Security News
An Azure customer was outraged after finding himself on the receiving end of an unexpected LinkedIn message from Ubuntu maker Canonical last night. Shortly after a message turned up from an Enterprise Development representative at Ubuntu with the ominous phrase: "I saw that you spun up an Ubuntu image in Azure," and offering to be a point of contact.
CloudLinux has added the Raspberry Pi to its KernelCare patching service, although only if you're running Ubuntu. The arrival of the service is a recognition of the diminutive computer's presence in the IoT world, where implementations tend to be more on the appliance side and ongoing security updates are not always applied.
Jack Wallen walks you through the manual process of installing ModSecurity for NGINX on Ubuntu Server 20.04. ModSecurity cannot be enabled with an instance of NGINX installed with apt-get, so you must do it manually.
I'm going to walk you through the installation of ClamAV on Ubuntu Server 20.04. How to install ClamAV. ClamAV is not installed by default.
Jack Wallen discusses why the upcoming Ubuntu 21.04 is more important than some of its features would imply. At one point, the Ubuntu faithful were excited that 21.04 would be one of the first distributions to include GNOME 40.
GitHub security researcher Kevin Backhouse found bugs in Ubuntu 20.04 which enabled any desktop user to get root access. Backhouse discovered two separate issues, one by accident, which together enable the privilege escalation.
A vulnerability in GNOME Display Manager could allow a standard user to create accounts with increased privileges, giving a local attacker a path to run code with administrator permissions. The process involves running a few simple commands in the terminal and modifying general system settings that do not require increased rights.
SEE: Pro tips: Ubuntu 20.04.What you'll needAn instance of Ubuntu Server 20.04.A user with sudo privileges. Sudo apt-get update sudo apt-get upgrade -y How to install Java.
If you're looking for a platform to help with the collection and sharing of cybersecurity events, you need not look any further than MISP. Jack Wallen shows you how to install this tool.
Learn how to enable passwordless SSH authentication on both Linux and macOS. You probably secure shell into your Linux servers throughout the day. Hopefully, you've set those servers up such that you're using SSH Key Authentication.