Linux SSH2 Client/Server
Overview
It’s now clear that all Linux users must use OpenSSH instead of SSH2 from Datafellows Company. However, for the users or organizations that want to use the non-free version of this software, we provide here steps to follow. This is the SSH2 commercial version of SSH software. In our configuration we have also configured sshd2 to support tcp-wrappers (the inetd super server) for security reason. (Далее…)
Configure OpenSSH to use TCP-Wrappers inetd super server
Tcp-Wrappers should be enabled to start and stop our OpenSSH server. Upon execution, inetd reads its configuration information from a configuration file which, by default, is 7etc/inetd.conf”.
There must be an entry for each field of the configuration file, with entries for each field separated by a tab or a space. (Далее…)
Securities Software (Network Services).Linux OpenSSH Client/Server
Overview
As illustrated in Chapter 2, “Installation of your Linux Server”, many network services including, but not limited, to telnet, rsh, rlogin, or rexec are vulnerable to electronic eavesdropping. As a consequence, anyone who has access to any machine connected to the network can listen in on their communication and get your password, as well as any other private information that goes over the network in plain text. Currently the Telnet program is indispensable for daily administration task, but is insecure since it transmits your password in plain text over the network and allows any listener to thereby use your account to do any evil he likes. (Далее…)
Linux PortSentry
Overview
Firewalls help us to protect our network for unsolicited intrusions. With them we choose which ports we want to open and which ones we don’t. Information is kept private by your organization and responsibility. Nobody from the outside knows implicitly knows this information, but attackers know as well as spammers that for some kinds of attacks you can use a special program to scan all the ports on a server to glean this valuable information (what is open and what is not). (Далее…)
Linux Logcheck
Overview
One important task in the security world is to regularly check the log files. Often the daily activities of an administrator don’t allow him the time to do this task and this can bring about problems. (Далее…)