On Fri, 17 Apr 1998, Rich Burroughs wrote:
> On Fri, 17 Apr 1998, Brian wrote:
> >
> > TCP wrappers
> >
> > Do a 'man tcpd'
> >
> > Simple but yet oh-so-important security measure.
>
> Well, those are going to come installed with RedHat Linux, at least, but
> you'll definitely want to set up the hosts.allow and hosts.deny files that
> go with them. In addition to the tcpd man page, do "man 5 hosts_access".
>
> There's a program called Swatch which you can configure to scan your logs
> for security-related messages and notify you. Another popular program is
> Tripwire, which can tell you if important system files have been modified.
>
> I'd also strongly recommend installing the ipfwadm package and getting to
> know the Linux IP firewalling syntax, if you get a chance. It's very
> powerful, and can add an additional layer of security beyond what the
> tcp_wrappers can do. There's a good intro to it in the IP Masquerade
> Mini-HOWTO.
There's also a new LDP Security HOWTO. That's certainly worth a
look.
Also, there are several good security pages around for Linux. I can
send you some links off line if you need, but I'd do your own search.
Personally, I like the Dailyscript RPM. It resembles tripwire in its
function.
--
David S. Jackson http://www.dsj.net
"Zen is not some kind of excitement, but concentration on our usual
everyday routine." --Shunryu Suzuki
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
