From LQWiki
Most Configuration tasks have security implications. At the current state of the art, it is probably too difficult for most of us to maintain a completely secure system, so the goal has to be to make the cost to a malicious hacker of penetrating our systems more than the penetration would be worth to him or her.
The following outline focuses on what has to be done and what tools are available rather than why and how to do security configuration, except for the first item, which is meant to focus on getting the user started with security configuration.
Contents |
Basic Security
- Linux Security Basics
- Basic Linux file system attributes
- Security terms and definitions
- Linux security vulnerabilities
- Obtaining security updates
- Community security resources
- Configuring and using su and sudo
- Identifying and disabling extraneous services
- chrooting common services and commands
- Basic system logging
- check for weak passwords
Network Security
Network services
FireWalling
- Firewall - Iptables, configuration, firewall software
- Detecting portscans
email Security
- Sender Verification
- Spam Filtering
- Spam Filtering on the desktop
- Virus/worm Filtering
- detect if your mailserver is used as a spambot
- Using GPG to cryptographically sign email
- Using MailScanner/Postfix/SpamAssassin/ClamAV in Gentoo Linux
- Postfix with clamav-milter
Physical security
This chapter is about Hardening against users with physical access.
Wireless network security
Legal Stuff
- Local policies
- TOS and AUP
External links
- Linuxsecurity.com (www.linuxsecurity.com)
- Linux Security HOWTO (www.tldp.org)
- LinuxGuruz security resource page (www.linuxguruz.com)
- Debian Linux Security Configuration (www.debianhelp.co.uk)
- List of Linux security tools (January 3rd, 2007) (www.foogazi.com)
This page is available under a