Re: Pro-active Security Software?

From: erik (erik_at_geenspam.vanwesten.net)
Date: 08/05/03 

Date: Tue, 05 Aug 2003 00:29:10 +0200

Pragmatic wrote:

> On Mon, 04 Aug 2003 17:57:02 -0400, David P. Donahue wrote:
>
>> I'm setting up a hybrid Linux/Windows network and am looking for
>> ideas/suggestions on pro-active security software. I can assure you
>> that I have little experience in the matter, as this is my first true
>> effort in the
>> subject. I've been searching around the Internet, as it were, to
>> find ideas on what I should do, but "linux network security" and the
>> like aren't
>> exactly specific search terms :)
>>
>> Basically, I'm looking for software (freeware, ideally... I'm open to
>> purchasing software at a reasonable price if and only if it has a
>> fully functional trial version) that will sit on a linux box (I'll
>> probably be running Mandrake's latest when I get around to actually
>> building this network, the hardware of which is currently in storage)
>> and basically scan the network and local server for, well, anything
>> you think I should look
>> for. Open ports, filesystem problems, etc. I'm open to any
>> suggestions on
>> the list of things I should be looking for. Extensive logging and
>> reporting is, of course, very important.
>>
>> Basically, as I make my way through the massive, stormy sea of
>> downloadable software on the subject, I'm pretty much just looking
>> for suggestions on software with which others have had luck and/or
>> some URLs to point me in the
>> right direction. If you need to know anything more about the network
>> itself
>> just ask. I would really appreciate any help you can offer, and I
>> thank you for your time.
>
> No need to purchase anything. Look in the /usr/share/doc directory and
> read up on ipchains/iptables for firewall. Look for nmap and/or nmapfe
> for port scanning.

The world of security does not start and end with iptables and nmap.
Look for ids (snort), security basics, locking down a machine, testing
(nessus), local protection (lids) and so on. To the OP: you can find
good links if you start to use google with abovementioned names.

HTH,

EJ 

-- 
Remove the obvious part (including the dot) for my email address

Relevant Pages

  • Re: Wireless Access Point Question
    ... I have a network that is growing and i have no more open ports on the ... There are 3 open ports left on the back of the Netvanta. ... Just be careful to use robust encryption on your wireless ... John Navas FAQ for Wi-Fi: ...
    (alt.internet.wireless)
  • Re: hi, am having trouble
    ... >> in thios case you can disable file and printer sharein in your network ... >> network properties. ... > I've run the quick test with ZA Pro on my cable connection provided by ... > We have scanned your system for open ports and for ports visible to ...
    (comp.security.firewalls)
  • Re: 550 when connecting
    ... site to connect to the local server. ... >>I have an FTP site set up to connect to a network share for the purposes ... >> The FTP account has Full Control over the share permissions. ... >> Read, Read and Execute NTFS permissions on the drive, the share folder ...
    (microsoft.public.inetserver.iis.ftp)
  • Re: SonicWall Firewall Log Messages
    ... >>open ports and running proceeses on the various machines in my ... >>the peer network via caching or something. ... >>I set up a syslog server so I could validate the connection attempts ...
    (comp.security.firewalls)
  • Re: Windows Small Business Server 2003
    ... > I have set up a small office network with Small Business ... > 1MB Broadband connection with a Static IP Address from BT ... > the clients cannot display web pages. ... > two network cards on the server one Local server ...
    (microsoft.public.windows.server.general)
Quantcast