Jump to content

Talk:Unix security

Page contents not supported in other languages.
From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Htaccess (talk | contribs) at 19:50, 14 June 2006 (Packet filtering). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Future Work

I'd like to start working on sections and cleaning them up.

Patching

I'd like to ditch most everything in this section and put in best-practices instead. Thoughts? Tall Girl 22:11, 20 May 2006 (UTC)[reply]

Packet filtering

This article does not mention packet filtering and iptables.

It does now!!! Tall Girl 19:52, 20 May 2006 (UTC)[reply]

Before I go crazy with iptables edits, isn't that pushing this page into a more Linux security direction than Unix security focus? Tall Girl 01:00, 22 April 2006 (UTC)[reply]

Okay, so I'm about to start a section on iptables. Tall Girl 18:42, 20 May 2006 (UTC)[reply]

I'm done for now. Please review, comment, tear me to shreds, etc. Tall Girl 19:52, 20 May 2006 (UTC)[reply]

In the firewall section there should be a more general discussion of firewalling, packet filtering, stateful inspection etc. Then particular implementations should be mentioned whith details about what their features are in a general sense eg is it a simple packet filter, or an old implementation that ran on an older series of Kernals (eg ipchains). Ones that should be mentioned are (off the top of my head), OpenBSD packet filter (pf), [ipfw], [ipchains], [IPFilter] and any firewalling code included in propritary Unix (what do Solaris and AIX and HPUX use?). Only then should detailed descriptions of the particular filters syntax etc be mentioned and probably not in huge detail. Some mention could also be made of products like checkpoint firewall one that can run on a unix box, and various specific implementations with open source roots like smoothwall and astaro. To round out the firewall section there could be a discussion about firewall products which tend to contain things like web filters (eg squidguard, dansguardian) spam filters (eg spam assassin, mailscanner) vpn terminators, bandwidth management (QoS) and anti-virus. Htaccess 19:50, 14 June 2006 (UTC)[reply]

grsecurity

This article does not mention grsecurity.

IDS

This article does not mention Intrustion Detection Systems and Snort.

Malware and Virus

Maybe ClamAV should be mentioned?

Log file monitoring

I think I'd go insane without LogWatch. Very good for finding out what's going on where on a Linux system (and I believe it works with others, but I don't use any others at the moment) without having to read all of /var/logs.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Talk:Unix_security&oldid=58633152"