Author Topic: Server Security Issue (Read 6990 times)

kkaa · « **on:** June 02, 2004, 07:42:35 AM »

Helo All
I want to ask about the security issues for Linux on a public Network :
1.How to check if Linux Server is secure or not on a Public Network?
2.How to check if the server is being hacked by any hacker (Intrusion) or not?
3.How to protect a publically available server (i.e. web server, mail server )against the threats of hacking or intrusion?
Thanks :lol:

dragoncity99 · « **Reply #1 on:** June 03, 2004, 11:13:27 AM »

Answers:

1. U can use a PC with internet from outside ur network. Use nmap to do so at ur server.

2. Snort is a good tool to do the monitoring, or u can use tripwire.

3. Well, firewalls ---> Shorewall is wat i use.

kanwal · « **Reply #2 on:** June 05, 2004, 11:59:08 PM »

Quote from: "kkaa"

Helo All
I want to ask about the security issues for Linux on a public Network :
1.How to check if Linux Server is secure or not on a Public Network?

use some (not one) good vulnerability scanners.. like. nessus, cis bechmark. Asses the result.. follow the recommendations.. repaeat to check.

Quote

2.How to check if the server is being hacked by any hacker (Intrusion) or not?

no definate answer for this.. see what ports are open.. help in detecing backdoors.. also.. u can use.. file intergrity checker like tripwire ..

Quote

3.How to protect a publically available server (i.e. web server, mail server )against the threats of hacking or intrusion?
Thanks :lol:

1. load the minimal OS.
2. stop unneccessary services
3. don't use telent/ftp , use ssh/sftp instead
3. use iptables..
4. regulery upgrade the OS and other software.
5. regular scanning
6. review logs regulerly

list will continue..
security is a process..

Regards,

dragoncity99 · « **Reply #3 on:** June 06, 2004, 01:10:02 AM »

Also regarding ur question number two, i hope this will help u:

http://www.robertgraham.com/pubs/sniffing-faq.html

As i was trying to check my own server's security.