Linux Security

From ITS Wiki - Information Technology Services - University of Rhode Island

Contents 1 General 1.1 SANS Compromised Machine Checklist 1.2 CIS Level 1 Security Benchmarks 1.3 Security Technical Implementation Guides 1.4 Nessus 1.5 OpenVas 2 Specific 2.1 Gentoo Security 2.2 University of Texas Server Security Checklists 3 See Also

General

SANS Compromised Machine Checklist

A checklist for determining how a machine has been compromised.

http://www.uri.edu/security/app/linsacheatsheet.pdf

CIS Level 1 Security Benchmarks

The Benchmark is a compilation of security configuration actions and settings that harden your operating system. It is a CIS Level-I Benchmark, a suggested nominal level of operating system security.

Linux Benchmark

FreeBSD Benchmark

Security Technical Implementation Guides

Also called, STIGs, are best practices security settings and procedures for a multitude of environments.

http://csrc.nist.gov/pcig/cig.html

Nessus

Nessus is one of the most powerful, and commonly used tools in intrusion testing tools.

OpenVas

[1] stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user front-end. The core component is a server with a set of network vulnerability tests (NVTs) to detect security problems in remote systems and applications.

OpenVAS products are Free Software under GNU GPL and a fork of Nessus.

http://www.securityfocus.com/infocus/1741

Specific

Gentoo Security

Security Information from the Gentoo Homepage.

http://www.gentoo.org/security/en/

University of Texas Server Security Checklists

These tools, provided by the University of Texas, can be used to harden your server.

Redhat Linux Server Checklist

Solaris 10 Server Checklist

See Also

• OpenSSH
• Sudo
• su
• wikipedia:Iptables
• Pluggable Authentication Modules