Linux-security.pdf
(
122 KB
)
Pobierz
Securing Linux
Presented by: Darren Mobley
Introduction
●
Hello, My name is Darren
Have been supporting and developing cPan-
el for over 4 years.
We'll be covering some steps to take to help
protect servers from common attacks
●
●
Main Topics
●
Local security measures
Protecting against common remote attacks
What to do after an attack, cleanup
Having and following a Security Policy
●
●
●
Local Attacks:
Passwords
Make sure existing users have decent pass-
words
–
–
–
Crack your own users' passwords using JTR,
crack
Preferably run the crackers on a dedicated ma-
chine, not the server, due to load
Any passwords that crack in under a few hours
need to have shell access removed until the
password can be changed. This should be writ-
ten into TOS/AUP which is “signed” by the client.
Local Attacks:
xinetd
●
Turning off unneeded daemons in xinetd
–
–
Check /etc/xinetd.conf
Check /etc/xinetd.d/*
●
●
Common ones are cupsd (printing daemon)
nfs/statd (unless using nfs mounted FS)
Plik z chomika:
musli_com
Inne pliki z tego folderu:
2008_Return_Oriented_Programming(2).pdf
(4147 KB)
2009_debugging_buffer_overruns_freebsd_kernel(1).pdf
(338 KB)
2010_gdb(1).pdf
(1957 KB)
2010_memory_corruption_attacks(2).pdf
(3883 KB)
2010_ROP(1).pdf
(208 KB)
Inne foldery tego chomika:
CloudStack
distribution
dsp
electronics
LPI
Zgłoś jeśli
naruszono regulamin