Automated tool at LinuxWorld reduces security risk

By Pam Derringer, News Writer 04 Aug 2008 | SearchEnterpriseLinux.com

Enterprise Linux headlines Digg This!     StumbleUpon     Del.icio.us

For more on LinuxWorld 2008 and Linux security: LinuxWorld 2008 conference coverage IBM engineer touts SELinux at LinuxWorld workshop Red Hat Linux locked down per DoD, CIS security guidelines

In a preview of his security workshop presentation at LinuxWorld Conference & Expo, Edward Hammersla, the chief operating officer of Herndon, Va.-based Trusted Computer Solutions Inc., said that nearly one-quarter of all Linux Internet-facing servers are not locked down or secured against intrusion because of time and expense. And according to industry studies, another 50% are locked down manually with scripts.

So while 25% of Linux servers are probably secure, as much as 75% may be fully or somewhat at risk.

As much as 75% of Linux servers may be fully or somewhat at risk.

"All studies agree that administrators needs to pay greater attention to locking down operating systems," Hammersla said. "Even with SELinux, you have to turn on the SE features. And you have to know where they are to activate them."

Another major area of vulnerability is server passwords, which are administered manually, he said.

But luckily, Hammersla has a fix. Trusted Computer Solutions has an automated scanning tool that searches all servers for conformity to 160 commercial and military guidelines and identifies vulnerabilities, he said. Its Security Blanket complements and extends SELinux to ensure that the operating system and applications run safely, he said.

"The operating system is a traditionally overlooked piece of Linux security, Hammersla said. "With the proper tools, this can be done easily and result in a far more secure operation."

Let us know what you think about the story; email Pam Derringer, News Writer . And check out Enterprise Linux Log.

Tags: Linux security tools,  Linux server and network security issues and threats,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Linux security tools Using BackTrack to check for Linux vulnerabilities An open source security language: What is OVAL? What do you know about Linux administration tools? Using OpenSSH for secure network tunnels on Linux When to use SELinux: An introduction to security-enhanced Linux After delay, Fedora 10 finally available Linux open source firewall software options GroundWork adds network monitoring tools to systems management suite SE-Postgres tightens SQL security Upcoming Fedora 10 release foreshadows Red Hat Enterprise Linux 6 Linux server and network security issues and threats One million Linux kernels booted by Sandia researchers using virtualization and HPC Using nmap for Linux administration and security A look at real-world exploits of Linux security vulnerabilities Using OpenSSH for secure network tunnels on Linux Red Hat Enterprise Linux 5.3 released Open source growth dims LAMP stack to symbolic status LinuxWorld preview: IBM engineer touts SELinux Canonical beefs up Ubuntu with new server, desktop version Linux security guide: Linux, open source security tools and tips Securing your Linux server with iptables

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary