Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Using the sec-wall Security Proxy - This article full of examples will show you various ways to test services secured using sec-wall, a feature-packed high performance security proxy. We'll be using cURL, a popular Linux command line tool and PycURL - a Python interface to cURL. As of version 1.0, sec-wall supports HTTP Basic auth, digest auth, custom HTTP headers, XPath-based authentication, WS-Security & SSL/TLS client certificates and each of the options is being shown below.

sec-wall: Open Source Security Proxy - sec-wall, a recently released security proxy is a one-stop place for everything related to securing HTTP/HTTPS traffic. Designed as a pragmatic solution to the question of securing servers using SSL/TLS certificates, WS-Security, HTTP Basic/Digest Auth, custom HTTP headers, XPath expressions with an option of modifying HTTP headers and URLs on the fly.

Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.22 (Version 3.0, Release 22). This release includes many updated packages and bug fixes and some feature enhancements to the EnGarde Secure Linux Installer and the SELinux policy.
(Jun 16)

While the world argues whether the hacktivist group is more Robin Hood or terrorist, the big question is: how have the hacks been so successful? Security experts share some answers.
(Jun 16)

Stumbled across this today in my Vimeo inbox. A very cool motion graphics piece that is "An infographic dissecting the nature and ramifications of Stuxnet, the first weapon made entirely out of code." Our Facebook fans seemed to respond well to it, so I thought I'd put it up as a Short of the Moment.
(Jun 17)

The number of hacking events of late is making our heads spin at CNET. By our count, there's been more than 40 computer attacks, network intrusions, or data breaches in the last few months. And they seem to be a daily occurrence.
(Jun 14)

The Anonymous hacker group says it plans to target the Federal Reserve starting tomorrow, most likely with a distributed denial-of-service (DDoS) attack designed to shut down the agency's Web site.
(Jun 15)

Lulz Security, the hacking group apparently motivated by nothing more than their desire to laugh at the mayhem they cause, has had a busy day in an event they called Titanic Takeover Tuesday. Taking a break from their dumps of user data and server break-ins, today saw the group perform a bunch of distributed denial of service attacks against a range of targets.
Fraud Starts After Lulzsec Group Releases E-Mail, Passwords (Jun 17)

Debbie Crowell never ordered the iPhone, but thanks to a hacking group known as Lulzsec, she spent a good part of her Thursday morning trying to get US$712.00 in charges reversed after someone broke into her Amazon account and ordered it.
(Jun 15)

The Metasploit team is excited to announce a new incentive for community exploit contributions: Cash! Running until July 20th, our Exploit Bounty program will pay out $5,000 in cash awards (in the form of American Express gift cards) to any community member that submits an accepted exploit module for an item from our Top 5 or Top 25 exploit lists.
Turkey arrests 32 Anonymous hackers for DDOS attacks (Jun 13)

Turkey responded to the hacking group Anonymous with 32 arrests following attacks on government websites, according to the country's state-run news agency.
Hole found in Firefox 4 WebGL implementation (Jun 17)

A security hole has been discovered in the WebGL implementation of Firefox 4 by the British security researchers at Context Information Security. The researchers have been continuing their previous work looking for flaws in WebGL and have found they can perform a "memory stealing" attack using WebGL.
Hackers break into U.S. Senate computers (Jun 14)

The Senate's website was hacked over the weekend, leading to a review of all of its websites, in the latest embarrassing breach of security to hit a major U.S.-based institution.
(Jun 15)

The hacker group Lulz Security has opened a telephone request line so its fans can suggest potential targets.It claims to have launched denial of service attacks on several websites as a result, although it did not detail which ones.
Firefox 5 locks down, almost ready for release (Jun 16)

Today, Mozilla has updated the Firefox 5 beta to release candidate status (download for Windows | Mac | Linux), which includes improves support for "future-Web" technology, speeds up the browser, and makes multiple smaller tweaks to the browser.