LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-18-2006, 12:17 AM   #1
hank43
Member
 
Registered: Nov 2003
Distribution: centos 4.4
Posts: 94

Rep: Reputation: 15
how do you know when it is secure enough?


As the title asks, how do you know when it is secure enough? I've done all the basics, the next step would be to chroot the services like apache & mysql but i wonder if i honestly need to do it. Why stop there, I can strengthen chroot with grsecurity. When is it enough?
 
Old 09-18-2006, 12:24 AM   #2
musicman_ace
Senior Member
 
Registered: May 2001
Location: Indiana
Distribution: Gentoo, Debian, RHEL, Slack
Posts: 1,555

Rep: Reputation: 46
#1 Security doesn't exist if you are plugged into a network.
There is never 'enough' security. At some point you just have to stop implementing tactics.

That said, I'll try to give a checklist of security related things:

Are all packages patched.
Is your kernel up to date. (can you remove unneeded features)
What do port scanners reveil.
What does a nessus scan reveil.
Is your IPTables allowing only the required traffic IN and OUT.
As you've stated, Can chroot be implemented.
Can a security policy be implemented. (grsec, selinux)
Are daemons running as non-priveledged accounts.
Are you monitoring your logs. What do they reveil.
Can you disable certain daemons from running. (only enable what is required)

Last edited by musicman_ace; 09-18-2006 at 12:26 AM.
 
Old 09-18-2006, 02:37 AM   #3
kingka
Member
 
Registered: Aug 2003
Location: mechelen (belgium)
Distribution: debian gnu/linux (sid)
Posts: 99

Rep: Reputation: 15
Install tripwire and see if they get in

Keeping an eye on your system (logfiles, using tripwire, etc) after securing it is most important. Further tighting it down can be a great learning opportunity (that's why I do it) but unless you're on the edge of a major corporate network I think the added value is minimal.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
VSFTPD with secure & non-secure logins Ricci Graham Linux - Software 6 02-25-2020 12:49 AM
how can I secure my nis server ?can I use openSSL to secure it form sniffing ? abhi_raj Linux - Networking 1 07-10-2006 07:19 AM
LXer: University of Michigan Selects SSH Tectia for Secure System Administration and Secure File Transfers LXer Syndicated Linux News 0 04-25-2006 01:54 AM
Secure email (SSL vs. secure authentication) jrdioko Linux - Newbie 2 11-28-2004 02:39 PM
vsftpd very very secure, so secure i can't use it... baronsam Linux - Networking 4 10-06-2003 07:12 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration