You may have already tried PGP/GPG public key encryption for documents or mail, but do you know what’s going on under the hood and what level of security you’re actually getting? We take an in-depth look at GnuPG encryption.more »
Security Lessons: Cloud Security Tools for auditing and securing cloud systemsMar 29, 2012
Tools like OpenSCAP and Aqueduct can make life much easier when implementing cloud security standards.more »
Fluendo, Lineo Solutions, Mocana, and NVidia join the Linux Foundation and see the benefits of Linux in the future of computing.more »
Cloud Storage Behind the Firewall Bridging the Cloud and BYOD GapMar 09, 2012
ownCloud's new commercial venture lets you manage risk and data exposure in a bring-your-own-device age.more »
Full release of BackTrack Linux 5 R2 is now available.more »
Charly’s Column: w3af The sys admin’s daily grind: w3afMar 02, 2012
After toiling away to create a small but exclusive website, Charly wanted to run a security scanner against it to check for vulnerabilities. The choice of tools is enormous, but Charly chose w3af.more »
Security Lessons: Fixing SSL How to fix SSLMar 02, 2012
We look at some new approaches to certificate verification.more »
Security Lessons: Self-Defense Separating the wheat from the chaffFeb 02, 2012
Attackers impose a high price on your limited resources. We look at some ways to separate the good from the bad.more »
New flaw in an old encryption scheme leaves the experts scrambling to disable SSL 3
Lennart Poettering wants to change the way Linux developers talk to each other.
Enterprise giant frees itself from ink and home PCs (and visa versa).
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.