons: It could be remotely exploited by an attacker to run unauthorized code on the Samba server and there is no known workaround for the flaw. Samba ships with Linux and Unix operating systems and is a popular way of allowing Windows clients to print and store files using a Linux or Unix machine.

Write Comment

An Introduction to the Murky Science of Web Application Security

15 May 2007

User Rating:

How can I rate this item?

Source: CIO - Posted by Bill Keys

Jeremiah Grossman wants you to know that firewalls and SSL encryption won’t prevent a hacker from breaking into your e-commerce website, compromising your customers’ data and possibly stealing your money. That’s because most website attacks these days exploit bugs in the Web application itself, rather than in the operating system on which the application is running.

Write Comment

Profit-Minded Trojans

11 May 2007

User Rating:

How can I rate this item?

MAY 11, 2007 | The first Trojan horse was designed to win the war and get the girl. But according to new research from PandaLabs, Trojan software makers now have gone commercial.

Sixty-six percent of the new Trojans that emerged in the first quarter of 2007 were designed for financial gain, according to the security company's quarterly research report, which was published Wednesday.

Write Comment

Free Lunch :: OSSEC

16 April 2007

User Rating:

How can I rate this item?

Source: 360 Security - Posted by Eckie Silapaswang

OSSEC is an open source host based intrusion detection system. The website states, "It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, time-based alerting and active response." That is a mouthful.

Write Comment

Top Five Web Application Vulnerabilities

14 February 2007

User Rating:

How can I rate this item?

Source: Spidynamics.com - Posted by Benjamin D. Thomas

PHP version 5.2.0 and prior is susceptible to multiple security vulnerabilities. If exploited, these vulnerabilities could give an attacker the means to execute arbitrary code, write files in unauthorized locations, or create a denial-of-service condition. An upgrade which resolves these issues has been released. Contact the vendor for additional information.

Write Comment

More...

<< Start < Prev 4 5 6 Next > End >>

Results 46 - 54 of 742

Partner:

Latest Features

A Secure Nagios Server

Never Installed a Firewall on Ubuntu? Try Firestarter

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Open Source Tool of March: ZoneMinder

Yesterday's Edition

Plaintext Recovery Attack Against SSH

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital