[227] in linux-security and linux-alert archive
Proposal - Linux security package and howto
daemon@ATHENA.MIT.EDU (Bob Bagwill)
Fri May 5 14:13:15 1995
Date: Wed, 03 May 95 11:05:03 -0400
From: Bob Bagwill <rbagwill@nist.gov>
To: linux-security@tarsier.cv.nrao.edu
Hi folks,
I recently gave away my xterminal and sparcstation and converted 100%
to Linux. I noticed that a lot of security-related software was
missing from the distribution I used.
I would like to see a package of essential software for Linux
security. Particular distributions tend to include some of the
components, but not others. It might be useful to have a server package,
which is appropriate for a multi-user, multi-purpose Linux system, and
a desktop package for a single-user system. I'd also like to
see accompaning howto's.
To get the ball rolling, here is some software I had to obtain for
my single-user desktop box:
anon-ftpd-0.7 - to permit worry-free ftp
cops_104 - to check for config problems, needs to be improved for Linux
pgp262s - to send and receive confidential email, and to secure integrity info
rsaref - for pgp
sendmail.8.6.12 - needed for latest security bug fixes, could be replaced
by simpler SMTP agent
skey-2.2 - to login to firewall system
xautolock.pl10 - to lock the screen when I leave my desk
lsof_3.23 - to check for suspicious processes
md5 - to create and check digital signatures
chrootuid - to chroot WWW daemons
What other software would you suggest? I'd like to see a
problem -> solution format.
--
Bob Bagwill <rbagwill@nist.gov>
[Mod: Please direct replies to the author. Bob, could you post a
summary of replies (i.e. software, problem -> solution, etc.)? This
could be a good thing for inclusion in the FAQ that Alexander Yuriev is
working on. --Jeff.]
