Questions tagged [linux]
Securing Linux systems and applications; understanding Linux security features.
2,163 questions
12votes
3answers
3kviews
Why shred before LUKS disk encryption?
I read the following article and it says to "Stuff random data to the device" (using shred) before encrypting with LUKS. How to enable LUKS disk encryption with keyfile on Linux Why would ...
- 121
1vote
0answers
80views
Container scanning has too many OS errors - how should I manage it?
We are using containers to host our enterprise application, the problem is that any security scan with Trivy produces errors that are difficult to analyze since components not used in the application ...
1vote
0answers
118views
What's stopping a virus from turning a connected peripheral into a Bad USB on Linux?
Lets say I have a laptop, Secure Boot enabled, AppArmor on, UEFI Secure. Now I download a compromised piece of malware containing, for example a reverse shell. I grow suspicious and reinstall my ...
- 385
7votes
3answers
3kviews
Preventing a process from running a subcommand
I have a (web-)application which has the feature, that it allows some of its users to execute certain shell commands. E.g., I can authorize the user jdoe to run the find command. That user can add ...
- 1,361
1vote
0answers
55views
Using Tripwire on Linux, how can I add or remove files from the tripwire database without reinit?
I am using tripwire on a Linux OS (Rocky Linux) and the policy and configuration are all setup and generally the system works well. However occasionally I have a need to modify/create/delete a file on ...
- 11
1vote
0answers
98views
U-Boot hardening - how manage U-Boot Environment Variables
I'm running on a Linux Embedded product and U-Boot Bootloader. I enabled the Secure Boot Chain of Trust, from ROM to Kernel + DM-verity and DM-Crypt partition protection. Now I'm worried about the U-...
- 11
1vote
0answers
84views
In a dual boot system, can infected windows partition infect linux partition? [duplicate]
My windows system was infected sometime ago, and they installed some sort of RAT, or spyware which allowed them to essentially view my entire computer screen and see everything I do. I used a lot of ...
- 11
0votes
1answer
312views
Secure home network running Linux
I'm using Kubuntu 24.04. In my understanding, antivirus in Linux is not really a thing or needed, so my question is targetted specifically about firewall. For a home laptop that will run server ...
- 221
2votes
2answers
229views
How do I start servers in my home laptop but make sure all incoming connections are blocked?
I have a Kubuntu 24.04 and for development purposes I want to run servers such as Kubernetes, Docker, MySQL, Zookeper etc that open connections and listen. I do not want any sort of incoming ...
- 221
0votes
1answer
112views
Reasonable model for Storing credentials for use in scripts
I was reading question 180243 which states that using a password vault is the best option for credential storage. However this is rather cumbersome to setup. For a lower security use case (so no PII ...
0votes
1answer
67views
Linux / Fedora Memory Capture and Analysis Guide Needed
I'm using the following commands to capture 2 memory dumps, one for bios only and the other the first MB of the memory on a old laptop that uses phoenix legacy, non uefi , Bios and run fedora . sudo ...
1vote
1answer
202views
How Do I Save TBs of files after a infostealer/malware attack?
I recently downloaded malware/infostealer by accident, and I had all of my hard drives connected at the time. For a whole week I didn't know I had malware until I noticed people were logging into my ...
- 11
0votes
0answers
41views
Is it possible to include a fully-working SELinux policy with B2B software?
Preamble I'm an engineer at a small company that sells B2B software for various OSes, including RHEL. The software usually runs natively (as a statically compiled binary) and uses/accesses system ...
2votes
1answer
288views
mitmproxy with wireguard to log all network traffic on my machine (arch linux): SERVAIL Recursive question
I would like to use mitm transparent mode with wireguard So I tried this mitmweb --mode wireguard 0 (3....
1vote
1answer
140views
Web Server API returns Hacked webpage when Unity Project makes API call
We currently have a linux/apache/sql webserver that has API access for our app in the meta store(Quest 2 & 3). when manually type in the address on chrome (desktop computer) I get the proper API ...
- 11
