How To Harden My Filesystem - Page 6.25
Find the HOWTO or step-by-step guide that you need right here.
Find the HOWTO or step-by-step guide that you need right here.
"SAINT is the Security Administrator's Integrated Network Tool. In its simplest mode, it gathers as much information about remote hosts and networks as possible by examining such network services as finger, NFS, NIS, ftp and tftp, rexd, statd, and ot
SARA is the Security Auditor's Research Assistant. SARA is based on the SATAN security analysis model and is frequently updated to address the latest security threats.
This article is the first in a three-part series on tools that are useful during incident response and investigation after a compromise has occurred on a OpenBSD, Linux, or Solaris system.
Web servers are employing techniques for protecting session IDs from three classes of attacks: interception, prediction, and brute force attacks. This paper reveals a fourth class of session attacks against session IDs: session fixation attacks.
This program is a "secure" replacement for inetd, meaning in this case that it offers many features that allow you to control who accesses which services, and from where.
This document makes a humble attempt in explaining how to get Cyrus to work.
This documentation discusses a way to scan your system for Rootkits. The information provided is not meant to replace common security practices, but might prove useful when used in conjunction with these practices.
Chrooted system services improve security by limiting damage that someone who broke into the system can possibly do. This article discusses, in depth, how to do so.
This article will cover the issues of Linux hardening, with a specific focus on kernel hardening and its use on production systems. Several kernel-hardening approaches and their usability will be analyzed.
This documentation discusses the use of two TCT tools, unrm and lazarus, on the Sun Solaris operating system, version 2.x. You can use this approach with other UNIX operating systems and hosts.
This documentation will discuss intrusion detection and help you recognize and detect port probes, port scans, denial of service (DoS) attempts and unauthorized access attempts.
This documentation will discuss the U.S. National Security Agency's security-enhanced version of Linux. This documentation takes a first look at this unexpected development -- what it means and what's to come -- and delves into the architecture of SE
This documentation discusses all aspects of passphrases, how to make them strong and how to crack them.
SANS has some great information on generating security policies, and a few examples.
This book is intended as a 'self help' guide to computer & network security, primarily for security managers, programmers and system administrators.
This is reportedly the document that started computer security. It discusses intrusions, physical security, threats, policy considerations, and recommendations. Quite good.
This is a great document that answers such questions as What is intrusion detection? and How do I know if I've been attacked?
SSLeay is a free implementation of Netscape's Secure Socket Layer - the software encryption protocol behind the Netscape Secure Server and the Netscape Navigator Browser.