Services that require a username and password for login are potential targets for dictionary attacks. Sshutout and Fail2ban introduce time penalties for invalid attempts.

The GnuTLS project has published two bugfix releases to close several vulnerabilities and resolve an error capable of interrupting connections.

The security and quality of Open Source software just keeps on improving, as code analysis by Coverity reveals.

Red Hat's David Airlie reports in his blog that a simple hack allowed him to develop an X server without root privileges in the course of just one afternoon.

Security researchers iDefense have disclosed three vulnerabilities in the Rdesktop Remote Client.

The Ubuntu security team has released an update to close a vulnerability in the Vorbis Tools for editing music files in Ogg-Vorbis format.

The developers of the free Bugzilla bug management system have fixed several bugs including a vulnerability that enabled cross site scripting attacks.

Some Internet exploits target name resolution servers. DNSSEC uses cryptography to protect the name resolution service.