Talk:Unix security

Computer security: Computing Start‑class High‑importance

This article is within the scope of WikiProject Computer security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Computer securityWikipedia:WikiProject Computer securityTemplate:WikiProject Computer securityComputer security Start This article has been rated as Start-class on Wikipedia's content assessment scale. High This article has been rated as High-importance on the project's importance scale. This article is supported by WikiProject Computing (assessed as High-importance). Things you can help WikiProject Computer security with: Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

Computing: Software / Security Start‑class Low‑importance

This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.ComputingWikipedia:WikiProject ComputingTemplate:WikiProject ComputingComputing Start This article has been rated as Start-class on Wikipedia's content assessment scale. Low This article has been rated as Low-importance on the project's importance scale. This article is supported by WikiProject Software (assessed as Low-importance). This article is supported by WikiProject Computer security (assessed as High-importance). Things you can help WikiProject Computer security with: edit history watch purge Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

I'd like to start working on sections and cleaning them up.

I'd like to ditch most everything in this section and put in best-practices instead. Thoughts? Tall Girl 22:11, 20 May 2006 (UTC)[reply]

Rather then focusing on firewalls and such, i'd have expected this to be a general Unix article. Such as:

On the Security of UNIX by Dennis Ritchie http://www.tom-yam.or.jp/2238/ref/secur.pdf
Introduction to Computer Security: Unix security by Pavel Laskov - http://www.ra.cs.uni-tuebingen.de/lehre/ss09/introsec/08-unix.pdf
And lectures, such as: http://213.174.143.38/download/cse497b-lecture-18-unixsecurity-pdf-14090696.html

81.206.113.131 (talk) 18:57, 11 November 2010 (UTC)[reply]

This article does not mention packet filtering and iptables.

It does now!!! Tall Girl 19:52, 20 May 2006 (UTC)[reply]

Before I go crazy with iptables edits, isn't that pushing this page into a more Linux security direction than Unix security focus? Tall Girl 01:00, 22 April 2006 (UTC)[reply]

Okay, so I'm about to start a section on iptables. Tall Girl 18:42, 20 May 2006 (UTC)[reply]

I'm done for now. Please review, comment, tear me to shreds, etc. Tall Girl 19:52, 20 May 2006 (UTC)[reply]

In the firewall section there should be a more general discussion of firewalling, packet filtering, stateful inspection etc. Then particular implementations should be mentioned whith details about what their features are in a general sense eg is it a simple packet filter, or an old implementation that ran on an older series of Kernals (eg ipchains). Ones that should be mentioned are (off the top of my head), OpenBSD packet filter (pf), [ipfw], [ipchains], [IPFilter] and any firewalling code included in propritary Unix (what do Solaris and AIX and HPUX use?). Only then should detailed descriptions of the particular filters syntax etc be mentioned and probably not in huge detail. Some mention could also be made of products like checkpoint firewall one that can run on a unix box, and various specific implementations with open source roots like smoothwall and astaro. To round out the firewall section there could be a discussion about firewall products which tend to contain things like web filters (eg squidguard, dansguardian) spam filters (eg spam assassin, mailscanner) vpn terminators, bandwidth management (QoS) and anti-virus. Htaccess 19:50, 14 June 2006 (UTC)[reply]

This article does not mention grsecurity.

This article does not mention Intrustion Detection Systems and Snort.

Maybe ClamAV should be mentioned?

I think I'd go insane without LogWatch. Very good for finding out what's going on where on a Linux system (and I believe it works with others, but I don't use any others at the moment) without having to read all of /var/logs.

I exported this page to v:Unix security. You may now adjust it for Wikipedia's purposes. - Sidelight12 ^Talk 11:50, 3 April 2014 (UTC)[reply]