Practical Linux Vulnerability Patching: Targeted Strategies Based on Risk for Efficient Fixes

Practical Linux Vulnerability Patching: Targeted Strategies Based on Risk for Efficient Fixes

1. Introduction: Vulnerability Patching Should Not Be “One-Size-Fits-All”; Targeted Approaches Are More Efficient In the previous article, we categorized vulnerabilities into risk levels using a simplified method, similar to how a doctor diagnoses a condition — distinguishing between “emergencies (high risk)”, “common illnesses (medium risk)”, and “minor issues (low risk)” to avoid blind treatment. The … Read more

Linux Vulnerability Risk Assessment: A Decision Guide from Detection to Classification

Linux Vulnerability Risk Assessment: A Decision Guide from Detection to Classification

1. Introduction: After vulnerability detection, how to determine “which one to fix first”? In the previous article, we used vulnerability scanning tools to identify “security risks” in the system, similar to discovering multiple issues during a thorough cleaning at home: aging window seals, slight water leaks in pipes, and poor contact in outlets. If we … Read more

Precise Scanning of Linux System Vulnerabilities: Building a Strong Software Security Defense with Professional Tools

Precise Scanning of Linux System Vulnerabilities: Building a Strong Software Security Defense with Professional Tools

1. Introduction: System vulnerabilities, the “invisible gaps” hidden in the software layer In the previous article, we established a “bottom-level defense barrier” for firmware, akin to laying a solid foundation for a house. However, even with a stable foundation, if there are unpatched cracks in the walls (corresponding to system vulnerabilities), rainwater can seep in, … Read more

25 Linux Server Security Tips You Can Always Use!

25 Linux Server Security Tips You Can Always Use!

Everyone thinks that Linux is secure by default, and I generally agree (this is a controversial topic). Linux does indeed have a built-in security model. You need to enable it and customize it to achieve a more secure system. Linux is harder to manage, but correspondingly more flexible, with more configuration options. For system administrators, … Read more

Linux Identity and Access Control

Linux Identity and Access Control In Linux systems, Identity and Access Control (IAC) is at the core of security management. It ensures secure access to resources through users, groups, permissions, and advanced mechanisms such as SELinux, preventing unauthorized operations and data breaches. According to an OWASP report, access control vulnerabilities are the primary risk in … Read more

Practical Guide to Linux Security: From Rootkit Detection to System Hardening

Practical Guide to Linux Security: From Rootkit Detection to System Hardening

In this article, you will learn how to use rkhunter to detect rootkits, set up Fail2ban to prevent brute-force attacks, and why it is crucial to lock your screen when you leave. You will also learn how to make sudo more secure by adjusting timeout settings to ensure it always requires a password. Let’s get … Read more

Detailed Configuration of hosts.allow and hosts.deny for Access Control in Linux to Enhance System Security

Detailed Configuration of hosts.allow and hosts.deny for Access Control in Linux to Enhance System Security

In daily Linux system administration, we often need to control which hosts can access our services. Today, we will provide a detailed introduction to two powerful access control files: <span>hosts.allow</span> and <span>hosts.deny</span>, to enhance system security. 1. Introduction to hosts.allow and hosts.deny Files These two files are configuration files for TCP Wrappers, used to control … Read more

Linux Security | Measuring Traffic with iptables

Linux Security | Measuring Traffic with iptables

The Role of iptables and the Difference from firewalld 1. What is iptables? What is it used for? iptables is a classic firewall tool on Linux systems, operating at the network layer, with main functions including: Packet Filtering Allowing or blocking specific network traffic based on rules (such as IP addresses, ports, protocols, etc.) Traffic … Read more

Technical Specifications for Security Compliance Configuration of Linux Systems

Technical Specifications for Security Compliance Configuration of Linux Systems

Preparation Instructions This article is based on the “GB/T 22239-2019 Information Security Technology – Basic Requirements for Cybersecurity Level Protection” and “GB/T 28448-2019 Information Security Technology – Evaluation Requirements for Cybersecurity Level Protection”, combined with international security standards such as CIS Linux Benchmark v3.0.0 and NIST SP 800-171 r3. It is applicable to security configuration … Read more