Linux Today - Security

eWEEK: Once again, Stagefright Android mediaserver flaws are being patched by Google to help protect Android users from potential security risks.

Phoronix: Gentoo Linux developer Hanno Böck, presented on Feb. 5 at FOSDEM 2017 over some Linux desktop security shortcomings and how Microsoft Windows 10 is arguably more secure out-of-the-box.

HowToForge: This tutorial documents the process of installing OpenVAS 8.0 on Kali Linux rolling.

Linux.com: Shorewall is an open source firewalling tool that makes the task of network security easier.

 Nixcraft: UFW is an acronym for uncomplicated firewall.

eWEEK: Open-source Metasploit penetration testing framework adds new hardware support, enabling researchers to target IoT devices, starting with automotive.

Some network services should only be exposed to other computers on the same trusted network.

eWEEK: The Amnesic Incognito Live System, also known more simply as Tails, is a privacy-focused Linux distribution loaded with tools and features to help users stay somewhat anonymous on the internet.

eWEEK: Container Security Platform 2.0 release aims to help further segment application container traffic and adds new support for secrets management.

eWEEK: New open-source effort debuts to help improve the state of secure account recovery across internet services, starting with GitHub.

 ostechnix: As we all know, SSH, also known as Secure Shell, is the cryptographic network protocol that allows you to securely communicate/access a remote system over unsecured network, for example Internet.

Linuxconfig: Privacy and security are becoming increasingly important topics.

InfoWorld: The latest OpenSSL update may only address moderate-severity vulnerabilities, but admins shouldn't get lax about staying current with the patches

In case you haven't realized already, encryption is important.

Malware, Viruses and Trojans on Linux are rare but not impossible as many would have you believe.

FOSSforce: You'd think that in this day and age finding a free and open DNS server would be easy...

This brief tutorial explains how to allow or deny SSH access to a particular user or a group in Linux.

 Nixcraft: You can implement the Linux container (LXD/LXC) to partition a your cloud server

Connect2SSH is a BASH based script that allows for easier and quicker management of SSH and SSHFS sessions to unlimited hosts.

The most important bug fixed in the Tor 0.2.9.9 and Tor 0.3.0.2 Alpha versions is a denial-of-service (DoS) vulnerability that could allow an attacker to crash relays and clients

eWEEK: Mozilla patches 24 security vulnerabilities in Firefox and now alerts users when they attempt to enter information into web forms that are not secure.

 tecmint: In case you are running Linux on a machine that you normally use alone, say on a laptop, entering a password each time you invoke sudo can become so boring in the long run.

Nixcraft: In Linux (and Unix in general), there is a SuperUser named root.

tecmint: Sometimes having less information is better for security

The erasure of data on improperly secured databases has broadened to include Apache-Hadoop's distributed storage and the NoSQL CouchDB.

In this ELCE talk, Jan Libbe of Pengutronix reveals how syncing with upstream projects can keep Linux devices secure and functional for 10 years and beyond.

 ostechnix: There are plenty of tools and websites are available to test the password complexity.

blackmoreops: Searching exploits in MetaSploit made easy by SearchExploit.

PCWorld: Don't drop your guard just because you're running Linux.

ZDnet: A new set of BIND problems have emerged, and you should patch them before your servers get crunched by a DDoS attack.

blackmoreops: This is possibly the easiest way to find Linux Exploits by Kernel version.

eWEEK: 10th anniversary edition of Pwn2Own hacking contest offers over $1M in prize money to security researchers across a long list of targets including Virtual Machines, servers, enterprise applications and web browsers.

Linux.com: We’re incredibly close to a Web that is more encrypted than not, says Josh Aas in this update from the Let’s Encrypt project.

eWEEK: Simple steps, lather, rinse repeat.

This ultimate cheat sheet for Penetration testers is a high level overview for typical penetration testing environment ranging from nmap, sqlmap, ipv4, enumeration, fingerprinting etc.

In this post, we will provide some of the most common ways of securing and strengthening a WordPress site.

Nixcraft: Given the recent ransomware attacks on MongoDB, here is a detailed guide on how to secure access to MongoDB.

Nixcraft: How do I login over ssh without using password less RSA / DSA public keys?

InternetNews.com: Docker's first container engine release of 2017 provides a fix for an interesting security vulnerability.

eWEEK: Just over a month after the first WordPress 4.7 release, new incremental update debuts fixing 62 bugs, including a security flaw in the popular PHPMailer email library that was first publicly reported in December 2016.