Security Basics mailing list archives
RE: Compliance and SSH
From: "Al Cooper" <cooper () hmcnetworks com>
Date: Tue, 14 Aug 2012 08:10:31 -0600
Hi Mike, Are you interested in client side or service compliance? For server side, NERSC (National Energy Research Scientific Computer Center) had developed a version of OpenSSH that can audit user interactions called Instrumented SSH (iSSH). iSSH uses Bro IDS to generate and manage alerts. It's a pretty cool system. A white paper on iSSH can be found at: http://www.escholarship.org/uc/item/35s7k4hk The code for iSSH is located at: https://code.google.com/p/auditing-sshd/ If you are new to Bro IDS the best way to install Bro IDS for small or test environments is via SecurityOnion. http://securityonion.blogspot.com/ Scott Campbell (the author of the white paper on iSSH) gave an excellent talk about iSSH and Bro IDS at the Bro Exchange 2012 last week in Boulder. They recorded all the talks and it should be available soon on Bro's website: http://www.bro-ids.org Hope this helps, Al Cooper CISSP MCSE HMC Networks, Inc. -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Mike S Sent: Saturday, August 11, 2012 11:10 AM To: security-basics () securityfocus com Subject: Compliance and SSH Can anyone point me to which compliance method restricts or prohibits ssh connections out of a company? The company I work for has several different compliance issues and regulatory bodies to meet, and I'm trying to id this one. Thanks -- Mike of Many Stories, Ideas, and Ramblings Game Chef 2009, 2010 NaNoWriMo 2008, 2009 http://mikeofmanystories.blogspot.com/ - writings http://mikeofmany.wordpress.com/ - personal bloggery ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1 ------------------------------------------------------------------------ -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Compliance and SSH Mike S (Aug 13)
- Re: Compliance and SSH Michael D. Wood (Aug 14)
- RE: Compliance and SSH Al Cooper (Aug 14)
- Re: Compliance and SSH sapran (Aug 27)