What programs should be use in Linux for security?
 

For security what program are typical for security and monitoring a system?

I think firewall iptables rules, portsentry.

How to make, see, secure system?:scratch:

I like BastilleLinux scripts, maybe some kernel patches such as grsecurity, nessus - security scanner...
And some intrusion detection systems for example tripwire to check whether some files were changed..

Keep your system updated, use a good hardware firewall and your good to go.

Security references - LinuxQuestions.org
http://www.linuxquestions.org/questi...ad.php?t=45261

Covers pretty much anything you could think of.

Don't forget it's not just the security software you install, it's also the configuration of other software running on your machine like SSH, FTP and XINET daemons...

Security is a question of economics. How far you would go to keep a server secure depends on how much economic value you attach to that server. You can always

[1] try to keep your system updated

[2] turn off services you are not using; eg. you might not gain much by running cups on a backend database server

You can also run IPS (portsentry), IDS (snort, AIDE). I also found scan using Nessus and nmap to be valuable.

Also, encryption and Linux ACLs play a vital role if used in the right place.

Moved: This thread is more suitable in Linux Security and has been moved accordingly to help your thread/question get the exposure it deserves.