Полезная информация

Linux Administrator's Security Guide


By Kurt Seifried (seifried@seifried.org) (encryption keys here), the LASG is licensed under the OpenContent license (http://www.opencontent.org/).

The LASG is available at: http://www.securityportal.com/lasg/. 

The LASG changelog is here.

Getting started - general concepts

Installing Linux - how to get linux loaded safely

System security - physical and boot security

Passwords - storage, cracking

Files / filesystem security - file permissions, system files

Encryption - filesystem and files

Network security - PPP, TCP-IP, etc

Network servers - Email, FTP, WWW, etc

IPSec - IPSecurity setup (recommended for VPN's)

VPN - other alternatives to IPSec

Administration tools - see shell servers for remote access

Limiting and monitoring users - ulimit, ttysnoop, quotas and more

System /user logging - syslog

Attack detection - audits, logging and baselines

Intrusion testing - the tools that will be used against you

Software - keeping software up to date, secure programming, viruses

Distribution information - specifics, vendor contact information, etc

Backups - ensuring data continuity

Linux kernel - patching, updating and security

Checklists - some quick to-do lists



Daily tarball of the LASG is available here.

Security Portal

Written by Kurt Seifried