LinuxSecurity.com

As part of an effort to advance Linux security, Sysdig has donated a sysdig kernel module, along with libraries for the Falco security platform for Kubernetes, to the Cloud Native Computing Foundation (CNCF).

Google has demonstrated serious concern about the security of Linux and open-source code, and is sponsoring a pair of full-time developers to work on the kernel's security.

Linux Mint maintainers are emphasizing the importance of keeping software up-to-date - a critical security best practice that many users are neglecting.

With the popular Linux distro's acquisition of StackRox, Red Hat is taking a major step forward in securing not only its own Kubernetes distribution, OpenShift, but other Kubernetes distros as well.

Get ready, developers- Microsoft's WSL 2 is getting graphics support!

The Python Software Foundation (PSF) has rushed out Python 3.9.2 and 3.8.8 to address two notable security flaws, including one that is remotely exploitable- but in practical terms can only be used to knock a machine offline. Upgrade now!

New research highlights that cheap baby monitor and security camera vendors prioritize convenience over user security and privacy, building a highly insecure ''convenience' feature that allows anyone to remotely view unencrypted video streams into their products.

If all goes well, the first flight on Mars will be made by the Linux-powered Perseverance Mars rover's companion drone helicopter.

IntroductionCrowdSec is a massively multiplayer firewall designed to protect Linux servers, services, containers, or virtual machines exposed on the Internet with a server-side agent. It was inspired by Fail2Ban and aims to be a modernized, collaborative version of that intrusion-prevention tool.

Node.js is wildly popular - but the open-source JavaScript runtime is not easy to learn. Now is the perfect time to pick it up - the Linux Foundation is offering a free online Node.js class.

Both Linux and Windows servers are being targeted by the dangerous new WatchDog botnet, which uses exploits to take over servers and mine cryptocurrency.

Learn about the selection of excellent - and free! - server distros available to Linux users in 2021.

Thank you to Oyelakin Timilehin Valentina for contributing this article.Our newest member, Valentina, an up and coming cybersecurity professional in Nigeria, studying cybersecurity and showing stellar skills in learning and applying her knowledge, recently went through the Tryhackme online learning platform, and shared her experiences, as well as a few quick tips on using nmap.

Linus Torvalds has released Linux kernel version 5.11 with plenty of support updates for Intel, AMD and Arm-based hardware - and he seems to be content. "In fact, it's a smaller-than-average set of commits from rc7 to final, which makes me happy. And I already have several pull requests lined up for tomorrow, so we're all set for the merge window to start," noted Torvalds announcing the release over the weekend.

Security advisor Luca Bongiorni spun up an Ubuntu Linux instance on Azure and was extremely annoyed to receive a sales message from a Canonical representative three hours later. Say what?? Bongiorni openly voiced his frustration, "WHY [did] MICROSOFT FORWARDED TO UBUNTU THAT I SPUN A NEW VM!?!" Customer privacy, what's that?"

Kernel security is a key determinant of overall system security. After all, the Linux kernel is the foundation of the OS and the core interface between a computer's hardware and its processes. Luckily, Linux now supports a range of effective open-source extensions and external tools engineered to boost kernel security. From the threats you should be aware of to the initiatives and technologies designed to reinforce and enhance the security of the Linux kernel, here's what you need to know.

The COVID-19 Credentials Initiative (CCI) - hosted by Linux Foundation Public Health (LFPH) - is working to standardize an approach to vaccination credentials.

CrowdSec is a massively multiplayer firewall designed to protect Linux servers, services, containers, or virtual machines exposed on the Internet with a server-side agent. It was inspired by Fail2Ban and aims to be a modernized, collaborative version of that intrusion-prevention tool.

Like any OS, Linux and Unix OSes require regular patching - but as security professionals, ethical hackers, and criminal hackers will tell you, regular Linux and Unix patching is often neglected. Learn about a new critical rated Linux\Unix vulnerability you can't afford to ignore.

The Document Foundation has released the LibreOffice 7.1 open-source and cross-platform office suite for all supported platforms - a major release that introduces an array of new features and improvements.