Security Basics mailing list archives

Re: Network admin tools

From: White Vampire <whitevampire () mindless com>
Date: Sat, 2 Nov 2002 02:25:32 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, Oct 31, 2002 at 07:29:14PM -0300, Blade Runner(blade () seven com br) wrote:

Can anyone tell me some free system-network administration tools?
Actually I am using nagios www.nagios.org and snort.


        A well-run server largely relies upon the administrator rather
than third party tools, but that is my opinion.  Nevertheless, a variety
of tools can harden a server and make life easier.

        I setup log processing and mailing, regularly run system scripts
for maintainence and notification via mail of notable changes over a
timeperiod, and a variety of other automation upon my own design.  It's
quite simplr really, I believe there are some script out there provided
for the public that do similar tasks.

        nmap serves handy, simply to verify the ports open.  It is not
necessarily a bad idea to run "John" [http://john.openwall.com/]
regularly to test for bad passwords.

        A lot of internal tools exist within operating systems that
people do not realize.  Linux provides fstab entries to limit filesystem
abilities; chattr to specify attributes to a file to prevent changes,
etc; you can have internal password expiry; quotas.. the tools are
numerous.

        I like ViperDB vs. Tripwire, but some people may prefer
Tripwire.  They are filesystem integrity intrusion detection systems.

        All these things are well-documented.  Manpages and Google
should suffice for comprehensive reference.

        I could go on forever, I am always learning something new or
some way to make my servers better in some way.

Regards,
- -- 
\   | \  /  White Vampire\Rem                |  http://gammaforce.org/
 \|\|  \/   whitevampire () mindless com        |  http://gammagear.com/
"Silly hacker, root is for administrators."  |  http://webfringe.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.5 (GNU/Linux)

iD8DBQE9w33s3+rxmnEDyl8RAoUEAKDf3w0E/z4XTwIp3D/fvDLJVTYLewCgxuHZ
BTLc1DiDjUpcOJGL2uoTKP4=
=Uf8H
-----END PGP SIGNATURE-----

Current thread:

Network admin tools Blade Runner (Nov 01)
- Re: Network admin tools White Vampire (Nov 04)