LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: December 19th, 2014
Linux Advisory Watch: December 12th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Network Security
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.



Segmenting for security: Five steps to protect your network  18 December 2014 
Source: Network World - Posted by Alex   
Relying on a DMZ to protect your network and data is like putting money in a bank that depends on one guard and a single gate to secure its deposits. Imagine how tempting all those piles of money would be to those who had access — and how keen everyone else would be to obtain access.
 
Exploiting MS14-068 - just another pentest  15 December 2014 
Source: Hashcrack - Posted by Dave Wreski   
This is a short post on how to exploit MS14-068 on Linux. This came up on my recent internal infrastructure engagement. The primary DC was a vulnerable Windows 2008 R2 SP1 server.
 
Why there’s no open-source standard-bearer for the network  02 December 2014 
Source: Network World - Posted by Dave Wreski   
Open-source software plays an increasingly prominent role in many areas of modern business IT – it’s in servers, databases and even the cloud. Vendors like Red Hat, Canonical and others have managed to graft open-source principles onto a profitable business model. The former company became the first open-source-centered business with $1 billion in annual revenue in 2012.
 
Google Releases Nogotofail Tool to Test Network Security  06 November 2014 
Source: ThreatPost - Posted by Dave Wreski   
The last year has produced a rogues’ gallery of vulnerabilities in transport layer security implementations and new attacks on the key protocols, from Heartbleed to the Apple gotofail flaw to the recent POODLE attack. To help developers and security researchers identify applications that are vulnerable to known SSL/TLS attacks and configuration problems, Google is releasing a tool that checks for these problems.
 
How the cloud is changing the security game  03 October 2014 
Source: Network World - Posted by Dave Wreski   
Cloud computing offers many advantages, but with those benefits come a new range of security concerns. “From a security perspective, the cloud has introduced new risks,” says David Levin, director of information security at Western Union, who oversees the security of applications being used at the money transfer company.
 
DDoS attackers turn fire on ISPs and gaming servers  22 September 2014 
Source: TechWorld - Posted by Alex   
DDoS attackers seem to have switched their attention from banks to gaming hosts, ISPs and even enterprises, half-year figures from Chinese mitigation vendor NSFOCUS have confirmed.
 
Middle-School Dropout Codes Clever Chat Program That Foils NSA Spying  17 September 2014 
Source: ThreatPost - Posted by Alex   
The National Security Agency has some of the brightest minds working on its sophisticated surveillance programs, including its metadata collection efforts. But a new chat program designed by a middle-school dropout in his spare time may turn out to be one of the best solutions to thwart those efforts.
 
Cloud security: We're asking the wrong questions  12 September 2014 
Source: InfoWorld - Posted by Alex   
In the wake of the celebrity photo breach, the media is humming with stories disparaging the safety of the cloud. Many longtime cloud critics are crowing, "I told you so!" and waiting for the world to go back to on-premises solutions only.
 
Moving toward smart and secure continuous software delivery  21 August 2014 
Source: CSO Online - Posted by Dave Wreski   
It’s no surprise that security and application development teams often find themselves locking horns. One wants applications and new features to roll out – and swiftly – and the other is often more concerned with keeping systems and data snug. At some organizations, as they embrace more agile development and continuous integration/delivery methods, the tension runs even higher.
 
Boffins build FREE SUPERCOMPUTER from free cloud server trials  29 July 2014 
Source: The Register UK - Posted by Dave Wreski   
Researchers Rob Ragan and Oscar Salazar have built a free LiteCoin-mining botnet that generates $US1750 a week using free cloud signup promotions.
 
<< Start < Prev 1 2 3 Next > End >>

Results 1 - 10 of 1763
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Report: U.S. planning “proportional response” to Sony hack, blamed on North Korea
Heartbleed, Shellshock, Tor and more: The 13 biggest security stories of 2014
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.