|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
Linux is capable of high-end security; however, the out-of-the-box
configurations must be altered to meet the security needs of most businesses
with an Internet presence.This article shows you the steps for securing a Linux
system called hardening the server using both manual methods and open source
security solutions. The hardening process focuses on the operating system, and
is important regardless of the services offered by the server.The steps will
vary slightly between services, such as e-mail and Hypertext Transfer Protocol
(HTTP), but are essential for protecting any server that is connected to a
network, especially the Internet. Hardening the operating system allows the
server to operate effi- ciently and securely.
This article includes the
essential steps an administrator must follow to harden a Unix system;
specifically, a Red Hat Linux system.These steps include updating the system,
disabling unnecessary services, locking down ports, logging, and maintenance.
Open source programs allow administrators to automate these processes using
Bastille, sudo, logging enhancers such as SWATCH, and antivirus software. Before
you implement these programs, you should first understand how to harden a system
manually.
 Be first to comment this article |  Add as favourites (182) | Read more...
|
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
Hackers have computers too and want to keep their own machines free of intrusion
from the Internet. Paradoxically, these computers may be the most secure
computers on the Internet, because the hackers use free software that they can
examine for security problems, they are the first to discover (or create)
security weaknesses, and they fix their own systems as soon as loopholes are
discovered. They share the security fixes with anyone who wants them, and you
can take advantage of this fast response to new threats in your own network by
using the same software they do. Free firewalls often suffer from a few of the
same class problems: Weak or missing logging and alerting features No real-time
firewall monitoring capability Weak or missing graphical user interface
Difficult command prompt-based configuration
Be first to comment this article | Add as favourites (199) | Read more... |
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
The idea behind chroot is fairly simple. When you run BIND (or any other process) in a chroot jail, the process is simply unable to see any part of the filesystem outside the jail. For example, in this document, we'll set BIND up to run chrooted to the directory /chroot/named. Well, to BIND, the contents of this directory will appear to be /, the root directory. Nothing outside this directory will be accessible to it. You've probably encounted a chroot jail before, if you've ever ftped into a public system.
Be first to comment this article | Add as favourites (177) | Read more... |
|
|
Written by LE Webmaster
|
|
Wednesday, 26 January 2005 |
This article is meant for those who are going to implement firewall using OpenBSD. The main purpose for this article is to protect servers (such as web, mail, DNS and others) within a firewalled network.
This article is based on wanvadder's personal experiences and wanvadder cannot guarantee it will suit all system that you have. Fell free to email wanvadder any comments, feedback or any other issues concerning this article. Co-operations from everybody are highly appreciated.
Be first to comment this article | Add as favourites (183) | Read more... |
|
|
Written by machex
|
|
Wednesday, 26 January 2005 |
This article shows in a step-by-step fashion, how to install and configure the Apache 1.3.x Web server in order to mitigate or avoid successful break-in when new vulnerabilities in this software are found
Be first to comment this article | Add as favourites (203) | Read more... |
|
|
Written by void
|
|
Wednesday, 26 January 2005 |
Over the past couple of years, steganography has been the source of a lot of discussion, particularly as it was suspected that terrorists connected with the September 11 attacks might have used it for covert communications. While no such connection has been proven, the concern points out the effectiveness of steganography as a means of obscuring data. Indeed, along with encryption, steganography is one of the fundamental ways by which data can be kept confidential. This article will offer a brief introductory discussion of steganography: what it is, how it can be used, and the true implications it can have on information security.
Be first to comment this article | Add as favourites (320) | Read more... |
|
|
|
<< Start < Prev 1 2 3 Next > End >>
|
