Results 1 to 10 of 12
i not really in security with linux so i wanted to see if someone can help me and give me some info on some software and a lil demo what ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
- 12-01-2005 #1Linux Newbie
- Join Date
- Oct 2005
- Posts
- 110
what can i use to test my server for flaws
i not really in security with linux so i wanted to see if someone can help me and give me some info on some software and a lil demo what it does to test my server for holes
- 12-01-2005 #2Linux User
- Join Date
- Dec 2004
- Posts
- 323
Here's a good resource:
http://www.tldp.org/HOWTO/Security-HOWTO/
Also check with your distribution how to keep your packages up to date. That would be "yum update" in Fedora/RedHat based distributions.
Also check some threads in the Linux Security section for things some gurus don't even know about.
Hope this helps
Tech
- 12-02-2005 #3Linux Enthusiast
- Join Date
- Jul 2005
- Location
- Maryland
- Posts
- 522
Re: what can i use to test my server for flaws
technossomy provided a good source which would help you understand the concepts of Linux security. There is alot of software available out there that you can use to check your system(s) for vulnerabilities. There are also Linux distributions built specifically for this purpose, such as Knoppix-STD. Nessus is the vulnerability assessment tool, also included in knoppix-std, which you can use to check for security holes on your server.
Originally Posted by flacko21
I hope this helps.
Good luck!
- 12-02-2005 #4Linux Engineer
- Join Date
- Oct 2004
- Location
- Vancouver
- Posts
- 1,366
check out rootkit progs as well...they will help find breeches...
Operating System: GNU Emacs
- 12-02-2005 #5Linux User
- Join Date
- Dec 2004
- Posts
- 323
And there's one overriding point which is worth mentioning: the majority of distributions allow one to install a Linux server and come with tools to secure the machine. A server distribution will factor itself out of the market if it is not securable through standard menu items.
Hope this helps
Tech
- 12-28-2005 #6Just Joined!
- Join Date
- Jul 2005
- Location
- INDIA
- Posts
- 41
mail
- 12-28-2005 #7Linux Engineer
- Join Date
- Oct 2004
- Location
- North Carolina
- Posts
- 1,077
if you have internet services open and running you might also look into intrusion detection http://www.cs.tut.fi/~rammer/aide.html
- 12-29-2005 #8Just Joined!
- Join Date
- Jul 2005
- Location
- INDIA
- Posts
- 41
Security
hi,
Try 'Nessus'
- 12-29-2005 #9Linux Enthusiast
- Join Date
- Dec 2004
- Posts
- 637
I also recommend NMAP for port scanning, this will definitely tell you what ports you have open.
- 12-29-2005 #10Linux Enthusiast
- Join Date
- Dec 2004
- Posts
- 637
I would recommend Nessus too, if only I was able to get to work myself. Although, I only allowed myself 15-minutes with the product before I moved on to NMAP. Installing and running the service was a snap, interface is another issue. NMAP is worth its weight in gold, if you ask me. Besides, what other application was used on the Matrix?
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
