<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Security on Eric The IT Guy</title><link>https://itguyeric.com/tags/security/</link><description>Recent content in Security on Eric The IT Guy</description><generator>Hugo</generator><language>en-US</language><lastBuildDate>Fri, 12 Jun 2026 09:00:00 -0500</lastBuildDate><atom:link href="https://itguyeric.com/tags/security/index.xml" rel="self" type="application/rss+xml"/><item><title>What to know about community support versus vendor support</title><link>https://itguyeric.com/blog/ciq-community-vs-vendor-support/</link><pubDate>Fri, 12 Jun 2026 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/ciq-community-vs-vendor-support/</guid><description>I wrote this for the CIQ blog: an honest look at when community Rocky Linux support covers you and when a production environment needs the vendor support RLC Pro adds.</description></item><item><title>RLC Pro AI and RLC Pro Hardened: Which variant fits your needs</title><link>https://itguyeric.com/blog/ciq-rlc-pro-ai-vs-hardened/</link><pubDate>Thu, 04 Jun 2026 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/ciq-rlc-pro-ai-vs-hardened/</guid><description>I wrote this for the CIQ blog: how to choose between RLC Pro AI and RLC Pro Hardened depending on whether you are running AI infrastructure or working under strict compliance.</description></item><item><title>Rocky Linux and the Changing Secure Boot Landscape</title><link>https://itguyeric.com/blog/rocky-secure-boot/</link><pubDate>Tue, 02 Jun 2026 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rocky-secure-boot/</guid><description>I wrote this for Rocky Linux: Microsoft is rolling out new Secure Boot CAs and a KEK. Here is what changes and how to check your systems.</description></item><item><title>Rocky Linux Introduces a Security Repository and Why That Matters</title><link>https://itguyeric.com/blog/rocky-security-repository/</link><pubDate>Thu, 14 May 2026 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rocky-security-repository/</guid><description>I wrote this for Rocky Linux: an opt-in security repository that bridges the gap when a public exploit lands before upstream has a fix.</description></item><item><title>CopyFail (CVE-2026-31431): Kernel Patches Now Available for Rocky Linux</title><link>https://itguyeric.com/blog/rocky-copyfail-cve/</link><pubDate>Mon, 11 May 2026 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rocky-copyfail-cve/</guid><description>I put this out for Rocky Linux: patched kernels are available for 8.10, 9.7, and 10.1 addressing CopyFail. Update and reboot now.</description></item><item><title>Deploy RLC Pro on Google Cloud Marketplace</title><link>https://itguyeric.com/blog/rlc-pro-google-cloud/</link><pubDate>Fri, 10 Apr 2026 10:01:20 -0500</pubDate><guid>https://itguyeric.com/blog/rlc-pro-google-cloud/</guid><description>I wrote this deployment guide for CIQ, walking through how to get RLC Pro up and running on Google Cloud Marketplace from start to a live VM.</description></item><item><title>Deploy RLC Pro on AWS Marketplace</title><link>https://itguyeric.com/blog/deploy-rlc-pro-on-aws-marketplace/</link><pubDate>Wed, 08 Apr 2026 20:46:27 -0500</pubDate><guid>https://itguyeric.com/blog/deploy-rlc-pro-on-aws-marketplace/</guid><description>I wrote this guide for CIQ covering how to get RLC Pro running on AWS, from the Marketplace listing to a live EC2 instance with LTS and FIPS available.</description></item><item><title>CIQ at SCaLE 23x: Trip Report and Recap</title><link>https://itguyeric.com/blog/ciq-scale-23x-trip-report/</link><pubDate>Mon, 16 Mar 2026 09:01:00 -0500</pubDate><guid>https://itguyeric.com/blog/ciq-scale-23x-trip-report/</guid><description>I co-wrote this recap with Michael Young and R. Leigh Hennig covering CIQ&amp;rsquo;s presence at SCaLE 23x in Pasadena, and I was there in person as a speaker.</description></item><item><title>KernelCare: How Teams Stay Secure Without Reboots</title><link>https://itguyeric.com/blog/tuxcare-kernelcare-no-reboots/</link><pubDate>Fri, 23 Jan 2026 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/tuxcare-kernelcare-no-reboots/</guid><description>I wrote this for TuxCare to explain, step by step, how KernelCare applies kernel patches to running memory so teams stay secure without rebooting.</description></item><item><title>The Future of Enterprise Linux: How Collaboration is Shaping the Next Era of Stability and Trust</title><link>https://itguyeric.com/blog/tuxcare-future-enterprise-linux/</link><pubDate>Wed, 21 Jan 2026 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/tuxcare-future-enterprise-linux/</guid><description>I wrote this for TuxCare on how the end of CentOS Linux pushed enterprise Linux toward collaboration, transparency, and community-led stability.</description></item><item><title>Breqwatr Customer Story: TuxCare Radar</title><link>https://itguyeric.com/blog/tuxcare-radar-breqwatr-customer-story/</link><pubDate>Fri, 12 Dec 2025 12:09:47 -0600</pubDate><guid>https://itguyeric.com/blog/tuxcare-radar-breqwatr-customer-story/</guid><description>I produced this customer story for TuxCare, including the written case study and the short video summary below. Breqwatr builds OpenStack clouds for industries where infrastructure genuinely cannot…</description></item><item><title>KernelCare Agent v3: Upgrade Now for Signed Patch Security</title><link>https://itguyeric.com/blog/tuxcare-kernelcare-v3-signed/</link><pubDate>Fri, 12 Dec 2025 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/tuxcare-kernelcare-v3-signed/</guid><description>I wrote this for TuxCare as the signed-patch switchover arrived, urging teams still on older KernelCare agents to upgrade to v3 before coverage gaps appear.</description></item><item><title>How to Build a FIPS + FedRAMP-Ready Environment in 2026: AlmaLinux &amp; Rocky Linux</title><link>https://itguyeric.com/blog/tuxcare-fips-fedramp-2026/</link><pubDate>Mon, 01 Dec 2025 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/tuxcare-fips-fedramp-2026/</guid><description>I wrote this for TuxCare on building a FIPS and FedRAMP-ready environment on community Linux, and how TES fills the gaps the base OS can&amp;rsquo;t.</description></item><item><title>Choosing the Right Enterprise Support Tier with TuxCare</title><link>https://itguyeric.com/blog/tuxcare-support-tiers/</link><pubDate>Fri, 10 Oct 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-support-tiers/</guid><description>I wrote this for TuxCare to break down the Essential, Enhanced, and Custom support tiers so teams can match coverage to their real risk profile.</description></item><item><title>TuxCare vs. Red Hat / SUSE / Canonical / Oracle: A Feature, Cost, and Performance Comparison</title><link>https://itguyeric.com/blog/tuxcare-vs-competitors/</link><pubDate>Wed, 08 Oct 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-vs-competitors/</guid><description>I wrote this for TuxCare: a fact-based comparison of TES against Red Hat, SUSE, Canonical, and Oracle across pricing, rebootless patching, and compliance.</description></item><item><title>KernelCare Agent v3 Has Arrived</title><link>https://itguyeric.com/blog/tuxcare-kernelcare-v3-arrived/</link><pubDate>Wed, 17 Sep 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-kernelcare-v3-arrived/</guid><description>I wrote this for TuxCare to announce KernelCare Agent v3, which introduces signed patch validation while keeping live patching disruption-free.</description></item><item><title>The New TuxCare Enterprise Support: Premium Coverage for AlmaLinux and Rocky Linux</title><link>https://itguyeric.com/blog/tuxcare-enterprise-support-alma-rocky/</link><pubDate>Tue, 16 Sep 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-enterprise-support-alma-rocky/</guid><description>I wrote this for TuxCare on the relaunch of Enterprise Support, which now covers AlmaLinux and Rocky Linux together with 24x7 support and compliance-ready patching.</description></item><item><title>What Is Patch Aware, and Why Should You Care?</title><link>https://itguyeric.com/blog/tuxcare-patch-aware/</link><pubDate>Tue, 02 Sep 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-patch-aware/</guid><description>I wrote this for TuxCare to explain what patch-aware scanning means, why traditional scanners get Linux wrong, and how it makes audits far less painful.</description></item><item><title>Using TuxCare's ePortal as a Proxy for Radar Scans</title><link>https://itguyeric.com/blog/tuxcare-radar-eportal-proxy/</link><pubDate>Tue, 26 Aug 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-radar-eportal-proxy/</guid><description>I wrote this for TuxCare to show how ePortal can proxy Radar scans, so locked-down fleets route data through one internal server instead of each host phoning home.</description></item><item><title>Best Practices for TuxCare Radar Security Scans</title><link>https://itguyeric.com/blog/tuxcare-radar-best-practices/</link><pubDate>Tue, 19 Aug 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-radar-best-practices/</guid><description>I wrote this for TuxCare on building real-world Radar routines, from tagging systems by risk zone to trading bloated spreadsheets for audit-ready reports.</description></item><item><title>What to Expect From Your First Scan with TuxCare Radar</title><link>https://itguyeric.com/blog/tuxcare-radar-first-scan/</link><pubDate>Thu, 14 Aug 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-radar-first-scan/</guid><description>I wrote this for TuxCare to set expectations for your first Radar scan, including why fewer results is a feature, not a bug.</description></item><item><title>Getting Started with Radar, TuxCare's Linux Vulnerability Scanner</title><link>https://itguyeric.com/blog/tuxcare-radar-getting-started/</link><pubDate>Wed, 06 Aug 2025 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/tuxcare-radar-getting-started/</guid><description>I wrote this for TuxCare to introduce Radar, a lightweight, patch-aware CVE scanner for Linux that installs from the command line and skips the false positives.</description></item><item><title>Patching and Security Mitigation | Up and Running with Red Hat Satellite 03</title><link>https://itguyeric.com/blog/satellite-03-patching/</link><pubDate>Fri, 06 Sep 2024 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/satellite-03-patching/</guid><description>In episode three, Richard and I recap the build so far and dig into patching, scheduled jobs, and CVE mitigation with Red Hat Satellite.</description></item><item><title>Passwordless Authentication with Yubico | RHEL Presents Ep. 80</title><link>https://itguyeric.com/blog/rhelpresents-ep80-yubico/</link><pubDate>Thu, 25 Jul 2024 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep80-yubico/</guid><description>Nate Lager and I sit down with Yubico&amp;rsquo;s Jonathan Hanlon and Dave Pham to add FIDO passkeys to RHEL users and log in with a YubiKey through Identity Manager.</description></item><item><title>Techniques to Troubleshoot SELinux | Into the Terminal 103</title><link>https://itguyeric.com/blog/into-the-terminal-ep103-troubleshoot-selinux/</link><pubDate>Fri, 12 Apr 2024 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep103-troubleshoot-selinux/</guid><description>Reading denials from the audit log with &lt;code&gt;ausearch&lt;/code&gt; and &lt;code&gt;sealert&lt;/code&gt;.</description></item><item><title>What's New in RHEL 9.3 and 8.9</title><link>https://itguyeric.com/blog/whats-new-rhel-9-3-8-9/</link><pubDate>Wed, 15 Nov 2023 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/whats-new-rhel-9-3-8-9/</guid><description>The webinar walkthrough of RHEL 9.3 and 8.9: image builder improvements, security and compliance updates, identity management, and easier day-two management from the web console.</description></item><item><title>Building Compliant Images with Image Builder | RHEL Presents Ep. 67</title><link>https://itguyeric.com/blog/rhelpresents-ep67-compliant-images/</link><pubDate>Thu, 19 Oct 2023 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep67-compliant-images/</guid><description>Terry Bowling, Amy Farley, and Mohit Goyal join us to show how Image Builder can bake compliance profiles right into your RHEL golden images.</description></item><item><title>Building Security-Compliant Images with Red Hat Enterprise Linux Image Builder</title><link>https://itguyeric.com/blog/rhel-image-builder-compliant-images/</link><pubDate>Wed, 04 Oct 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rhel-image-builder-compliant-images/</guid><description>I show how to build security-compliant golden images with Image Builder and OpenSCAP profiles.</description></item><item><title>Introduction to Identity Manager | RHEL Presents Ep. 65</title><link>https://itguyeric.com/blog/rhelpresents-ep65-idm/</link><pubDate>Thu, 07 Sep 2023 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep65-idm/</guid><description>Nate Lager introduces Red Hat Identity Manager, the identity, permissions, and access layer that ships with RHEL, with demos and a zero trust framing.</description></item><item><title>Protecting your systems | Modernizing RHEL Management 05</title><link>https://itguyeric.com/blog/modernizing-rhel-05-protecting-systems/</link><pubDate>Wed, 23 Aug 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/modernizing-rhel-05-protecting-systems/</guid><description>The two services that drive a lot of Insights adoption: vulnerability management with security rules and known exploits, plus Yara-based malware detection.</description></item><item><title>Simplifying Patch Management | Modernizing RHEL Management 03</title><link>https://itguyeric.com/blog/modernizing-rhel-03-patch-management/</link><pubDate>Wed, 09 Aug 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/modernizing-rhel-03-patch-management/</guid><description>How Insights handles patching at fleet scale, from date-based patch templates to signed remediation playbooks you can run right from the UI.</description></item><item><title>Management Techniques 101 | Modernizing RHEL Management 01</title><link>https://itguyeric.com/blog/modernizing-rhel-01-getting-started/</link><pubDate>Wed, 26 Jul 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/modernizing-rhel-01-getting-started/</guid><description>The kickoff episode where John Spinks and I set the baseline on what Red Hat Insights is and how to get your systems connected.</description></item><item><title>Malware Detection with Red Hat Insights | RHEL Presents Ep. 55</title><link>https://itguyeric.com/blog/rhelpresents-ep55-malware-detection-insights/</link><pubDate>Wed, 05 Apr 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep55-malware-detection-insights/</guid><description>RHEL Presents 55 on Insights malware detection.</description></item><item><title>Security: System Auditing | Into the Terminal 64</title><link>https://itguyeric.com/blog/into-the-terminal-ep64-system-auditing/</link><pubDate>Fri, 31 Mar 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep64-system-auditing/</guid><description>Configuring &lt;code&gt;auditd&lt;/code&gt; and writing audit rules.</description></item><item><title>Security: Configuring Sudo Access | Into the Terminal 62</title><link>https://itguyeric.com/blog/into-the-terminal-ep62-sudo-access/</link><pubDate>Fri, 17 Mar 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep62-sudo-access/</guid><description>Writing safe rules with &lt;code&gt;visudo&lt;/code&gt; and &lt;code&gt;sudoers.d&lt;/code&gt;.</description></item><item><title>Security: CVE Mitigation | Into the Terminal 60</title><link>https://itguyeric.com/blog/into-the-terminal-ep60-cve-mitigation/</link><pubDate>Fri, 03 Mar 2023 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep60-cve-mitigation/</guid><description>Assessing whether a CVE actually affects your systems.</description></item><item><title>Working with GPG Keys | Into the Terminal 38</title><link>https://itguyeric.com/blog/into-the-terminal-ep38-gpg-keys/</link><pubDate>Fri, 26 Aug 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep38-gpg-keys/</guid><description>Generating keys and signing or verifying data.</description></item><item><title>Overcoming vulnerabilities with live kernel patching in Red Hat Enterprise Linux 8.5</title><link>https://itguyeric.com/blog/overcoming-vulnerabilities-with-live-kernel-patching-in-red-hat-enterprise-linux-8-5/</link><pubDate>Thu, 18 Aug 2022 07:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/overcoming-vulnerabilities-with-live-kernel-patching-in-red-hat-enterprise-linux-8-5/</guid><description>IT operations folks strive to not only maximize uptime but also keep systems patched. These might seem like competing goals, but we&amp;rsquo;re here to help with Live kernel patching in Red Hat Enterprise…</description></item><item><title>SSH Key Management | Into the Terminal 36</title><link>https://itguyeric.com/blog/into-the-terminal-ep36-ssh-key-management/</link><pubDate>Fri, 05 Aug 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep36-ssh-key-management/</guid><description>Generating key pairs and choosing a good algorithm.</description></item><item><title>Special Permissions and Access Control Lists | Into the Terminal 34</title><link>https://itguyeric.com/blog/into-the-terminal-ep34-special-permissions-acls/</link><pubDate>Fri, 22 Jul 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep34-special-permissions-acls/</guid><description>setuid, setgid, and the sticky bit, and why they matter.</description></item><item><title>What's New in RHEL 9 | RHEL Presents Ep. 38</title><link>https://itguyeric.com/blog/rhelpresents-ep38-whats-new-rhel-9/</link><pubDate>Wed, 01 Jun 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep38-whats-new-rhel-9/</guid><description>RHEL Presents 38 on the RHEL 9 release.</description></item><item><title>Red Hat Insights | Into the Terminal 26</title><link>https://itguyeric.com/blog/into-the-terminal-ep26-red-hat-insights/</link><pubDate>Thu, 26 May 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep26-red-hat-insights/</guid><description>Registering systems and reading advisor recommendations.</description></item><item><title>Securing Data at Rest with LUKS and NBDE | RHEL Presents Ep. 36</title><link>https://itguyeric.com/blog/rhelpresents-ep36-luks-nbde/</link><pubDate>Wed, 04 May 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/rhelpresents-ep36-luks-nbde/</guid><description>RHEL Presents 36 on LUKS disk encryption and NBDE.</description></item><item><title>Session Recording | Into the Terminal 23</title><link>https://itguyeric.com/blog/into-the-terminal-ep23-session-recording/</link><pubDate>Thu, 28 Apr 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep23-session-recording/</guid><description>Capturing terminal sessions with &lt;code&gt;tlog&lt;/code&gt; and SSSD.</description></item><item><title>SELinux Networking and Booleans | Into the Terminal 21</title><link>https://itguyeric.com/blog/into-the-terminal-ep21-selinux-booleans/</link><pubDate>Thu, 14 Apr 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep21-selinux-booleans/</guid><description>How SELinux handles ports and network access.</description></item><item><title>Patching Practices | Into the Terminal 19</title><link>https://itguyeric.com/blog/into-the-terminal-ep19-patching-practices/</link><pubDate>Thu, 31 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep19-patching-practices/</guid><description>Applying updates with &lt;code&gt;dnf&lt;/code&gt; and understanding what changed.</description></item><item><title>SELinux | Into the Terminal 14</title><link>https://itguyeric.com/blog/into-the-terminal-ep14-selinux/</link><pubDate>Thu, 24 Mar 2022 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep14-selinux/</guid><description>SELinux on RHEL without the fear: enforcing vs permissive vs disabled, how contexts and booleans work, and how to read a denial and fix it the right way.</description></item><item><title>Firewall | Into the Terminal 13</title><link>https://itguyeric.com/blog/into-the-terminal-ep13-firewall/</link><pubDate>Wed, 23 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep13-firewall/</guid><description>Zones, services, and ports in &lt;code&gt;firewall-cmd&lt;/code&gt;.</description></item><item><title>sudo and su | Into the Terminal 12</title><link>https://itguyeric.com/blog/into-the-terminal-ep12-sudo-and-su/</link><pubDate>Tue, 22 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep12-sudo-and-su/</guid><description>The difference between &lt;code&gt;su&lt;/code&gt; and &lt;code&gt;sudo&lt;/code&gt;.</description></item><item><title>Managing SSH | Into the Terminal 05</title><link>https://itguyeric.com/blog/into-the-terminal-ep05-managing-ssh/</link><pubDate>Fri, 11 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep05-managing-ssh/</guid><description>Connecting and configuring the client and server sides.</description></item><item><title>File Permissions | Into the Terminal 02</title><link>https://itguyeric.com/blog/into-the-terminal-ep02-file-permissions/</link><pubDate>Tue, 08 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep02-file-permissions/</guid><description>Reading &lt;code&gt;ls -l&lt;/code&gt; output without guessing.</description></item><item><title>Users and Groups | Into the Terminal 01</title><link>https://itguyeric.com/blog/into-the-terminal-ep01-users-and-groups/</link><pubDate>Mon, 07 Mar 2022 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/into-the-terminal-ep01-users-and-groups/</guid><description>Creating and modifying accounts with &lt;code&gt;useradd&lt;/code&gt;, &lt;code&gt;usermod&lt;/code&gt;, and &lt;code&gt;passwd&lt;/code&gt;.</description></item><item><title>Security Intelligence, RiskIQ | Sudo Show 28</title><link>https://itguyeric.com/blog/sudo-show-28-riskiq/</link><pubDate>Thu, 24 Jun 2021 09:00:00 -0500</pubDate><guid>https://itguyeric.com/blog/sudo-show-28-riskiq/</guid><description>Sudo Show 28 on security intelligence and attack-surface management.</description></item><item><title>Sunburst and Securing Your Supply Chain | Sudo Show 19</title><link>https://itguyeric.com/blog/sudo-show-19-securing-supply-chain/</link><pubDate>Thu, 18 Feb 2021 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/sudo-show-19-securing-supply-chain/</guid><description>Sudo Show 19 on the Sunburst attack and software supply-chain security.</description></item><item><title>Sudo Vulnerability Discovered: How to Protect Your System From Baron Samedi</title><link>https://itguyeric.com/blog/sudo-vulnerability-discovered-how-to-protect-your-system/</link><pubDate>Thu, 28 Jan 2021 16:46:00 -0600</pubDate><guid>https://itguyeric.com/blog/sudo-vulnerability-discovered-how-to-protect-your-system/</guid><description>We tend to associate free with good. That&amp;rsquo;s not the case though when what is free is unauthorized root-level access to your Linux systems! On January 26, 2021, a vulnerability, CVE-2021-3156, was…</description></item><item><title>Looking at CrowdSec | Sudo Show 14</title><link>https://itguyeric.com/blog/sudo-show-14-crowdsec/</link><pubDate>Mon, 14 Dec 2020 09:00:00 -0600</pubDate><guid>https://itguyeric.com/blog/sudo-show-14-crowdsec/</guid><description>Sudo Show 14 on CrowdSec and collaborative, open-source security.</description></item></channel></rss>