On Fri, 17 Apr 1998, Brian wrote:
>
> TCP wrappers
>
> Do a 'man tcpd'
>
> Simple but yet oh-so-important security measure.
Well, those are going to come installed with RedHat Linux, at least, but
you'll definitely want to set up the hosts.allow and hosts.deny files that
go with them. In addition to the tcpd man page, do "man 5 hosts_access".
There's a program called Swatch which you can configure to scan your logs
for security-related messages and notify you. Another popular program is
Tripwire, which can tell you if important system files have been modified.
I'd also strongly recommend installing the ipfwadm package and getting to
know the Linux IP firewalling syntax, if you get a chance. It's very
powerful, and can add an additional layer of security beyond what the
tcp_wrappers can do. There's a good intro to it in the IP Masquerade
Mini-HOWTO.
Rich
[EMAIL PROTECTED]
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
