This project sounds great. I cannot offer to write anything for the project because i'm still a newbie. One thing that would be nice to offer would be to have a combined package of all the tools you need for the security. For example, to have all the security programs all in one spot. I know the project is related to writing the tutorial/how-to on linux. I think this could be a nice way to make the securing of a linux system easier. It would be similar to haveing Norton for the linux system. I think the ideal thing to have would be a Security GUI that could ultimatly secure the linux system all in one tool. This would be the best way to have a newbie secure a system. It also has the downside of the person never learning the CLI commands of linux and takes the actual power of the linux away. It is just a thought though. But I would be willing to DL the tools for the security and package them together. If someone sends me a list on what to DL I will put it together. Does this how-to plan on telling how to use the different tools? I am looking forward to be able to see the end result of this project. What I basically would like to do is have all the tools combined in one location/download to accompany the tutorial. Let me know if you guys think this is a good idea.

unSpawn

I am no expert but is this the kind of thing you would like for us newbies?

http://www.apcmag.com/apc/v3.nsf/0/3...256DAA0006FAC6

This sounds like a great idea, but I am a bit snafu when it comes to exactly what you are looking for. First off, making a "I'm a 4-year old, baby feed me" manual for "Linux" in general seems like a farce. I mean, which distrobution(s) were you considering? Which kernel version? Which secrutiy packages? Just iptables and netfilters or something else? Who decides which and which is the easiest? I could list more, but I would like to reiterate AceTech747 point on a different perspective, there is a difference with the Linux CLI as it is not the same on all distrobutions. So, is this a specific manual for a specific distro? Or, is this for the most popular distrobutions?

Like I said, I could list more... but let's not. I think you get the point.

Now, stepping away from my formal comments above, I would absolutely LOVE to see something like this actually come to life and would be willing to help it breathe. Reason being, I utterly hate google, google, gah. Not that I do not find what I am looking for, it's the answers I find that are rather puzzling. So, having a "newbie guide" that actually explains it all, in ONE place, would be excellent and has been what I have been looking for.

So finally, please pm me or email me and I would love to help with this.

-deb
debnuxian@comcast.net

Heres a nice small article on how your web browser interacts with DNS and TCP/IP and all of that other juicy stuff

http://www.tldp.org/HOWTO/Unix-and-I...html#transport

All who joined in, please subscribe to the mailinglist and voice support, add docs or voice anger (for not finishing it RSN).
See you there.

This sounds like a fantastic idea. I have glanced through the posts and have this input.
I have used computers for 20years. The last 15 on windows. I want to use linux. If you want my level of knowledge on linux, this is it. I have discovered that i need to let linux know the path, aka, DOS. I need to compile the software i need to install (kpackage?).
Discussion about what level do you start at is, do you start with the explanation of the above?. I bought a book "Linux in no Time" by Ute Hertzog. It starts of by how to use a mouse! not that basic!, page 350 is what software is installed on the KDE desktop. This is very basic. Chapter 10 is OK, Linux & the Internet. Chapter 11 Networking with Linux including Samba. Getting better.
I can search through Google and download many guides etc, destroy a small rain forest to print it out and it assumes that i know some basic linux. Back to google, print .. you get the idea!!
An earlier post hit it on the head. Giving a step by step guide is OK but teach the process, you have a chance of understanding. A workthrough explaining why for each section would be excellent. If you want to know anything else, go find out!
All i want to do is use my Linux box, connect to ADSL and distribute it to the other computers on the network. Include a Firewall, Virus scanning and mail serving. I have a box waiting and ready to receive any linux distro which can give me the above. I would love to be a guinea pig for any initial attempt and will feed back where i struggle.

Bunch of posts. Did not read them through of course. So, dunno if below is a duplicate.

I might suggest justlinux.com. Lots'a small articles there. Learned a lot myself.
www.justlinux.com/nhf/security

Watchdog


RTFM'ing always help..
Even if so to raise more questions, the correct ones at least !

This Forum has been great.
The wealth of good links to useful documents has helped this newbie a lot, even before your HOWTO project has started.
With so many fronts to learn on you don't know where to start. The problem is that sifting through the (web filler) that doesn't relate to your problem absorbs all your learning time. As far of what distro to base examples on, I think as long as it's declared, it is not such a great problem, any example is a help. I would rather sift through pages of the wanted subject, on a different distro, at least you feel like you have got closer to an answer. Please have a good url index, it saves so much sifting time .
Happy to help proof reading .

Hi everybody, I subscribed to the mailing list, and haven't seen any posts, is this project still on?

Hi everybody, I subscribed to the mailing list, and haven't seen any posts, is this project still on?
It's slumbering at the moment, I'm desperately looking for spare time to allocate to this project.
If you care, hold on please.

I found this basic how to on slack security, do you think that it fits what you're looking for?

http://www.oldskoolphreak.com/tfiles/hack/slack_sec.txt

plan9

As to aus9 input. The info on link http://www.apcmag.com/apc/v3.nsf/0/3...256DAA0006FAC6 is not easy to understand for a newbie

i think the best we can do is to find good sites that will help us..

as i discuss before we need to know all services in redhat linux .how to deny user,allow user, allow computer, deny computer.. this is our focus only redhat linux,..... this is also were the exams lies. our main goal here we want to be effective in supporting and be certified redhat linux....

Greetings Earthlings,

I've been watching this thread for some time now. While I am not a *total* newbie to linux (i've been using it on and off for several years) I always got frustrated whenever I attempted to make one of my systems more secure. Now I have yet another install and this time I am determined to learn how to button down my slack-current box. To this end, I am willing to create the "newbie" documentation that is being spoken of here (or at least charge blindly into it). I have experience with technical documentation and I think that, in this case, a newbie might be the best person to attack this problem.

A big part of the problem, as I see it, is where to begin! Obvioulsy, it is best to plan ahead when thinking of securing a linux box (file partitions come to mind). I think that a section on basic commands is very important and should not be left out. I think that for the first draft it would be wise to assume that the reader has a running installation- so as not to get bogged down with another install how-to (although, I think that incorporating security into the linux install should be in any decent install how-to).

In any case, I am up for contributing to this task and I hope to learn tons by partcipating in it.

I guess the first thing to do would be to create an outline of what should be covered and then begin to fill it in. I also think that it would be smart to make it semi-distribution dependent so as to not confuse newbies. Here's my first cut at an outline:

1) obtaining slackware, verifying authenticity (maybe just puss out here and say "buy it!"
2) pre-install considerations, partitioning disks, planning for a secure box
3) the installation process (i guess i changed my mind about assuming a running install) I just
don't see how to get around incorporating this into the how-to, as turning off daemons is part
of the install and should be done asap, correct?
4) tossing up a firewall script as soon as possible.
5) update using swaret
6) edit /etc/hosts
7) edit /etc/inetd.conf
8) work on eliminating all unnecessary suid programs
9) configure sshd and any other must have daemons
10) reading log files
11) overview of groups and permissions
12) setting up groups to prepare the system to go multi-user
13) adding users
14) ongoing security: practices and concerns, intrusion detection, recovery, etc.

I am willing to start on this if the community is willing to do some hand holding and some editing. I am far from an expert on security, but this is as good a day as any to start learning.

how about some comments on the above outline?

plan9

Hey all,
I am new to linux and I do keep searching for tutorials and articles that help me better understand "Linux"
Anyway, here's an important link

I dont know how much helpful this can be. Give it a shot!!!
If you dont find it worthless...excuse me as I am no way near to linux security.

Thanks,