Security Basics mailing list archives
Re: security tools collection
From: Neo <security () spacerat ch>
Date: Tue, 07 Apr 2009 07:49:32 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 You don't need more tools, since you seem not to understand what you're doing. You won't need rkhunter AND chkrootkit at the same time on the same box. You should define your security processes, not waste your time and money for tools which turn out to be worthless. However on SuSE take a look at AppArmor, mod_security2. Neo J. Bakshi schrieb:
Dear list, I have already done a lot of google search but at the end I am very much confused about security tools. I want to secure a remote linux server ( suse 11.2 ) which running apache, mysql, postfix+dovecot, squid and also regurarly take backup ( ssh+rsync) from another server. I have already implement iptables firewall, monit, ssh2 with root login disable, nrpe, regular checking by chkrootkit and rkhunter by cron. But implementing security measures don't provide peace. I need more tools !! And where I am confused. What else should I have in my collection ? One very good linux distro is Backtrack which have a lots of such security tools but if you don't know actually what is there you can't use backtrack. It will take bit more time to flip through it. So you security experts please show me the way. Please advice me what else I must need and what are the tools already thetre in backtrak linux ? Thanks ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkna6WsACgkQDKoGk2jFdgxROACfbzIE/hnTIlVZRqFGlP0Az9yU FLcAn01q97l/JM4VWluVaXZnprookF6H =MkxZ -----END PGP SIGNATURE----- ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both Instructor-Led and Online formats is the most concentrated exam prep available. Comprehensive course materials and an expert instructor means you pass the exam. Gain a laser like insight into what is covered on the exam, with zero fluff! http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html ------------------------------------------------------------------------
Current thread:
- security tools collection J. Bakshi (Apr 06)
- Re: security tools collection J. Oquendo (Apr 06)
- Re: security tools collection Abhishek Kumar (Apr 07)
- Re: security tools collection Serg B (Apr 07)
- Re: security tools collection Neo (Apr 07)
- Re: security tools collection J. Oquendo (Apr 06)