Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Peter Smith Releases Linux Network Security Online - Thanks so much to Peter Smith for announcing on linuxsecurity.com the release of his Linux Network Security book available free online. "In 2005 I wrote a book on Linux security. 8 years later and the publisher has gone out of business. Now that I'm free from restrictions on reproducing material from the book, I have decided to make the entire book available online."

Securing a Linux Web Server - With the significant prevalence of Linux web servers globally, security is often touted as a strength of the platform for such a purpose. However, a Linux based web server is only as secure as its configuration and very often many are quite vulnerable to compromise. While specific configurations vary wildly due to environments or specific use, there are various general steps that can be taken to insure basic security considerations are in place.

  Google's VirusTotal puts Linux malware under the spotlight (Nov 12)
 

The rise of malware designed to infect Linux servers' distributed denial-of-service attacks has earned greater attention from VirusTotal, the Google-owned go-to tool for malware hunters.For security researchers that need to stay on top of emerging malware threats, the VirusTotal malware database has become an integral tool.
  The 7 deadly sins of startup security (Nov 11)
 

For startups, user growth, product growth, virality, marketing usually goes on the top of their priority list. As part of product planning cycles, embedding information security into their product/service is the last concern for most startups.
  Two Dudes Prove How Easy It Is to Hack ATMs for Free Cash (Nov 14)
 

When a small-time Tennessee restaurateur named Khaled Abdel Fattah was running short of cash he went to an ATM machine. Actually, according to federal prosecutors, he went to a lot of them. Over 18 months, he visited a slew of small kiosk ATMs around Nashville and withdrew a total of more than $400,000 in 20-dollar bills. The only problem: It wasn't his money.
  EFF Calls Out ISPs Modifying STARTTLS Encryption Commands (Nov 13)
 

As Net Neutrality debates swirl, privacy advocates at the Electronic Frontier Foundation and VPN provider Golden Frog have gone public with a Federal Communications Commission filing that got more attention for accusations that Verizon FIOS customers were having their Netflix streaming service throttled back.
  Ubuntu, ownCloud, and a hidden dark side of Linux software repositories (Nov 12)
 

The version of ownCloud in Ubuntu's Universe repositories is old and full of "multiple critical security vulnerabilities." It's no secret. The ownCloud project itself asked Ubuntu to remove it so users wouldn't have vulnerable server software.
  (Nov 10)
 

The Australian Federal Police's initial claims that Matthew Flannery, an IT security employee that went under the name of Aush0k, was the "self-proclaimed leader of defunct online hacking group Lulz Security (LulzSec) were based on one joke comment made online, it has been revealed.
  Peeping into 73,000 unsecured security cameras thanks to default passwords (Nov 10)
 

Yesterday I stumbled onto a site indexing 73,011 locations with unsecured security cameras in 256 countries