LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 01-01-2005, 02:18 PM   #1
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
Security-focused Resolutions for the New Year


So 2005 has arrived and it's that time of the year when we come up with some form of New Year's resolution designed to improve on our lives. Year after year, you come up with some tired and busted resolution like to quit smoking, get in shape, or join a cult, only to fail miserably within a month or two. So why not make a resolution that you'll actually follow through on, and includes linux as well! So here are a few suggestions:

1. If you're using a Linux distribution that's reached it's End-of-Life and is no longer supported, upgrade to a newer version. For those of you running Redhat 9 and earlier there are some serious security vulnerabilities in those releases that require fixing. The Fedora lineage appers to be becoming more stable and now includes a working SELinux framework by default, all while maintaining the same "look and feel" as RH 8 and 9. Plus most of the other major distros are now using the 2.6 kernel which gives a significant performance and speed increase over the 2.4 series.

2. Keep your system patched for 2005! At least 90% of the security incidents that we see here are the result of an intruder entering via a known exploit that has a security patch available for it. Several distros now offer automated updates with tools like yum, you, or up2date that make keeping your system updated even easier. It's argueably THE most effective means to prevent an intrusion, so why wait?

3. Install a File Integrity Detection System on all your new installs this year. These are very simple tools that keep a database of cryptographic checksum of all critical system files and periodically compares current checksums to the database values. If an intrusion were to occur and a rootkit or trojaned binaries installed, the file integrity scanner would alert you to the change and immediately allow you to prevent any further damage (compromise of other systems, password theft, credit-card and identity theft). For those interested, checkout tripwire, AIDE, AFICK as well as others listed in the Security References Thread

Hope everyone has a Happy and Safe 2005!
 
Old 01-02-2005, 05:33 PM   #2
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,539

Rep: Reputation: 149Reputation: 149
4. Read your logs.
 
Old 01-03-2005, 08:50 AM   #3
macnut
LQ Newbie
 
Registered: Sep 2004
Posts: 18

Rep: Reputation: 0
But would reading them really be that useful when a successful cracker alters or deletes logs anyway?
 
Old 01-03-2005, 06:59 PM   #4
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,539

Rep: Reputation: 149Reputation: 149
*After* your machine is compromised you try to find out what happend and reinstall. Logs are important *before*. They show you (or at least should) all attempts, tendencies etc.
 
Old 01-03-2005, 10:50 PM   #5
jduke
LQ Newbie
 
Registered: Apr 2004
Location: Clarkston, MI, USA
Distribution: Ubuntu
Posts: 13

Rep: Reputation: 0
5) Continue to read this forum on a regular basis. Having just made the transition from an 'out of the box' router/firewall to a Linux based solution, I had a million questions about setup, security and overall configuration. I usually find my answer here. Happy New Year to all....

- Joe
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Live CD focused on backups tcv Linux - Distributions 1 12-27-2004 12:32 AM
Award: Security app of the year KayJay LQ Suggestions & Feedback 1 01-29-2003 11:04 PM


All times are GMT -5. The time now is 04:55 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration