Several techniques exist for hardening ELF binaries in Linux. This post discusses one such technique called Relocation Read-Only (RELRO). Selected network daemons and suid-root programs…read full post

We have mixed feelings about Data Privacy Day. On one hand, we’re very much in favor of empowering people and businesses to think about data…read full post

With the release of Red Hat Enterprise Linux 8 beta, we wanted to take a look at some of the changes that are coming in…read full post

Red Hat Global Customer Tech Outlook 2019: Automation, cloud, & security lead funding priorities…read full post

Editorial Note: While not fully discussed in this post, there is a component to this vulnerability that results in unauthenticated remote code execution, in addition…read full post

A critical security vulnerability in Kubernetes (CVE-2018-1002105) affecting OpenShift Container Platform 3 was patched by Red Hat in December 2018. The OpenShift API Server is…read full post

The software security industry uses the term Embargo to describe the period of time that a security flaw is known privately, prior to a deadline…read full post

In the recent months I have been getting more and more questions about identity management (IdM) in Red Hat Enterprise Linux and best practices around…read full post

DNSSEC is a system of digital signatures that prevent DNS spoofing. Using DNSSEC, it does not matter where your DNS answers came from, since the…read full post

Many modern developers have learned that ‘sticking with HEAD’ (the most recent stable release) can be the best way to keep their application more secure…read full post