Hardening Ubuntu Linux Security – https://CloudMonk.io – Buddha Dharma, DevOps Cloud Computing, IT History, Ayurveda, Permaculture Gardening

Tag: Hardening Ubuntu Linux Security

Hardening Ubuntu Linux Security – See https://CloudMonk.io/doku.php?id=hardening_ubuntu_linux_security.

Hardening is usually the process of securing a system by reducing its surface of vulnerability, which is larger when a system performs more functions; in principle a single-function system is more secure than a multipurpose one. Reducing available ways of attack typically includes changing default passwords, the removal of unnecessary software, unnecessary usernames or logins, and the disabling or removal of unnecessary services.

Ubuntu (/ʊˈbʊntuː/ (listen) uu-BUUN-too)^[7] is a Linux distribution based on Debian and composed mostly of free and open-source software.^[8][9][10] Ubuntu is officially released in three editions: Desktop,^[11] Server,^[12] and Core^[13] for Internet of things devices^[14] and robots.^[15][16] All the editions can run on the computer alone, or in a virtual machine.^[17] Ubuntu is a popular operating system for cloud computing, with support for OpenStack.^[18] Ubuntu’s default desktop has been GNOME, since version 17.10.^[19]

Ubuntu is released every six months, with long-term support (LTS) releases every two years.^[7]^[20]^[21] As of 22 October 2020, the most recent long-term support release is 20.04 (“Focal Fossa”), which is supported until 2025 under public support and until 2030 as a paid option. The latest standard release is 20.10 (“Groovy Gorilla”), which is supported for nine months.

Ubuntu is developed by Canonical,^[22] and a community of other developers, under a meritocratic governance model.^[7]^[23] Canonical provides security updates and support for each Ubuntu release, starting from the release date and until the release reaches its designated end-of-life (EOL) date.^[7]^[24]^[25] Canonical generates revenue through the sale of premium services related to Ubuntu.^[26]^[27]

Ubuntu is named after the Nguni philosophy of ubuntu, which Canonical indicates means “humanity to others” with a connotation of “I am what I am because of who we all are”.^[7]

(WP)

Sources:

Fair Use Sources:

(WP)
(809137 TTG-DvOp)
(629581 TTG-CC)

Return to Timeline of the History of Computers

2014

Data Breaches

“In 2014, data breaches touched individuals on a scale not seen before, in terms of both the amount and the sensitivity of the data that was stolen. These hacks served as a wake-up call to the world about the reality of living a digitally dependent way of life—both for individuals and for corporate data masters.”

“Most news coverage of data breaches focused on losses suffered by corporations and government agencies in North America—not because these systems were especially vulnerable, but because laws required public disclosure. High-profile attacks affected millions of accounts with companies including Target (in late 2013), JPMorgan Chase, and eBay. Midway through the year”, it was revealed that the Obama Administration’s United States Office of Personnel Management (OPM) was hacked via out-sourced contractors connected to the Chinese Communist government and “that highly personal (and sensitive) information belonging to 18 million former, current, and prospective federal and military employees had been stolen. Meanwhile, information associated with at least half a billion user accounts at Yahoo! was being hacked, although this information wouldn’t come out until 2016.”

Data from organizations outside the US was no less immune. The European Central Bank, HSBC Turkey, and others were hit. These hacks represented millions of victims across a spectrum of industries, such as banking, government, entertainment, retail, and health. While some of the industry and government datasets ended up online, available to the highest bidder in the criminal underground, many other datasets did not, fueling speculation and public discourse about why and what could be done with such data.

The 2014 breaches also expanded the public’s understanding about the value of certain types of hacked data beyond the traditional categories of credit card numbers, names, and addresses. The November 24, 2014, hack of Sony Pictures, for example, didn’t just temporarily shut down the film studio: the hackers also exposed personal email exchanges, harmed creative intellectual property, and rekindled threats against the studio’s freedom of expression, allegedly in retaliation for the studio’s decision to participate in the release of a Hollywood movie critical of a foreign government.

Perhaps most importantly, the 2014 breaches exposed the generally poor state of software security, best practices, and experts’ digital acumen across the world. The seams between the old world and that of a world with modern, networked technology were not as neatly stitched as many had assumed.”

SEE ALSO Morris Worm (1988), Cyber Weapons (2010)

Since 2014, high-profile data breaches have affected billions of people worldwide.

Fair Use Sources: B07C2NQSPV