LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
Is Mandatory Access Control Too Much Security For Enterprise's Linux?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
Emily Ratliff: OS Security
DanWalsh LiveJournal
Security Bloggers Network
Latest Newsletters
Linux Security Week: September 1st, 2008
Linux Advisory Watch: August 29th, 2008
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Foresight
Password protection with LILO  22 August 2006 
Security Tips Password protect your linux install with LILO. Edit your /etc/lilo.conf.
At the end of each linux image that you want to secure, put the lines:
read-only
restricted
password = MySecurePassword
Ensure you rereun /sbin/lilo so the changes take effect.

Write Comment (1 Comments)

 
Chattr  22 August 2006 
Security Tips There are files that get changed very infrequently. For instance, if your system won't have any users added anytime soon then it may be sensible to chattr immutably the /etc/password and /etc/shadow files. Only the superuser or a process possessing the CAP_LINUX_IMMUTABLE capability can set or clear this attribute.
chattr +i /etc/passwd /etc/shadow

Write Comment

 
Disallow ICMP  22 August 2006 
Security Tips Some attackers, prior to attacking a host, (or users nmaping a host) will check to see if the host is alive. They do this by 'ping'ing the host. In order to check if the host is up, they will use an ICMP echo request packet.
To disallow these types of packets, use iptables:
iptables -A INPUT -p icmp --icmp-type echo-request -j DROP

Write Comment

 
World writable files  22 August 2006 
Security Tips World writable files can be left around by users wanting to make things easier for themselves. It is necessary to be careful about who can write to which files. To find all world writable files:
find /dir -xdev -perm +o=w ! \( -type d -perm +o=t \) ! -type l -print

Write Comment

 
Setuid and Setgid access  22 August 2006 
Security Tips Setuid and Setgid files have the potential to be very hazardous if they are accessible by the wrong users on the system. Therefore it is handy to be able to check with files fall into this category.
find /dir -xdev -type f -perm +ug=s -print

Write Comment

 
<< Start < Prev 1 2 3 Next > End >>

Results 19 - 27 of 30
    
Partner:

 

Latest Features
Review: Hacking Exposed Linux, Third Edition
Security Features of Firefox 3.0
Review: The Book of Wireless
April 2008 Open Source Tool of the Month: sudo
Open Source Tool of March: ZoneMinder
Meet the Anti-Nmap: PSAD
Open Source Tool of February: Nmap!
Yesterday's Edition
New Firefox Plug-In Double-Checks So-Called Unsafe Sites
Google Chrome Flaws Come Soon After Browser Release

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
  Security Projects ,   Latest News ,  Newsletters ,  SELinux ,  Privacy ,  Home,
 Hardening ,   About Us,   Advertise,   Legal Notice,   RSS,   Guardian Digital

(c)Copyright 2008 Guardian Digital, Inc. All rights reserved.