Security

Latest Article:

Security Checks During Possible Compromise - Part 2

Continuing from the previous article on checking your slice for possible security compromises, this entry will discuss using the Slice Manager's rescue mode to take a closer look at your system.

Best Practices

Secure FTP Transfers: Using FTP to transfer files to and from your Slice can cause issues with security - let's look at SFTP as a safe and secure method.

---

Prevention

Installing and configuring fail2ban: Let's look at installing and configuring fail2ban which can help in securing our Slice from multiple login attempts.

---

Detection

Capturing packets with tcpdump: Tcpdump is a powerful network debugging tool which can be used for intercepting and displaying packets on a network interface.

---

Scanning for rootkits with chkrootkit: Regular scanning of your Slice is an important part of being a sysadmin. Automated scans are even better.

Scanning for rootkits with rkhunter: Continuing the rootkit scan of our Slice, we can get even stronger results by using rkhunter as well as chkrootkit.

Scanning for rootkits with Rootcheck: Continuing the rootkit scan of our Slice, we strengthify our results even more by using Rootcheck along with other rootkit detection tools.

---

Recovery

Security Checks During Possible Compromise - Part 1: There are some basic tools you can use to check your slice if you suspect it's been compromised by an intruder.

Security Checks During Possible Compromise - Part 2: Continuing the examination of a potentially compromised slice, this article discusses using the Slice Manager's rescue mode to take a closer look at your system.