Lesson 11 Date: 4/14/2010

Basics of Linux Security

Linux for Engineering and IT Applications

References Linux Security by Bob Toxen - detailed explanations and excellent security tips; Linux Firewalls (2nd edition) by Robert Ziegler - comprehensieve guide on iptables; Linux Security Cookbook by Daniel Barrett, Richard Silverman and Robert Byrnes - great HOWTOs on security topics; Advanced Linux Networking by Roderick Smith - nice introduction to the concepts of various network applications. Smashing The Stack For Fun and Profit, by Aleph One. -- a classical tutorial on writing buffer overflow applications. Computer Emergency Responce Team (CERT). -- Current security advisories. Security Focus -- Recent articles related systems security. Phrack -- annual hacker's magazine. Linux Kernel Rootkits, by Rainer Wichmann -- nice overview of the Linux Kernel rootkits and their detection tools. Bastille Linux - a security hardening program for Linux.

How systems get compromised Cracking passwords Trojan script Stack overflow Package upgrades and verification Open Ports List Closing Ports List TCP Wrappers IP filtering firewalls (iptables) Building iptables rules Simple iptables script NAT table NAT script Exercises with iptables Port scanning GNU Privacy Guard GPG exercises Logs Log Analysis System Integrity checks GNUtar exercises Tripwire exercises References Take me to the Course Website