Find the answer to your Linux question:
Page 1 of 2 1 2 LastLast
Results 1 to 10 of 12
i not really in security with linux so i wanted to see if someone can help me and give me some info on some software and a lil demo what ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Newbie
    Join Date
    Oct 2005
    Posts
    110

    what can i use to test my server for flaws


    i not really in security with linux so i wanted to see if someone can help me and give me some info on some software and a lil demo what it does to test my server for holes

  2. #2
    Linux User
    Join Date
    Dec 2004
    Posts
    323
    Here's a good resource:
    http://www.tldp.org/HOWTO/Security-HOWTO/

    Also check with your distribution how to keep your packages up to date. That would be "yum update" in Fedora/RedHat based distributions.

    Also check some threads in the Linux Security section for things some gurus don't even know about.

    Hope this helps


    Tech

  3. #3
    Linux Enthusiast
    Join Date
    Jul 2005
    Location
    Maryland
    Posts
    522

    Re: what can i use to test my server for flaws

    Quote Originally Posted by flacko21
    i not really in security with linux so i wanted to see if someone can help me and give me some info on some software and a lil demo what it does to test my server for holes
    technossomy provided a good source which would help you understand the concepts of Linux security. There is alot of software available out there that you can use to check your system(s) for vulnerabilities. There are also Linux distributions built specifically for this purpose, such as Knoppix-STD. Nessus is the vulnerability assessment tool, also included in knoppix-std, which you can use to check for security holes on your server.

    I hope this helps.
    Good luck!

  4. #4
    Linux Engineer
    Join Date
    Oct 2004
    Location
    Vancouver
    Posts
    1,366
    check out rootkit progs as well...they will help find breeches...
    Operating System: GNU Emacs

  5. #5
    Linux User
    Join Date
    Dec 2004
    Posts
    323
    And there's one overriding point which is worth mentioning: the majority of distributions allow one to install a Linux server and come with tools to secure the machine. A server distribution will factor itself out of the market if it is not securable through standard menu items.

    Hope this helps


    Tech

  6. #6
    Just Joined!
    Join Date
    Jul 2005
    Location
    INDIA
    Posts
    41

  7. #7
    Linux Engineer jledhead's Avatar
    Join Date
    Oct 2004
    Location
    North Carolina
    Posts
    1,077
    if you have internet services open and running you might also look into intrusion detection http://www.cs.tut.fi/~rammer/aide.html

  8. #8
    Just Joined!
    Join Date
    Jul 2005
    Location
    INDIA
    Posts
    41

    Security

    hi,


    Try 'Nessus'

  9. #9
    Linux Enthusiast
    Join Date
    Dec 2004
    Posts
    637
    I also recommend NMAP for port scanning, this will definitely tell you what ports you have open.

  10. #10
    Linux Enthusiast
    Join Date
    Dec 2004
    Posts
    637
    I would recommend Nessus too, if only I was able to get to work myself. Although, I only allowed myself 15-minutes with the product before I moved on to NMAP. Installing and running the service was a snap, interface is another issue. NMAP is worth its weight in gold, if you ask me. Besides, what other application was used on the Matrix?

Page 1 of 2 1 2 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •