For more information:

helpdesk@uri.edu

Linux Security

Hal Corcoran
Technical and Operational Services
Office of Information Services
University of Rhode Island

Key Concepts

TCP/IP (Transmission Control Protocol/Internet Protocol)
Internet Services
RSH, Rlogin, Rexec
Finger, Talk, NFS
HTTP, SMTP, PortMapper, etc.
Telnet, SSH

Common Exploits and Vulnerabilities

Sniffing
Scanning
Buffer Overflows
Root Kits

Secure Practices

Know what services are enabled on your machine, enable only necessary services and limit access those services as much as possible
Stay up to date on patches and updates
Run closed systems whenever possible
Always change default passwords
Monitor system logs periodically
Avoid sending passwords via unencrypted protocols (Telnet, FTP) whenever possible
Avoid unencrypted logins as root user especially

Tools

Nmap, etc.
Tripwire
Portsentry
Packet Filters
Encryption (Secure Shell, Secure FTP, etc.)

General Security Sites

www.sans.org
www.cert.org
www.securityfocus.org

Operating System-specific Sites

www.redhat.com
www.mandrake.com

University of Rhode Island, Kingston, RI 02881 | Phone: 401-874-1000
Copyright © 2007. All rights reserved. Disclaimer | Web feedback
URI is an equal opportunity employer committed to the principles of affirmative action.