Linux Forums - Linux Help,Advice & support community:LinuxSolved.com
Network Troublshooting => General Networking Support in Linux => Topic started by: kkaa on June 02, 2004, 07:42:35 AM
-
Helo All
I want to ask about the security issues for Linux on a public Network :
1.How to check if Linux Server is secure or not on a Public Network?
2.How to check if the server is being hacked by any hacker (Intrusion) or not?
3.How to protect a publically available server (i.e. web server, mail server )against the threats of hacking or intrusion?
Thanks :lol:
-
Answers:
1. U can use a PC with internet from outside ur network. Use nmap to do so at ur server.
2. Snort is a good tool to do the monitoring, or u can use tripwire.
3. Well, firewalls ---> Shorewall is wat i use.
-
Helo All
I want to ask about the security issues for Linux on a public Network :
1.How to check if Linux Server is secure or not on a Public Network?
use some (not one) good vulnerability scanners.. like. nessus, cis bechmark. Asses the result.. follow the recommendations.. repaeat to check.
2.How to check if the server is being hacked by any hacker (Intrusion) or not?
no definate answer for this.. see what ports are open.. help in detecing backdoors.. also.. u can use.. file intergrity checker like tripwire ..
3.How to protect a publically available server (i.e. web server, mail server )against the threats of hacking or intrusion?
Thanks :lol:
1. load the minimal OS.
2. stop unneccessary services
3. don't use telent/ftp , use ssh/sftp instead
3. use iptables..
4. regulery upgrade the OS and other software.
5. regular scanning
6. review logs regulerly
list will continue..
security is a process..
Regards,
-
Also regarding ur question number two, i hope this will help u:
http://www.robertgraham.com/pubs/sniffing-faq.html
As i was trying to check my own server's security.