Security Checklist

Christos Ricudis ricudis at paiko.gr
Tue May 4 18:46:25 EEST 1999 

Hello Linux-greek-users!

  On 04 May 99, Linux-greek-users wrote to All with subject "Security
Checklist":


 L> kai xairetismata se autous pou me thymountai
 L> apo palia (ITE,SGI).

haha, kalwston. Poy eisai twra, ti kaneis? 

 L> O logos pou grafw einai oti psaxnw, ean yparxei,
 L> gia kapoio security checklist gia Linux systhmata.

Xlwmo, ta perissotera security problems einai arketa distribution-dependent. 

 L> 1) IP filtering (kernel level ? yparxei ipfilterd h'
 L>    kati tetoio ?)

Nai. (man ipfwadm, man ipchains)

 L>    IP forwarding (ginetai by default apo ton kernel ?)

Oxi (ena host prepei by default na MHN kanei forward paketa). 8elei explicit
energopoihsh apo ton user (ena echo 1 > /proc/sys/net/ipv4/ip_forward, isws kai
energopoihsh kapoioy kernel option se paliotera kernels)

 L> 2) Diktyakes yphresies/system yphresies
 L>    (profanws yparxei /etc/services. Yparxoun kapoia
 L>    entries pou PREPEI na einai energa opwsdhpote ?

Oxi. (ean yparxoyn, einai distribution - dependent. To redhat p.x. exei ena
web-based administration tool to opoio profanws 8a stamathsei na einai web-
based an to apenergopoihseis apo to /etc/inetd.conf). 

 L> 3) Kapou eida oti yparxei entolh ''chkconfig''
 L>    (antistoixh tou IRIX). Kai edw, ti mporoume na
 L>    bgaloume off kai ti PREPEI na einai ON logw systhmatos ?

Den gnwrizw tetoia entolh. Ean yparxei 8a einai distribution-dependent

 L> 4) Rytmiseis gia thn symperifora tou login,su

distribution-dependent.

 L> 5) Rytmiseis gia logging/auditing

auditing akoma den yparxei se production morfh sto linux. 

 L> 6) Ektelesima/alla-files pou egkathistantai by default
 L>    kai exoun problhmata asfaleias, opote kalo einai na
 L>    bgoun/anabatmistoun/rythmistoun ktl.

distribution-dependent. 

 L> 7) Rytmiseis asfaleias tou X11. Na ypothesw oti isxyoun
 L>    ta standard peri rytmisewn tou XDM (Xaccess, chooser ktl.) ?

Akribws ta idia. 


--
Christos Ricudis
I am a target. Please bomb me at N40 33.765' E22 55.130'
--
====================================================================
Gia boithia (h na diagrafhte) e-mail sto majordomo at hellug.gr
Ta archives tis listas einai sto http://lists.hellug.gr/archives
prin steilete kapoia erothsh psakte mipos exei hdh apanththei.
Gia opoiodipote problima stilte e-mail ston owner-linux-greek-users at hellug.gr
====================================================================

More information about the Linux-greek-users mailing list