Red Hat Enterprise Linux 4

Security Guide

ISBN: N/A
Table of Contents
Introduction
1. Architecture-specific Information
2. Document Conventions
3. Activate Your Subscription
3.1. Provide a Red Hat Login
3.2. Provide Your Subscription Number
3.3. Connect Your System
4. More to Come
4.1. Send in Your Feedback
I. A General Introduction to Security
1. Security Overview
1.1. What is Computer Security?
1.2. Security Controls
1.3. Conclusion
2. Attackers and Vulnerabilities
2.1. A Quick History of Hackers
2.2. Threats to Network Security
2.3. Threats to Server Security
2.4. Threats to Workstation and Home PC Security
II. Configuring Red Hat Enterprise Linux for Security
3. Security Updates
3.1. Updating Packages
4. Workstation Security
4.1. Evaluating Workstation Security
4.2. BIOS and Boot Loader Security
4.3. Password Security
4.4. Administrative Controls
4.5. Available Network Services
4.6. Personal Firewalls
4.7. Security Enhanced Communication Tools
5. Server Security
5.1. Securing Services With TCP Wrappers and xinetd
5.2. Securing Portmap
5.3. Securing NIS
5.4. Securing NFS
5.5. Securing the Apache HTTP Server
5.6. Securing FTP
5.7. Securing Sendmail
5.8. Verifying Which Ports Are Listening
6. Virtual Private Networks
6.1. VPNs and Red Hat Enterprise Linux
6.2. IPsec
6.3. IPsec Installation
6.4. IPsec Host-to-Host Configuration
6.5. IPsec Network-to-Network configuration
7. Firewalls
7.1. Netfilter and iptables
7.2. Using iptables
7.3. Common iptables Filtering
7.4. FORWARD and NAT Rules
7.5. Viruses and Spoofed IP Addresses
7.6. iptables and Connection Tracking
7.7. ip6tables
7.8. Additional Resources
III. Assessing Your Security
8. Vulnerability Assessment
8.1. Thinking Like the Enemy
8.2. Defining Assessment and Testing
8.3. Evaluating the Tools
IV. Intrusions and Incident Response
9. Intrusion Detection
9.1. Defining Intrusion Detection Systems
9.2. Host-based IDS
9.3. Network-based IDS
10. Incident Response
10.1. Defining Incident Response
10.2. Creating an Incident Response Plan
10.3. Implementing the Incident Response Plan
10.4. Investigating the Incident
10.5. Restoring and Recovering Resources
10.6. Reporting the Incident
V. Appendixes
A. Hardware and Network Protection
A.1. Secure Network Topologies
A.2. Hardware Security
B. Common Exploits and Attacks
C. Common Ports
Index
Colophon