ZDNet

Alpine Linux Docker images ship a root account with no password

Alpine Linux Docker images distributed via the official Docker Hub portal for the past three years and a half have been using a blank (NULL) password for the root account, security researchers from ...
Linux Journal

Making Root Unprivileged

There was a time when, to use a computer, you merely turned it on and were greeted by a command prompt. Nowadays, most operating systems offer a security model with multiple users. Typically, the ...
Bleeping Computer

New Linux SUDO flaw lets local users gain root privileges

A now-fixed Sudo vulnerability allowed any local user to gain root privileges on Unix-like operating systems without requiring authentication. Sudo is a Unix program ...
Bleeping Computer

Kali Linux to Default to Non-Root User With 2020.1 Release

The Kali Linux distribution is going to switch to a new security model by defaulting to a non-root user starting with the upcoming 2020.1 release. This change will come with the release of the 2020.1 ...
Threat Post

Sudo Bug Gives Root Access to Mass Numbers of Linux Systems

Qualys said the vuln gives any local user root access to systems running the most popular version of Sudo. A doozy of a bug that could allow any local user on most Linux or Unix systems to gain root ...
Threat Post

Local-Privilege Escalation Flaw in Linux Kernel Allows Root Access

A local-privilege escalation vulnerability in the Linux kernel affects all current versions of Red Hat Enterprise Linux and CentOS, even in their default/minimal installations. It would allow an ...