The Cmd Blog
A blog about security and protections
in Linux, DevOps, and the Cloud
Jan 29 · 3 min read
Cmd Advisory: (Baron Samedit) Sudo Exploit CVE-2021-3156
By: Jake King & Shashank KS
Sudo bug delivers an easy to exploit privilege escalation vulnerability for any system user. In July of 2011, a privilege escalation vulnerability was added to the Linux sudo program (Versions Ubuntu 20.04 (Sudo 1.8.31), Debian 10 (Sudo 1.8.27), and Fedora 33 (Sudo 1.9.2) and lay dormant until researchers at Qualys identified it and published their…
Oct 22 · 10 min read
2020 Shook Up Secure Remote Access and Monitoring… Here’s What You Can Do About It
By: Jennifer Ellard
Jake King and CTO Mike Sample discuss the latest release from HashiCorp, how Cmd and Boundary work together and reflect on the sophistication of Drovorub.
Oct 16 · 4 min read
Making BPF easy with libbpf and Zig
By: Matt Knight
Heads up, this is a fairly detailed deep dive into some of what libbpf does and knowledge on BPF is required. Luckily I have you covered 🙂
Latest Tweets
';
Are you attending next week’s @PagerDuty Summit? If so, join us during one of our 20 min webinar sessions to learn how you can use @cmd_security to avoid or respond to failures in a security incident. Register Now: https://info.cmd.com/pagerduty2021
#PDSummit #linuxsecurity #cloudsecurity
Why did you join @cmd_security?
"I joined Cmd to deliver our best-in-class platform so security teams can confidently protect their Linux infrastructure and minimize risk to their business."
- Yanique E. - Director, Growth Marketing
#JoinCmd #linux #linuxsecurity #cloudsecurity
You can track and monitor what users do and be alerted based on their behavior. This deep visibility reduces security incident investigation time. Learn more: https://bit.ly/3wzxnOb
#linux #linuxsecurity #cloudsecurity
Subscribe
The latest in Linux defense, delivered to your inbox. Subscribe to know more about upcoming data
You May Also Like
Four Risky Linux Development Behaviors to Stop Now
Linux’s flexibility means common developer behaviors can introduce serious security issues. We identify four scenarios and what you can do to avoid them.
The Dual-Role of Cmd to Support Ops and Security in Production Linux
This episode of the Risky Business podcast has Adam Cardillo and Curtis Simpson of HPE ITOC discuss the dual role Cmd plays in their Linux environments.
What data does Cmd collect?
Cmd collects data about what happens on your Production Linux servers, but do you know how that data is structured, or what it contains? Read to find out.
Cmd Advisory: “Drovorub” Linux Malware Strain
The National Security Agency and Federal Bureau of Investigation detail a previously undisclosed Linux malware strain named “Drovorub.”
3 Ways ChatOps for Permissions Improves Security
In this post, we explore some of the core ways that integrating ChatOps as part of permissions processes can improve security—and more.
Four Steps to Getting Your Linux Cloud Audit-Ready
TL;DR: Compliance can be a huge point of stress for cloud-first companies. In this co-written article with Audit Liaison, we’re sharing a handful of core actions to get your cloud audit-ready. Back in the “good” old days, audits involved much less data and way more paper. Today, a compliance audit can encompass massive amounts of…
Activate Today
Gain best-in-class Linux observability in minutes... for free_
Cmd provides the fastest, easiest way to know what’s happening in your Linux environment, who’s logging in, what they are doing, processes they initiate and sensitive assets they access.
Activate Your Free Account arrow_forward
