Red Hat NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE Guida di Installazione Pagina 6
- Pagina / 82
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
This document is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without
even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
the GNU General Public License for more details.
You can get a copy of the GNU GPL at at http://www.gnu.org/copyleft/gpl.html.
1.4. Credits
Many thanks to those who helped with the production of this document.
Bill Staehle, who has done a little bit of everything: ideas, editing, encouragement, and suggestions,
many of which have been incorporated. Bill helped greatly with the content of this document.
•
Others who have contributed in one way or another: Dave Wreski, Ian Jones, Jacco de Leeuw, and
Indulis Bernsteins.
•
Various posters on comp.os.linux.security, a great place to learn about Linux and security. •
The Netfilter Development team for their work on iptables and connection tracking, state of the art
tools with which to protect our systems.
•
1.5. Disclaimer
The author accepts no liability for the contents of this document. Use the concepts, examples and other
content at your own risk. As this is a new document, there may be errors and inaccuracies. Hopefully these
are few and far between. Corrections and suggestions are welcomed.
This document is intended to give the new user a starting point for securing their system while it is connected
to the Internet. Please understand that there is no intention whatsoever of claiming that the contents of this
document will necessarily result in an ultimately secure and worry−free computing environment. Security is a
complex topic. This document just addresses some of the most basic issues that inexperienced users should
be aware of.
The reader is encouraged to read other security related documentation and articles. And to stay abreast of
security issues as they evolve. Security is not an objective, but an ongoing process.
1.6. New Versions and Changelog
The current official version can always be found at
http://www.tldp.org/HOWTO/Security−Quickstart−Redhat−HOWTO/. Pre−release versions can be found at
http://feenix.burgiss.net/ldp/quickstart−rh/.
Other formats, including PDF, PS, single page HTML, may be found at the Linux Documentation HOWTO
index page: http://tldp.org/docs.html#howto.
Changelog:
Version 1.2: Clarifications on example firewall scripts, and small additions to 'Have I been Hacked'. Note on
Zonealarm type applications. More on the use of "chattr" by script kiddies, and how to check for this. Other
Security Quick−Start HOWTO for Red Hat Linux
1.4. Credits 3
- Hal Burgiss 1
- Table of Contents 2
- 1. Introduction 4
- 1.2. Notes 5
- 1.3. Copyright 5
- 1.4. Credits 6
- 1.5. Disclaimer 6
- 1.7. Feedback 7
- 2. Foreword 8
- 2.2. Before We Start 9
- 3.1. System Audit 10
- 3.3. Stopping Services 12
- 3.3.1. Stopping Init Services 13
- 3.3.2. Inetd 14
- 3.3.2. Inetd 12 15
- 3.3.3. Xinetd 16
- 3.3.4. When All Else Fails 17
- 3.4. Exceptions 18
- 4. Step 2: Updating 20
- 4. Step 2: Updating 18 21
- 5.1. Strategy 22
- 5.2.1. ipchains 23
- 5.2.1. ipchains 21 24
- 5.2.2. iptables 26
- 5.2.2. iptables 24 27
- 5.3. Tcpwrappers (libwrap) 29
- 5.3.1. xinetd 31
- 5.4. PortSentry 32
- 5.5. Proxies 32
- 5.6. Individual Applications 33
- 5.7. Verifying 35
- 5.8. Logging 36
- 5.9. Where to Start 37
- 6. Intrusion Detection 39
- # chattr +i /bin/ps 40
- −−−i−−−−−−−−−− /bin/ps 40
- # chattr −i /bin/ps 40
- 7. General Tips 43
- # must exist 44
- root: hal@bigcat 44
- 8. Appendix 46
- 8.2. Common Ports 48
- 8.3. Netstat Tutorial 51
- 8.4. Attacks and Threats 59
- 8.4.2. Rootkits 60
- 8.4.3. Worms and Zombies 60
- 8.4.4. Script Kiddies 61
- 8.4.5. Spoofed IPs 61
- 8.4.6. Targeted Attacks 61
- 8.4.8. Brute Force 62
- 8.5. Links 63
- 8.6. Editing Text Files 65
- 8.7. nmap 68
- 8.8. Sysctl Options 71
- 8.8. Sysctl Options 69 72
- 8.9. Secure Alternatives 73
- 8.9. Secure Alternatives 71 74
- 8.9. Secure Alternatives 72 75
- 8.9. Secure Alternatives 73 76
- 8.10.2. iptables II 77
- 8.10.2. iptables II 75 78
- 8.10.2. iptables II 76 79
- 8.10.2. iptables II 77 80
- 8.10.3. Summary 81
- 8.10.4. iptables mini−me 82
© 2020, manymanuals.it. Tutti i diritti riservati | 0.035 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale