Re: [TCLUG:5793] security

To: tclug-list@listserv.real-time.com
Subject: Re: [TCLUG:5793] security
From: David Christian <dchristian@macalester.edu>
Date: Tue, 04 May 1999 09:49:26 -0500


    I don't think anyone mentioned Tripwire--a good way to make check what
configuration/basic binaries have been altered after/during a hack.  Done as
a cron job and keeping an older copy of its report to diff with, you can
tell really quickly which if any files that only *you* should change have
been changed.

It can be found on freshmeat, I believe.

Also on freshmeat, the Linux Security Administration Guide is a good
reference, mentions things like using netstat and lsof (oh did someone
mention immediately going to redhat and downloading all the updated packages
to fix known security holes?) to check what's going on with your network.

Dave

Prev by Date: Re: [TCLUG:5767] real audio and rh6.0
Next by Date: Re: [TCLUG:5793] security (some pre-coffee thoughts)...
Prev by thread: Re: [TCLUG:5795] SSH and NFS
Next by thread: RE: [TCLUG:5786] Channel 5..
Index(es):
- Date
- Thread