RE: Comparing linux distros.

From: Maciej Bonin (lewrker_at_gmail.com)
Date: 02/27/05

  • Next message: Michael Painter: "Re: Hidden windows ports, files and services." 
    Date: Sun, 27 Feb 2005 11:22:19 +0100
To: security-basics@securityfocus.com

    Hi Lars,
    IMO before you even start comparing them you should bring them all to
    one kernel tree and install all available security updates, otherwise
    it makes no sense comparing anything.

    Maciej Bonin <lewrker[at]gmail[dot]com>

    ---------- Forwarded message ----------
    From: Lars Georg Paulsen <maillist@braindead.nu>
    Date: Tue, 22 Feb 2005 15:22:24 +0100
    Subject: Comparing linux distros.
    To: sec-basic list <security-basics@securityfocus.com>

    Hi list.

    I'v just started on my bachlor paper. It's about comparing 4 different
    linux distros (debian, slack, mandrake, fedora). I'm going to have a
    look at how well the diffent system are protected. All distro's are
    going to be installed with default settings, so they should almost be at
    the same level. I would like to test how well they are secured
    out-of-the-box.
    Both from remote and from local consoll.

    What I have set up to now;
    - Port scanning;
            I would like to do a portscan (using nmap)
            Maping service that are running as default on every distro.
            Check if any of the distro have any default settings for logging
            such activites. trough out /var/log/* or any where els.
            Also using the -O -v flag for nmap so I can get information about
    TCP sequence prediction, and IPID sequence generation.

    - Nessus vun. test;
            Run a test just to check the results, compared to what I'v got from
    nmap.

    - Local file security;
            I'v notice that on some box's there are special commands, ex,
    ' /bin/ping '. Are the other program that you would like to check
    priviliges to? and what about normal users reading system files,
    configures settings under /etc/* , any viewpoints?

    The hole point for my bachlors paper is comparing the 4 distro's up
    agains eachother. Bare in mind, this is just a small part of the hole
    bachlor paper, so I don't want to go all the way to the bottom.

    Any suggestions? on what do you guys think I should include?, or drop
    out...

    thanks in advance.

    cheers
    Lg 

    --
Lars Georg Paulsen <maillist@braindead.nu>
  • Next message: Michael Painter: "Re: Hidden windows ports, files and services."

    Relevant Pages

    • Re: 280R slow disks?
      ... comparing with our older Ultra5 I don't see the 3-4 times speed increase ... While I've only done a bit of early testing I noticed that the disks are ... Maybe I'm missing some magic patches compared to a base install that would ... on all kinds of levels since Solaris 8 supposedly.. ...
      (comp.unix.solaris)
    • Re: Load Times VERY SLOW
      ... I am using RTM and comparing to the same machine with XP (separate ... Drives are similar but if anything the XP has more "stuff" on it ... The machine "locked" about half way through the install of ... Win 7 RTM or Beta/RC? ...
      (microsoft.public.vsnet.general)
    • Re: The Future might be Flex 2
      ... According to the various reviews out there, Vista is systematically slower than XP on the same machine, and this has been our observation too. ... So your case sounds like an isolated one, maybe you're comparing a brand new install to an old one? ... It's been my daily machine for 2 weeks now and its pretty freaking amazing in how productive I am." Wow! ...
      (borland.public.delphi.non-technical)
    • Re: 280R slow disks?
      ... I installed it now with Solaris 8 but comparing with our older Ultra5 I don't see the 3-4 times speed increase that I had hoped for. ... Disk mirroring with Disk Suite will further increase ...
      (comp.unix.solaris)
    • Re: 280R slow disks?
      ... comparing with our older Ultra5 I don't see the 3-4 times speed increase ... While I've only done a bit of early testing I noticed that the disks are ... Maybe I'm missing some magic patches compared to a base install that would ... Trouble with that is that for compilation, they ought to be using the oldest ...
      (comp.unix.solaris)