LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-13-2007, 02:41 AM   #1
ahm_irf
Member
 
Registered: Feb 2007
Posts: 37

Rep: Reputation: 15
Information required about Bastille-linux


1) I need to know advantages and disadvatages of Bastille-linux

2) how sound Bastille-linux is in terms of intrusion detection. Is there any criteria through which we can compare or measure its soundness.

3) As I know it is portable for few linux flavors. Is there a way we can make it portable for other operating systems as well.

4) Can one suggest me any good detailed technical documentation about Bastille-linux.
 
Old 06-13-2007, 03:18 AM   #2
Simon Bridge
LQ Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
For those who don't know, Bastille Linux is a
Quote:
Hardening and Reporting/Auditing Program which enhances the security of a Linux box, by configuring daemons, system settings and firewalling. It currently functions on Red Hat (Fedora Core, Legacy and Enterprise) SuSE, Gentoo, Mandra
... Note, linux is pretty secure to start with and most of us have experimented with ways to harden it further. Written in perl, it simply, as stated, modifies existing security measures by fiddling their scripts and config files. There is a review here and an interveiw [http://slashdot.org/interviews/00/11/08/1616204.shtml]here[/url]. Both excellent.
Quote:
1) I need to know advantages and disadvatages of Bastille-linux
These depend on the exact use you have in mind. In general, disadvantages include reduced flexability and that someone you don't know has done stuff you don't understand to your security. (There is no substitute for knowledge here. However, run interactively, the system can teach you a lot about your system and security.) The advantages are the same of course.
Quote:
2) how sound Bastille-linux is in terms of intrusion detection. Is there any criteria through which we can compare or measure its soundness.
Give me a benchmark... what do you mean by "sound"? Mostly in keeps track of the "system state" to aid sysadmins in detecting intrusions. There is a problem in that it is quite difficult to define "intrusion": people attempt to exploit weaknesses in security so that they have permission to do something you didn't intend. This is difficult to distinguish from a regular user innocently acting with permission you gave them.
Quote:
3) As I know it is portable for few linux flavors. Is there a way we can make it portable for other operating systems as well.
Yes. It is written in perl and works by editing existing configuration files. Linux distributions include their own config files and daemons as well as the generic. All you need to do is work out which ones are different for the distro you want to support.
Quote:
4) Can one suggest me any good detailed technical documentation about Bastille-Linux.
The first stop is the project website... the tarball contains some documentation... and the source code has useful comments about what it is doing at each stage. The software interactive mode is deliberately designed to be educational.

It is not a greatly technical bit of software. It explains what it is up to... more detail is available from the target component (i.e. Apache) documentation.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
nis information required the2k Linux - Networking 1 11-27-2006 06:44 PM
boot log information required! xcr Linux - General 4 03-05-2006 03:04 PM
VI Information Required DaveyB Programming 2 11-10-2004 10:18 AM
some very basic information required sixth_sense Linux - Newbie 2 04-18-2004 12:39 AM
lsmod / information required bibilit Linux - Software 1 12-27-2003 11:02 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:53 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration