LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 11-11-2003, 12:09 PM   #1
another2
Member
 
Registered: Jun 2003
Distribution: Debian sid
Posts: 69

Rep: Reputation: 15
need recommendations on security...


okay, i have my linux box running 2 services, sshd and vsftpd on their default ports. i compiled iptables in my kernel, i'm about to set up my firewall to block everything not on these two ports,

now here's the question: how do i know if my system is suseptable to a buffer overflow? basically, i have a good idea of how to set up a system (diable services, keep up to date, run a firewall) but, how would i try to break into my own system? does anyone have any recommended reading. what are ways to stop buffer overflows?

disclaimer: this is just my personal box, nothing mission critical or holding sensitive info.
 
Old 11-11-2003, 12:17 PM   #2
LogicG8
Member
 
Registered: Jun 2003
Location: Long Island, NY
Distribution: Gentoo Unstable (what a misnomer)
Posts: 380

Rep: Reputation: 30

Well if you want to try and break into your own box
you can

a) search for a known exploit for the
software you are running
http://www.cert.org/advisories/

b) get the source
code to the programs you are running and look for
mistakes that could lead to a buffer overflow or other
exploitable mistake.

This article will help you craft your own exploits:
http://www.cs.ucsb.edu/~jzhou/security/overflow.html

Other things to do are subscribe to security mailing lists

Read stuff like this:
http://www.nic.com/~dave/SecurityAdm...dminGuide.html
If you aren't following the advice there see why you didn't
and see if you can do something you shouldn't be able to.
If you can, see what that lets you do. Play around.
If you learn to think like an

Just do everyone a favor, if you do find an exploitable flaw
send a patch to the project.

Last edited by LogicG8; 11-11-2003 at 12:36 PM.
 
Old 11-11-2003, 02:09 PM   #3
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Rep: Reputation: 45
You should secure your services. For vsftpd and SSH you will get useful in-depth knowledge at my website (www.linux-corner.net)
 
Old 11-11-2003, 08:22 PM   #4
another2
Member
 
Registered: Jun 2003
Distribution: Debian sid
Posts: 69

Original Poster
Rep: Reputation: 15
thanks, i bookmarked all links, i'll start taking a look this weekend (got exams this week).
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
help needed in security ,vonarabilities ,loopholes in linux security haseebnazar Linux - Security 2 11-23-2005 07:16 PM
[Security Questions] Last Login, how good is this feature for security breach info? t3gah Linux - Security 2 06-14-2005 01:02 AM
Some recommendations, please shilo Linux - Hardware 5 03-08-2005 10:36 PM
todays requirements regarding security (not limited to linux security) markus1982 Linux - Security 8 04-25-2004 10:58 PM
Linux security Vs Windows security keene General 50 11-01-2003 11:22 PM


All times are GMT -5. The time now is 08:42 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration