-
Intro To Security
This isn't going to be a long post over security and the basics. I've included a file in .PDF format so you'll need Adobe Acrobat Reader to view this file. It's also ziped so you'll need Winzip or some other compression utility to decompress the file. This file is from the NIST.
National Institute of Standards and Technology. This file goes over security auditing, policies, threats, physical security, crypto., and other various topics as well.
Enjoy,
Remote_Access_
-
Sounds good, any chance of a html version?
-
Wow,
Lots of reading time, I have only browsed through a couple of the topics listed on your linked web page but so far it looks very nice.
Thanks for you great link.
Knowledge is power, I want to be powerful.
-
Aww sh1t..
Sorry about that. Hehehe. :D
The file exceeds the limit of the file size that I can post.
Anyone interested obtaining this file can recieve it by sending me a PM with
a request for the file. Please include your email address along with your request.
Regards,
Remote_Access_
-
Good post RA,
Its quite a lot of nice reading, I have the file since earlier and Its almost to much info to read from the screen (+500 pages) but as a reference its really good.
-
Gotta love PDF file sizes ;).
-
Here's a short security check list to help you make your box a bit safer.
This document can be retrieved via anonymous ftp from:
ftp://ftp.auscert.org.au/pub/auscert...rity_checklist
Attached at the end of this check list is a .zip file containing a .pdf file with common computer vulnerabilities. I warn you, the graphics suck but it's not a bad read. :)
1.0 Patches
[ ] Installed latest patches?
2.0 Network security
[ ] Filtering
[ ] "r" commands
[ ] /etc/hosts.equiv
[ ] /etc/netgroup
[ ] $HOME/.rhosts
[ ] NFS
[ ] /etc/hosts.lpd
[ ] Secure terminals
[ ] Network services
[ ] Trivial ftp (tftp)
[ ] /etc/services
[ ] tcp_wrapper (also known as log_tcp)
[ ] /etc/aliases
[ ] Sendmail
[ ] majordomo
[ ] fingerd
[ ] UUCP
[ ] REXD
[ ] World Wide Web (WWW) - httpd
3.0 ftpd and anonymous ftp
[ ] Versions
[ ] Configuration
[ ] Anonymous ftp only
[ ] Configuration of your ftp server
[ ] Permissions
[ ] Writable directories
[ ] Disk mounting
4.0 Password and account security
[ ] Policy
[ ] Proactive Checking
[ ] NIS, NIS+ and /etc/passwd entries
[ ] Password shadowing
[ ] Administration
[ ] Special accounts
[ ] Root account
[ ] .netrc files
[ ] GCOS field
5.0 File system security
[ ] General
[ ] Startup and shutdown scripts
[ ] /usr/lib/expreserve
[ ] External file systems/devices
[ ] File Permissions
[ ] Files run by root
[ ] Bin ownership
[ ] Tiger/COPS
[ ] Tripwire
6.0 Vendor operating system specific security
[ ] SunOS 4.1.x
[ ] Patches
[ ] IP forwarding and source routing
[ ] Framebuffers /dev/fb
[ ] /usr/kvm/sys/*
[ ] /usr/kvm/crash
[ ] /dev/nit (Network Interface Tap)
[ ] Loadable drivers option
[ ] Solaris 2.x
[ ] Patches
[ ] IP forwarding and source routing
[ ] Framebuffers /dev/fbs
[ ] IRIX
[ ] Patches
[ ] AIX
[ ] Patches
[ ] HPUX
[ ] Patches
[ ] OSF
[ ] Patches
[ ] ULTRIX
[ ] Patches
7.0 Security and the X Window System
[ ] Problems with xdm
[ ] X security - General
Remote_Access_