Hello to the world of Linux,
I am a newbie in the world of linux and have decided to setup my own server with RH es 4. I have been hunting on the old mighty google for guidelines and examples for securing a Linux enviroment. So here is my question ( I am not expecting any body to spoon feed me the information, but pointing me in the right direction would be great):
1. I want to set iptables(firewall) on the server and run portsentry, been hunting for some information, but everything I found is explained in a way that I am not able to understand. Does anybody know of a site where these things are explained in the straight forwardest way possible or is there an ulternative for iptables?
2. I was also been looking at the IDS option, but for a newbie this is also a bit confusing
3. I have once found a pdf doc that explained how you can manually find intrusion using the 'ps', 'last' and other commands to look at history of directorys and files last changed and work on, If anybody can point me to where I can find something like this again it would be apreciated.
Any help would be apreciated and all I am asking is to be pointed in the right direction. I am a Windows Tech converted into Linux junky, so going into deep waters here.