Server Security

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Magnet Goblin Hackers Exploit One-Day Flaws to Deploy Custom Linux Malware

Financially motivated hacking groups are increasingly exploiting newly disclosed vulnerabilities to deploy custom malware on public-facing servers. The threat actors are known as Magnet Goblin, and they have been quick to leverage one-day flaws, vuln...
Mar 11, 2024
  0

New Bifrost Malware Evades Detection, Threatens Linux Server Security

A new variant of Bifrost, a remote access Trojan (RAT),...
Mar 02, 2024
  0
11.Locks IsometricPattern Esm H115

Cryptocurrency Mining Migo Malware Attacks Linux Redis Servers

A new malware dubbed “Migo” that is targeting Linux Red...
Feb 21, 2024
  64
22.Lock ScreenEffect Esm H115

Discover Server Security News

LS Hmepg 337x500 34 Esm H200

BUGTRAQ Vulnerability Database Statistics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Ever wanted to know which operating systems and applications have the most reported security vulnerabilities? Are there more known vulnerabilities in Windows NT or Linux? To find out check out the BUGTRAQ Vulnerability Database statistics page. . . .

LS Hmepg 337x500 34 Esm H200

Sendmail 8.11.0 Beta Release Includes TLS

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"... Transport Layer Security (TLS) is now in open source sendmail. As the official announcement explains, "Ever since the easing of crypto export regulations in the United States, we have been working on releasing the STARTTLS and SMTP Authentication Security . . .

LS Hmepg 337x500 34 Esm H200

The trouble with redirects

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

LWN has written up an article describing the "redirect" security difficulty found by the folks at Digital Creations while tracking down a security problem with the Zope application server. "Given the way the web and authentication-based sites work, a suitably . . .

LS Hmepg 337x500 34 Esm H200

A Complete, Secure User Login System

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Tim Perdue writes about a new PHP library he's written. "When I started seeing spam messages posted to the new column annotation system, I knew I would have to create some sort of user authentication system that helps weed out . . .

LS Hmepg 337x500 34 Esm H200

Webserver Security (Part II)

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This second part of our two-part series on webserver security explores the problem of keeping private data in publicly accessible areas of you server and keeping data from untrustworthy sources from entering your system. Covers Apache, FTP server, PHP and . . .

LS Hmepg 337x500 34 Esm H200

Cheap PC Hacker Strikes Again

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Internet appliance-hacker Ken Segler has struck again. The Las Vegas engineer -- who created a cult hit when he discovered that a cable tweak would transform the $99 I-Opener Internet appliance into a fully operational PC -- has found . . .

LS Hmepg 337x500 34 Esm H200

Cybernet Announces Linux-based VPN Software

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Ann Arbor, Mich.-based Cybernet Systems today announced its Linux-based NetMAX VPN Server Suite, a software package designed to set up a virtual private network. The VPN Server Suite, scheduled for a June release, includes a graphical user interface for simpler, . . .

LS Hmepg 337x500 34 Esm H200

Webserver Security (Part I)

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Introduction If you examine the security problems reported with stolen credit card numbers or web server defacements in the last few months, it becomes obvious that many web applications have been slapped together with little care or planning for security. . . .

LS Hmepg 337x500 34 Esm H200

Content Security: Keeping Sites Safe

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Here's an article that talks about keeping your site safe. It is a discussion of some commercial security products, some of which run on Linux. "Still, there's a more insidious threat that such technologies don't guard against: actions . . .

LS Hmepg 337x500 34 Esm H200

Develop Your Website Wisely

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"Establishing a Web presence can be crucial to a company's success, but the wrong moves can tarnish your image." This article "... gives tips on how to safely develop and deploy websites and how a comprehensive information technology policy . . .

LS Hmepg 337x500 34 Esm H200

BIND Version 9 beta 2 released

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This new version of bind (not for production use yet) includes support for IPv6, many security improvements, protocol and operational improvements and especially support for DNSSEC. The quicklist of security improvements include: Support for DNSSEC, Support for TSIG, Auditability . . .

LS Hmepg 337x500 34 Esm H200

Sendmail Simplifies E-Mail Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The provider of the Sendmail Internet Mail platform, which drives most of the Internet's mail servers, last week debuted the Sendmail Secure Switch, routing software that provides server-level encryption for E-mail transmissions. The software automatically encrypts the Simple Mail Transfer . . .

LS Hmepg 337x500 34 Esm H200

Another Distributed DOS Tool

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated. This is an analysis of the "Shaft" distributed denial of service (DDoS) tool. Denial of service is a technique to deny access to a resource by overloading it, such as packet flooding in the network context. Denial of service . . .

LS Hmepg 337x500 34 Esm H200

Hackers crack online porn filters

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A company that makes popular software to block children from Internet pornography is suing two computer experts for distributing a method for children to deduce their parents' password and access those forbidden Web sites. . . .

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved