LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 04-24-2004, 11:12 AM   #1
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Rep: Reputation: 46
todays requirements regarding security (not limited to linux security)


I'd like to hear your requirements for today's security. This should not be limited to linux security, network security and physical security.

Everybody is welcomed to post his/her comments.
 
Old 04-24-2004, 11:20 AM   #2
klausi
LQ Newbie
 
Registered: Apr 2004
Posts: 2

Rep: Reputation: 0
Weel, after i´ve asked my english book, what about Gamerserver´s in Chroot´s ?

Is there much work to do to chroot e.g. an Steam Cstrike 1.6 Server ?
 
Old 04-24-2004, 11:27 AM   #3
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Original Poster
Rep: Reputation: 46
Quote:
Originally posted by klausi
Weel, after i´ve asked my english book, what about Gamerserver´s in Chroot´s ?

Is there much work to do to chroot e.g. an Steam Cstrike 1.6 Server ?
Personally I consider chroots - if implemented correctly of course - as an additional layer of security. The amount of work required to chroot differs greatly from application to application. Think of statically linked binaries (MySQL for instance as a popular example) and of non-statically linked ones.
 
Old 04-24-2004, 11:28 AM   #4
klausi
LQ Newbie
 
Registered: Apr 2004
Posts: 2

Rep: Reputation: 0
Cstrike issnt using sql i guess ;-)
I think, if i chroot a user and install cstrike with this, its chrooted by default..
 
Old 04-24-2004, 11:31 AM   #5
markus1982
Senior Member
 
Registered: Aug 2002
Location: Stuttgart (Germany)
Distribution: Debian/GNU Linux
Posts: 1,467

Original Poster
Rep: Reputation: 46
Quote:
Originally posted by klausi
Cstrike issnt using sql i guess ;-)
I think, if i chroot a user and install cstrike with this, its chrooted by default..
I never meant that CS uses SQL, more the way libraries are linked to binaries: statically or non-statically. Non-statically linked libs need to be copied to the chroot in order for the binary (daemon) to work...
 
Old 04-24-2004, 06:59 PM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,118
Blog Entries: 54

Rep: Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786
I'd like to hear your requirements for today's security. This should not be limited to linux security, network security and physical security.
Maybe you could break open the discussion by voicing your own opinion on things? Maybe focus on some aspects and ask less broad questions?
 
Old 04-24-2004, 10:01 PM   #7
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 69
Today's requirements for security are no different than yesterday's, or last year's, or 1970's... The only thing that changes is the technology available, but the principles never change.

Given the glut of articles, guides, policies, etc written on this very same subject I'm not sure how an informal discussion adds anything (although you're certainly welcome to gather input).
 
Old 04-25-2004, 03:40 PM   #8
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,118
Blog Entries: 54

Rep: Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786Reputation: 2786
I'm not sure how an informal discussion adds anything
Well, FWIW, I favour discussion, so lets get something on the table to discuss, shall we?
 
Old 04-25-2004, 10:58 PM   #9
witeshark
Member
 
Registered: Jan 2004
Location: Miami FL
Distribution: Mac OS X 10.4.11 Ubuntu 12.04 LTS
Posts: 429

Rep: Reputation: 30
Quote:
Originally posted by chort
Today's requirements for security are no different than yesterday's, or last year's, or 1970's... The only thing that changes is the technology available, but the principles never change.

Given the glut of articles, guides, policies, etc written on this very same subject I'm not sure how an informal discussion adds anything (although you're certainly welcome to gather input).
This is of course a very good point. Now to make this progress, I suggest discussion on the varied ways firewalls can be implemented. Hardware (router) firewall as opposed to software (iptables and rules). In both cases, the simple fact remains that if a known open port is accessed and permissions can be acquired, there is an obvious risk. To admin any system with that in mind should narrow down security rather well, I think
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
help needed in security ,vonarabilities ,loopholes in linux security haseebnazar Linux - Security 2 11-23-2005 07:16 PM
security level in mandriva 2005 limited edition r0ssar00 Linux - Distributions 6 06-22-2005 12:27 PM
[Security Questions] Last Login, how good is this feature for security breach info? t3gah Linux - Security 2 06-14-2005 01:02 AM
Linux security Vs Windows security keene General 50 11-01-2003 11:22 PM
Slackware Security Update: GDM security update phoeniXflame Slackware 2 08-26-2003 04:21 PM


All times are GMT -5. The time now is 03:32 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration