Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Sever Security Additions

  1. #1
    Just burned his ISO
    Join Date
    Aug 2009
    Posts
    3

    Default Sever Security Additions

    I'm running an Ubuntu Server just to get some experience in using it.
    Security-wise, the only addition I've made so far is adding port-knocking.

    Can anyone recommend any other security related additions I could look at?

  2. #2
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default

    iptables, snort, rkhunter, SELinux, bastion-linux (it's a script, start with this one).

    You can also do things like use OpenVAS to check the security of your local system, it's a good way to figure out what has changed when you start a new service, and the issues inherent to each service you enable.

    Others will have a few more tools to suggest, those are the ones I think to start with.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

  3. #3
    Just burned his ISO
    Join Date
    Oct 2009
    Posts
    1

    Default

    i dont recommend to you an ubuntu server, i recommend to you redhat, or debian server optimased.

  4. #4
    Junior Member
    Join Date
    Jul 2009
    Posts
    78

    Default

    useful help but under ubuntu it is not a howto:
    h x x p://www.debian.org/doc/manuals/securing-debian-howto/index.en.html
    [COLOR="RoyalBlue"][SIZE="2"]Nought's had, all's spent, ... Where our desire is got without content
    [/COLOR][/SIZE]

  5. #5
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by Exuro View Post
    I'm running an Ubuntu Server just to get some experience in using it. Security-wise, the only addition I've made so far is adding port-knocking.
    Can anyone recommend any other security related additions I could look at?
    You may get better help at the ubuntu forums .
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  6. #6
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default

    Quote Originally Posted by Gitsnik View Post
    iptables, snort, rkhunter, SELinux, bastion-linux (it's a script, start with this one).

    You can also do things like use OpenVAS to check the security of your local system, it's a good way to figure out what has changed when you start a new service, and the issues inherent to each service you enable.

    Others will have a few more tools to suggest, those are the ones I think to start with.
    Thats a good start.

    Others from the top of my head:
    ossec, chkrootkit, lids, aide, apparmor
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  7. #7
    Just burned his ISO aliceinwire's Avatar
    Join Date
    Mar 2008
    Posts
    11

    Default

    labrea is a good tools
    when some one try to scan your ports it find everyone open and not only every port open but also it find open every port on the same network in every ip
    is used for slow massive scanning but is not usefull when the scanning is maked by multithread

  8. #8
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    Quote Originally Posted by Exuro View Post
    I'm running an Ubuntu Server just to get some experience in using it.
    Security-wise, the only addition I've made so far is adding port-knocking.

    Can anyone recommend any other security related additions I could look at?
    BSD ...
    dd if=/dev/swc666 of=/dev/wyze

  9. #9
    Just burned his ISO
    Join Date
    Aug 2009
    Posts
    3

    Default

    Quote Originally Posted by wyze View Post
    BSD ...
    Is Ubuntu Server not very good? Do others recommend I switch to a BSD distro?

  10. #10
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default

    Quote Originally Posted by Exuro View Post
    Is Ubuntu Server not very good? Do others recommend I switch to a BSD distro?
    No. I swear my life by BSD, but if you have little to no experience with the command line (and I assume this is accurate by your choice of Ubuntu Server), it can be a little confusing - it also tends to be slightly out of date, harder to install things on, and different to most of the documentation.

    Of the choices, if you had to, I would say start with a DragonflyBSD or FreeBSD (personally I will go FreeBSD every time and I do not like Dragonfly at the best of times), as they are the most robust and easy to boot (OpenBSD is... fun... even for someone who has been using them for years).

    There is no major reason *not* to use Ubuntu server, though I would strongly suggest that if it were to go production at some point, then Debian would be a better choice.

    CentOS/RedHat are a slightly different base and subsystem - they are used a lot in corporations because Red Hat is enterprise.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •