TechRepublic: Linux 101: Basic network security

Jun 10, 2000, 12:35 (0 Talkback[s])
(Other stories by Jack Wallen)

"Enterprise-wide security strategies require far more explanation than I can possibly include in a 101 series (or even a single article), so I'll just run through a simple method of locking down a machine on a LAN that is not behind a firewall and that needs quick and cheap protection from unwanted guests. Oh yes; I'll also keep in mind you'll be doing so with limited Linux knowledge."

"The /etc/hosts.* files are crucial to a simple network. (In fact, the /etc/hosts.deny file is crucial to the very powerful portsentry application.) The /etc/hosts.allow and /etc/hosts.deny files inform the system who can and who cannot enter the machine."

"The first stop for all incoming network traffic is /etc/hosts.allow. This particular file is set up in the following fashion: daemon_list : client_list"

Complete Story (free registration required)

Related Stories:

• SecurityFocus.com: Securing Linux Part II(Apr 30, 2000)
• SecurityFocus.com: Securing Linux(Apr 03, 2000)
• Information Security Magazine: Securing Linux(Feb 14, 2000)
• Security Portal: Securing your name servers(Nov 25, 1999)
• Linux Gazette: Securing Linux: The First Steps(Nov 15, 1999)