Get the LinuxSecurity news you want faster with RSS
Powered By
Features
Need an in-depth introduction to a new security topic? Our features articles will bring up up-to-date on everything from buffer overflows to SE Linux policy development.
In a perfect world, a book like this wouldn't be necessary anymore, except for the new entries into security. Businesses and organizations would have all gotten the point by now. And yet, gaps in security, flaws in policy and general complacency have made an overview of security just as important today as it was five years ago. In a review of this second edition of Computer Security Basics, however, Robert Slade sums up a resource that could have had potential, but instead, fails to live up to its predecessor.
Everybody, from seasoned network administrators to people that just use the Internet to check the TV listings, will experience network problems at some point. Despite their varied technical knowledge, there is one tool that everybody can use: Wireshark. What's the quickest way to learn this fantastic tool? Read Practical Packet Analysis, by Chris Sanders, which provides all the basic information anybody needs to start troubleshooting their network.
About one month ago, Snort 3.0 Alpha was released for testing in the community. If you want to be on the cutting edge of intrusion detection, packet sniffing, and keeping your system safe, check out this introduction to preparing for the future of intrusion detection.
Overview
A rootkit is a group of software tools which an attacker can use to hide their tracks. A rootkit can also contain software which allows the attacker to get root access and steal or remove files on a system. Another goal for a rootkit is for the attacker to maintain access to the hijacked computer. Rootkits are written for many different operating systems however, this article will only talk about Linux rootkits.