Language Selection

English French German Italian Portuguese Spanish

Kickstart your Linux security by avoiding garbage installations

Filed under

Recently, a colleague complained to me that X Windows refused to start following a routine patch upgrade on a production Web server. I asked why he needed X Windows running on a production Web server in the first place, especially a server that was allegedly secured as a bastion host in a perimeter DMZ. The response that "it was installed by default" seemed inadequate when considering the security risk posed by running X Windows on a bastion host.

Unnecessary packages on a host bring significant risks. An attacker can target the capabilities of those unnecessary packages to subvert or compromise your host, especially since most distributions automatically start the processes required by the installed packages (for example, if you have installed Apache, then the httpd process is automatically started).

So how do these unnecessary packages get installed?

Full Story.

More in Tux Machines

Turris Omnia Is a Linux-Based Powerful Open Source Router That Updates on the Fly

Turris Omnia is a new open source router that comes with powerful hardware and a Linux distro based on OpenWRT. It’s a smashing hit on Indiegogo, and there is still time to get one. Read more

APT (Advanced Package Tool) 1.1 Is Now Stable in Debian

APT (Advanced Package Tool) is a famous set of core tools inside Debian that make it possible to install, remove, and keep applications up to date. The stable branch of APT has been finally upgraded with the version 1.3. Read more

Historians and detectives keep track of data with open source tool

Segrada is a piece of open source software that allows historians (and detectives) to keep track of their data. Unlike wikis or archival databases, its focus lies on information and interrelations within it. Pieces of information might represent persons, places, things, or concepts. These "nodes" can be bidirectionally connected with each other to semantically represent friendship, blood relation, whereabouts, authorship, and so on. Hence the term "semantic graph database," since information can be displayed as a graph of semantically connected nodes. Read more

today's leftovers