LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-09-2004, 05:41 AM   #1
ust
Senior Member
 
Registered: Mar 2003
Location: fasdf
Distribution: Debian / Suse /RHEL
Posts: 1,130

Rep: Reputation: 30
check the security hole


I want to know is there any secruity hole in my system , eg . the service port released , insecure files , files permission .... etc , is there any software can help to check it ? thx
 
Old 09-09-2004, 06:02 AM   #2
ppuru
Senior Member
 
Registered: Mar 2003
Location: Beautiful BC
Distribution: RedHat & clones, Slackware, SuSE, OpenBSD
Posts: 1,791

Rep: Reputation: 50
This has been asked several times ....

You can use nmap, nessus

You can use the services of grc.com, sygate.com
 
Old 09-09-2004, 06:11 AM   #3
ust
Senior Member
 
Registered: Mar 2003
Location: fasdf
Distribution: Debian / Suse /RHEL
Posts: 1,130

Original Poster
Rep: Reputation: 30
thx reply , i never have experience to use this tools , before I run it , what I need to prepare , eg. stop the services , backup the data files .. etc.
besides , except scan the system , will the tools update any files in my system ? if yes , I think I need backup sth first .
 
Old 09-09-2004, 06:33 AM   #4
ppuru
Senior Member
 
Registered: Mar 2003
Location: Beautiful BC
Distribution: RedHat & clones, Slackware, SuSE, OpenBSD
Posts: 1,791

Rep: Reputation: 50
well you don't really need to backup files to install and run nmap. With nessus, you will have to start the nessusd daemon and run the nessus client.

grc.com , sygate.com will scan your pc from outside your firewall and determine weaknesses, if any.

Last edited by ppuru; 09-09-2004 at 06:34 AM.
 
Old 09-09-2004, 09:42 AM   #5
ust
Senior Member
 
Registered: Mar 2003
Location: fasdf
Distribution: Debian / Suse /RHEL
Posts: 1,130

Original Poster
Rep: Reputation: 30
the nmap seems come with the rh8 , can I use it , or d/l one from the internet ? thx
 
Old 09-09-2004, 10:27 AM   #6
Marius2
Member
 
Registered: Jan 2004
Location: Munich
Distribution: SuSE 9.2, 10.2, 10.3, knoppix
Posts: 276

Rep: Reputation: 31
Just use the nmap which came with your rh. Note: If you don't want to use the
command line version, just start a shell under your favourite gui and type
'xnmap' for a graphical version.

HTH
 
Old 09-10-2004, 06:42 PM   #7
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,361
Blog Entries: 55

Rep: Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547Reputation: 3547
Talking network testing, Nessus in this case definately will give you more feedback on what's actually running, but IMHO for securing a system you should start inside-out. If host security is bad, then whatever you do to secure network access isn't built on a solid basis. For testing before and during securing a system I prefer using my own checklist and general purpose tools like Tiger and Lsat (USAT on Sourceforge). Don't forget to grab a CERT checklist as it'll most definately will save you time. Come to think of it, some people actually might like to use Bastille-Linux, and if you're new to Linux it'll save you even more time.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
find security hole... os2 Linux - Security 5 10-14-2005 12:16 AM
panther security hole??? feetyouwell General 5 04-19-2004 11:03 AM
security hole or convenience? carboncopy Slackware 3 08-13-2003 04:07 AM
Security Hole -Samba dvong3 Linux - Security 1 03-21-2003 03:38 PM
Security Hole in PHP 4.3.0 Crashed_Again Linux - Security 1 03-01-2003 04:29 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:51 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration