LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
How strictly do your users obey your security policies?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
Emily Ratliff: OS Security
DanWalsh LiveJournal
Security Bloggers Network
Latest Newsletters
Linux Advisory Watch: November 21st, 2008
Linux Security Week: November 17th, 2008
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Host Security
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Bastille: Classic Linux and Unix Security  10 October 2007 
Source: EnterpriseNetworkingPlanet - Posted by Bill Keys   
But don't overlook the reliable, helpful old-timer Bastille Linux. Bastille Linux is both a batch of Perl scripts that lead you through hardening your Linux system, and an educational tool. I recommend running it just to get a grounding in basic security measures — the newfangled things are nice, but the basics are still important and valuable. I have personal used Bastille Linux only once on a Fedora Distro. But have you tested it out, did you like it? Bastille might be a good place to start improving your security but it needs to be a ongoing process.

Write Comment

 
Virtual Rootkits Not a Problem, Say Researchers  03 October 2007 
Source: ZDNet - Posted by Bill Keys   
Rootkits that use virtualization techniques should not present detection problems, according to researchers from Carnegie Mellon and Stanford universities. Working with virtualization technology vendors VMware and XenSource, the researchers produced a study recently called "Compatibility is Not Transparency: VMM Detection Myths and Realities." (PDF) What do you think does virtual rootkits pose a threat to VM security? The researchers are stating that they are detectable because even if the rootkit is virtual it still leaves a physical footprint. In other words, they consume some of the machine's resources.

Write Comment

 
VMWare Touts Security of the Virtual World  17 September 2007 
Source: searchsecurity - Posted by Bill Keys   
VMWare Inc. is putting a lot of time and effort into assuring attendees at its VMWorld user conference here that security is near the top of the company's agenda. In light of the news in recent months about virtualized rootkits, there has been mounting concern among IT managers and security experts about the security of virtualized environments. Virtization security has got a lot of attention as of late. Is the problem that vm servers share resources and can lead to memory leaks? Does hardware installs have the same problem?

Write Comment

 
Honeypots as Sticky as Ever  25 August 2007 
Source: infoworld - Posted by Bill Keys   
Longtime readers of my column know what a honeypot proponent I am. I run several around the world, collecting information on malware and malicious hackers, and I think every company should have one. I find honeypots quit interesting because you can see what attackers are trying to do but, how useful are they? If system administrators implemented strong security measures then are honeypots useful to them? I feel honeypots should only be used for computer security researchers.

Write Comment

 
Hardening WordPress with htaccess  20 August 2007 
Source: blogsecurity - Posted by Bill Keys   
A few emails have come through about how user’s WordPress installations have been compromised, or where an attacker has found resources he/she shouldn’t have. This article will discuss some security techniques to better harden and secure your WordPress blog; this is especially effective in a hosted environment. Learning to use the .htaccess file is important not only for web blogs but for any web application. Restricting access is the key here, what users can and can't do on a website. There are other ways to restrict access, do you know any?

Write Comment (1 Comments)

 
Hardening Your Systems With Bastille Linux  16 August 2007 
Source: Linux.com - Posted by Bill Keys   
System administrators need to secure their systems while avoiding locking them down so strictly that they become useless. Bastille is a software tool that eases the process of hardening a Linux system, giving you the choice of what to lock down and what not to, depending on your security requirements. I remember using Bastille a couple of times but after using it I changed many of the changes back to what it was before. Do you use Bastille every time you install a new OS? It sure does help with improving security but does it hurt usability to much for desktop user's to run?

Write Comment (4 Comments)

 
Linux Penetration Testing With Nmap  14 August 2007 
Source: ITWire - Posted by Bill Keys   
How can you be sure your network is secure? Before you can patch vulnerabilities you need to discover them. You need to think like a cracker might. You need to hack your own system. This is known as “penetration testing” – a more palatable term to corporations – and the rich tool set of Linux makes it a superb platform for doing this. Nmap is a simple tool for penetration testing but it does a great job of letting you know what the attackers are seeing. I find my self finding opening in my network that I have never seen before while using this tool. Do you think Nmap can be our only penetration testing tool or should users use other as well?

Write Comment (2 Comments)

 
McAfee Sets Rootkit Detective Free  01 August 2007 
Source: InfoWorld - Posted by Bill Keys   
On July 26, McAfee will begin offering a new application called Rootkit Detective, designed to detect and remove dangerous rootkit attacks. The software will also help end-users ward off the threats, as well as funnel new intelligence into the company's ongoing research operations. Have you test drove McAfee's Rootkit Detective software? The feature that made me think about trying it out is McAfree says that it has the ability to detect self-cloaking malware attacks that install themselves as kernel modules or drivers. Since any attack that installs them self's in the kernel are very hard for software to detect, I am in interested in how effective they are in finding them. Also, how does this software rank up against other rootkit finders for example, chkrootkit?

Write Comment

 
RSBAC 1.3.5 Released  20 July 2007 
Source: rsbac.org - Posted by Bill Keys   
Have you heard that Rule Set Based Access Control (RSBAC) 1.3.5 has been released for both Linux kernels 2.4.34.5 and 2.6.22.1?. How is RSBAC different from other security frameworks like SELinux? One improvement that caught my eye was " Cache for inherited filesystem attribute values ". Seems that this will help increase performance of RSBAC. Check out RSBAC for your self and see how it compares with other Access control security frameworks.

Write Comment

 
Application Security Arms Race  18 July 2007 
Source: ict World - Posted by Bill Keys   
" An increasing number of malware attacks are exploiting software application vulnerabilities." In software development is security a after thought when designing and writing a application? Patching a program after it's release is also just as import as to writing secure code. However, I believe that software developers depends on patching their software too much. In market of making software, vendors need to get the software out the door as fast as possible. So what is the balance between speed of deployment and writing secure code?

Write Comment

 
<< Start < Prev 4 5 6 Next > End >>

Results 31 - 40 of 742
    
Partner:

 

Latest Features
A Secure Nagios Server
Never Installed a Firewall on Ubuntu? Try Firestarter
Review: Hacking Exposed Linux, Third Edition
Security Features of Firefox 3.0
Review: The Book of Wireless
April 2008 Open Source Tool of the Month: sudo
Open Source Tool of March: ZoneMinder
Yesterday's Edition
Plaintext Recovery Attack Against SSH

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
  Security Projects ,   Latest News ,  Newsletters ,  SELinux ,  Privacy ,  Home,
 Hardening ,   About Us,   Advertise,   Legal Notice,   RSS,   Guardian Digital

(c)Copyright 2008 Guardian Digital, Inc. All rights reserved.