[1927] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Question.

daemon@ATHENA.MIT.EDU (Duncan Simpson)
Tue Jun 23 01:21:55 1998

To: Dave Wreski <dave@nic.com>
Cc: linux-security@redhat.com
In-reply-to: Your message of "Sun, 21 Jun 1998 22:34:22 EDT."
             <XFMail.980621223422.dave@nic.com> 
Date: Mon, 22 Jun 1998 16:42:20 +0200
From: Duncan Simpson <dps@io.stargate.co.uk>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com


Let me follow up the FAQ with a couple of books that should be on every 
admin's bookshelf IMHO.

1. "Practical UNIX and Internet Security" (Garfunkel and Spafford)
[ ISBN 1-56592-148-8, ORA, safe on the cover ]

2. "Building Internet Firewalls" (Chapman and Zwicky)
[ISBN 1-56592-124-0, ORA, fortified gateway on the cover ]

Book 1 has a good checklist at the back and fair use presumably allows you to 
photocopy copy it for your own use. Book 2 has instrcutions for setting up an 
ultra-paranoid host, including tools might like to uise (S/Key, tcp wrappers, 
tripwire, swatch, logging down a serial line to a no-network host, etc).

To this lsit I would add a good general sysadmin crib book, for example 
"Essential System administration" (the same series, so presumably complementry 
to the above couple of books).

Implementing an appropiate security policy, aided by the books referenced, and 
up to date software should stop 98% of the crackers out there (and all 
beginners). The other 2% may not be feasible if you want a useable system 
(well funded "information warfare" outfits are probably able to penetrate the 
vast majority of systems).
-- 
Duncan (-:
"software industry, the: unique industry where selling substandard goods is
legal and you can charge extra for fixing the problems."

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post