Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
-Jason
On Mon, Dec 28, 2009 at 1:53 PM, ML mailinglists@mailnewsrss.com wrote:
Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
Take a look at the CIS guide for Red Hat 5: http://www.cisecurity.org/bench_linux.html (you do not need to be registered to download the PDFs).
Regards Lincoln
On Mon, Dec 28, 2009 at 5:56 PM, Larry Vaden larry.vaden@gmail.com wrote:
On Mon, Dec 28, 2009 at 1:53 PM, ML mailinglists@mailnewsrss.com wrote:
Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
http://wiki.centos.org/HowTos/OS_Protection _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
Check out Bastille Linux. It's not a distro, it's a system hardening tool, and many things it does are referred to by the NIST guidelines.
I, personally, used a firewall/router that I build using it on RH 9, and for around 10 years, never had an intrusion.
mark
Annother vote for bastille, it works very well.
On 12/28/09, m.roth@5-cent.us m.roth@5-cent.us wrote:
Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
Check out Bastille Linux. It's not a distro, it's a system hardening tool, and many things it does are referred to by the NIST guidelines.
I, personally, used a firewall/router that I build using it on RH 9, and for around 10 years, never had an intrusion.
mark
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hi,
Test my repositoriy http://flexbox.sf.net/
I'm personalized sectool from fedora to centos, rkhunter, unhid, chkrootkit, and more...
And contribute ! Source RPMS and spec files are in the repository and svn.
Sorry for my english.
Att On Mon, 28 Dec 2009 11:53:27 -0800 ML mailinglists@mailnewsrss.com wrote:
Hi Guys,
I would like advice for best practices to secure my linux boxes. Know if I have been hacked, know of security breaches, etc.
Can anyone provide advice?
-Jason _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Mon, Dec 28, 2009 at 4:44 PM, Fernando Hallberg fernando@flexdigital.com.br wrote:
Hi,
Test my repositoriy http://flexbox.sf.net/
I'm personalized sectool from fedora to centos, rkhunter, unhid, chkrootkit, and more...
And contribute ! Source RPMS and spec files are in the repository and svn.
Note, I couldn't find any source RPMs in svn.
And I hasten to add, I would never delegate the task of building security software for my system to another person.
Another great guide :http://www.nsa.gov/ia/guidance/security_configuration_guides/operating_syste...
2009/12/29 Agile Aspect agile.aspect@gmail.com:
On Mon, Dec 28, 2009 at 4:44 PM, Fernando Hallberg fernando@flexdigital.com.br wrote:
Hi,
Test my repositoriy http://flexbox.sf.net/
I'm personalized sectool from fedora to centos, rkhunter, unhid, chkrootkit, and more...
And contribute ! Source RPMS and spec files are in the repository and svn.
Note, I couldn't find any source RPMs in svn.
And I hasten to add, I would never delegate the task of building security software for my system to another person.
-- Enjoy global warming while it lasts. _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Agile Aspect wrote:
Note, I couldn't find any source RPMs in svn.
And I hasten to add, I would never delegate the task of building security software for my system to another person.
so you compile your whole system from scratch, after audting all the code?
how do you ever get anything done?
Hi,
I get the fedora srpm, installed, apply modify for centos and recompiled, for rkhunter, sectool.
ipset and ipset kmod i've made by hand to use ipset function with iptables, blocking dinamical blacklists with fail2ban and shorewall.
Att fernando On Tue, 29 Dec 2009 01:09:21 -0800 John R Pierce pierce@hogranch.com wrote:
Agile Aspect wrote:
Note, I couldn't find any source RPMs in svn.
And I hasten to add, I would never delegate the task of building security software for my system to another person.
so you compile your whole system from scratch, after audting all the code?
how do you ever get anything done?
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Agile,
http://flexbox.sf.net/centos/5/SRPMS
You can generate packet by specfile.
Att Fernando
On Mon, 28 Dec 2009 18:45:29 -0800 Agile Aspect agile.aspect@gmail.com wrote:
On Mon, Dec 28, 2009 at 4:44 PM, Fernando Hallberg fernando@flexdigital.com.br wrote:
Hi,
Test my repositoriy http://flexbox.sf.net/
I'm personalized sectool from fedora to centos, rkhunter, unhid, chkrootkit, and more...
And contribute ! Source RPMS and spec files are in the repository and svn.
Note, I couldn't find any source RPMs in svn.
And I hasten to add, I would never delegate the task of building security software for my system to another person.
-- Enjoy global warming while it lasts. _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
-
Agile Aspect -
Fernando Hallberg -
John R Pierce -
Larry Vaden -
Lincoln Zuljewic Silva -
m.roth@5-cent.us -
ML -
Nicolas Sulek -
Tom Bishop