Linux Security Learning Guide
Security is one of the most important considerations in any enterprise IT shop, and there are so many resources available it can be difficult to know where to start. Here, we've gathered a wealth of information to get you up to speed quickly.
Requires Free Membership to View
When you register, my team of editors will also send you resources covering Linux administration and management; integration and interoperability between Linux, Windows and Unix; securing Linux and mixed-platform environments; and migrating to Linux.
Cathleen A. Gagne, Senior Editorial Director
TABLE OF CONTENTS
Making sense of terms and acronyms Getting started: Linux security at a glance Best practices: To do and not to do Worst case scenarios: When things went wrong Intrusion detection and prevention Firewalls: How-tos, tips and products Remote security: VPNs, wireless and more Security monitoring: Beyond intrusion detection Security management: Policies, tools and vigilance Other Resources -- bookmark these pages!
Making sense of terms and acronyms
[ Return to Table of Contents ]
- Buffer overflow
- Firewall
- Honey pot
- Intrusion detection
- Malware
- Packet
- Snort
- Trojan horse
- Virtual Private Network (VPN)
- Virus
- Virus hoax
- Worm
- SearchSecurity.com glossary
Getting started: Linux security at a glance
[ Return to Table of Contents ]
- Featured Topic: Linux security -- Rising popularity = Increased risk
- Featured Topic: Is open source secure? (SearchSecurity.com)
- Article: Linux Security: Good Enough (eWEEK)
- Linux security primer (Lycos)
- Expert Advice: Most secure distribution of Linux (SearchSecurity.com)
- Article: Basic security tenets apply to open source programs too (SearchSecurity.com)
- Article: Is Linux security right for you? Expert offers guidance (SearchEnterpriseLinux.com)
- Desktop primer: My guide to Linux security (Rob Tougher -- Linux Gazette)
- Column: Trusted Linux? (Information Security)
- Bastille Hardening System
- Linux security FAQ (LinuxSelfHelp.com)
- White Paper: Securing Linux (Dell)
- Basic Hardening Linux (Linux Exposed)
Best practices: To do and not to do
[ Return to Table of Contents ]
- How To: Security quick start how-to for Linux (LDP how-to index)
- How To: Linux security how-to (LDP how-to index)
- Interview with Joe Grand: Hacking has its boundaries (SearchEnterpriseLinux.com)
- Article: Linux security -- the seven deadly sins (SearchEnterpriseLinux.com)
- Dos & don'ts: Smoothing out patch-management woes (SearchEnterpriseLinux.com)
- Article: Don't dismiss possibility of malicious code on Linux (SearchEnterpriseLinux.com)
- Webcast: Allocating your diminishing security resources (SearchSecurity.com)
- Article: Common security mistakes still haunt enterprises (SearchSecurity.com)
- Tip: What to do if you find a security problem (SearchSecurity.com)
Worst case scenarios: When things went wrong
[ Return to Table of Contents ]
- BlackBerry reveals bank's secrets (Wired)
- 'Disgruntled employee' hacks own company's computer system (Silicon.com)
- Virus hoaxes and the real dangers they pose (SecurityFocus)
- Bank "human error" opens e-mail addresses (ZDNet)
- Oops! True IT blooper #95: An alarming entry to the blooper zone (SearchWin2000.com)
- Hacker horror stories (SearchSecurity.com, excerpted from InformIT)
- Opinion: Surviving the Worst-Case Scenario (NewsFactor Network)
Intrusion detection and prevention
[ Return to Table of Contents ]
- Q&A: Nab hackers with Snort on Linux (SearchEnterpriseLinux.com)
- White paper: Using ACID and SnortSnarf with Snort (Prentice Hall PTR)
- How-to: Security quick start how-to for Linux (LDP how-to index)
- How-to: Snort setup (LDP how-to index)
- Expert Advice: Intrusion-detection system for Linux Red Hat (SearchSecurity.com)
- Article: Users not so ready to declare IDS dead (SearchSecurity.com)
- Article: Intrusion detection with Debian GNU/Linux (LinuxFocus)
- Honeypots: Simple, Cost-Effective Detection (SecurityFocus)
- How-to: Peering Over the Firewall -- Using Snort and a homemade read-only cable to follow network traffic (Linux Journal)
- News: Stumbler mapping networks for future attacks (SearchSecurity.com)
- Column: Detecting server compromises (Information Security)
- Article: How network intrusion prevention devices can -- and can't -- secure your network (Linux Security)
- Article: That network balancing act -- Keeping a clear view (SC Magazine)
- Product & vendor guide: Intrusion Detection/Forensics
Firewalls: How-tos, tips and products
[ Return to Table of Contents ]
- Expert Advice: How many firewall layers does my company need? (SearchEnterpriseLinux.com)
- Expert Advice: Can I really use a Linux server in place of a commercial firewall? (SearchEnterpriseLinux.com)
- Expert Advice: Resources on firewalls (SearchEnterpriseLinux.com)
- Expert Advice: Where can I learn more about setting up a firewall? (SearchNetworking.com)
- How-to: Firewall configuration prerequisites (Jay Beale, Bastille Linux Project)
- Tip: Where to put a firewall when using partitions (Search400.com)
- White Paper: Hardening the TCP/IP stack to SYN attacks (Security Focus)
- White Paper: Firewall Evolution: Deep packet inspection (Security Focus)
- White Paper: Linux firewall-related /proc entries (Security Focus)
- White Paper: Migrating services between firewall technologies (Andrew Barratt -- SANS Institute)
- Article: Building Firewalls with iptables, Part 1 (EarthWeb)
- News: Symantec offers firewall for Linux on the iSeries (Search400.com)
- How-to: Samba Authenticated Gateway HOWTO (LDP How-to Index)
- Article: Secure Installation of Apache Web Server (Linux Exposed)
- Tip: Choose the right firewall topology (SearchNetworking.com)
- IPCop firewall
- How-to: Linux Firewall download and installation (Projectfiles.com)
- Product & vendor guide: Firewall software products
- Product & vendor guide: Firewall services and resellers
- Product & vendor guide: Firewall appliances
- Firewall tips and articles(LinuxSecurity.com)
- Best Web Links: Firewalls
Remote security: VPNs, wireless and more
[ Return to Table of Contents ]
- Wireless apps get more powerful, but security is a concern
- Wireless security: Is WPA good enough?
- VPNs and wireless LANs
- Gateways for secure wireless access
- Linux-PAM (Pluggable Authentication Modules for Linux): A flexible mechanism for authenticating users
- Using PPTP or IPsec VPN tunnels for WLAN security/gateways
- Wireless LAN analyzers: The ultimate hacking tools?
- Diagnosing WLAN errors
- Wireless security overview
- Bolstering wireless LAN security
- Who's watching your wireless network?
- OpenSSH for remote security
- Linux VPN masquerade how-to
- Technology is not the only solution to wireless security
- Wireless Gone Wild: Time to Plan Your WLAN
- Introduction to FreeS/WAN for VPN, remote security
- Get expert advice about remote security. It's easy!
Security monitoring: Beyond intrusion detection
[ Return to Table of Contents ]
- Network security monitoring -- Going beyond intrusion detection
- Network security monitoring is more than IDS
- Stumbler mapping networks for future attacks
- Penetration testing
- Low-cost security tool: monitoring
- Network monitoring with Dsniff
- Security tools watch behavior to stop new threats
- SpamAssissin mail filter
- Mail Scanner (part of a complete free anti virus and spam proxy solution)
- Security monitoring software products
- Security monitoring services and resellers
- Security monitoring hardware products
- Get expert advice on security monitoring practices and tools for Linux
Security management: Policies, tools and vigilance
[ Return to Table of Contents ]
- How to be a security warrior, part 2
- Security hardening
- How to make security matter
- The real cost of cybersecurity
- Security auditing
- Developing a security awareness, training and education program for users
- Addressing security's people problem
- Building and implementing a successful security policy
- The next big thing: Vulnerability assessment
- Security Enhanced Linux
- SSL certificates how-to
- Linux IP Masquerade HOWTO
- Cisco networking simplified: policy management and security
- Protecting your Web servers: Is your security pukka?
- Tip: Web security benchmarks
- Securing servers: Vendors offer everything from common sense to rocket science
- Ways to open and close ports without a firewall
- Security management basics
- DNS how-to: Basic security options
- The security policy document library: E-mail policy
- Security policy for the real world: Physical security
- More about physical security
- Protecting the data center
- User identity management products
Other Resources -- bookmark these pages!
[ Return to Table of Contents ]
- Featured Topic: Security tool school (SearchEnterpriseLinux.com
- Can't find an answer to your security question? Ask John H. Terpstra
- Best Web Links: Securing Linux (SearchSecurity.com)
- White papers: Enterprise Linux security(SearchEnterpriseLinux.com)