https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994081#M216 Hi,<BR /><BR />first thing to do is to harden your system.<BR /><BR />Disable unwanted network services. <BR /><BR />Run a good hardening tool like bastille-linux.<BR /><BR />Download the rpm from,<BR /><BR /><A href="http://www.bastille-linux.org/#get" target="_blank">http://www.bastille-linux.org/#get</A><BR /><BR />Next thing is to get a software to periodically monitor your log files and send you alerts in case of suspicious log entries.<BR /><BR />use logsentry tool for that,<BR /><BR /><A href="http://www.gnu.org/directory/sysadmin/Monitor/LogSentry.html" target="_blank">http://www.gnu.org/directory/sysadmin/Monitor/LogSentry.html</A><BR /><BR />If you need C-2 trusted system model auditing then you can use SNARE (System iNtrusion Analysis and Reporting Environment) software ( basically operates as a kernel module ) <BR /><BR /><A href="http://freshmeat.net/projects/snare/?topic_id=43%2C862%2C143%2C253" target="_blank">http://freshmeat.net/projects/snare/?topic_id=43%2C862%2C143%2C253</A><BR /><BR />regards,<BR />U.SivaKumar<BR /> Wed, 11 Jun 2003 05:07:42 GMT U.SivaKumar_2 2003-06-11T05:07:42Z https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994080#M215 Hi,<BR /><BR />How can I view/set auditing features on RH 8. For Microsoft it would be easy since all you need to do is to go to Local Policy Settings. I need to know if someone is trying to hack to my system. I am planning to have a firewall and proxy installed in one of my servers using RH 8. Does anyone have a suggestion. Wed, 11 Jun 2003 03:22:41 GMT https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994080#M215 Francis Ancheta 2003-06-11T03:22:41Z https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994081#M216 Hi,<BR /><BR />first thing to do is to harden your system.<BR /><BR />Disable unwanted network services. <BR /><BR />Run a good hardening tool like bastille-linux.<BR /><BR />Download the rpm from,<BR /><BR /><A href="http://www.bastille-linux.org/#get" target="_blank">http://www.bastille-linux.org/#get</A><BR /><BR />Next thing is to get a software to periodically monitor your log files and send you alerts in case of suspicious log entries.<BR /><BR />use logsentry tool for that,<BR /><BR /><A href="http://www.gnu.org/directory/sysadmin/Monitor/LogSentry.html" target="_blank">http://www.gnu.org/directory/sysadmin/Monitor/LogSentry.html</A><BR /><BR />If you need C-2 trusted system model auditing then you can use SNARE (System iNtrusion Analysis and Reporting Environment) software ( basically operates as a kernel module ) <BR /><BR /><A href="http://freshmeat.net/projects/snare/?topic_id=43%2C862%2C143%2C253" target="_blank">http://freshmeat.net/projects/snare/?topic_id=43%2C862%2C143%2C253</A><BR /><BR />regards,<BR />U.SivaKumar<BR /> Wed, 11 Jun 2003 05:07:42 GMT https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994081#M216 U.SivaKumar_2 2003-06-11T05:07:42Z https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994082#M217 You have a lot of resources - from RH "Security Guide" <A href="http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/security-guide/" target="_blank">http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/security-guide/</A> <BR /><BR />to <BR /><BR /><A href="http://www.linuxsecurity.com/resources/index.html" target="_blank">http://www.linuxsecurity.com/resources/index.html</A><BR /><BR /><BR />Regards,<BR />Vitaly Wed, 11 Jun 2003 10:54:55 GMT https://community.hpe.com/t5/secure-os-software-for-linux/rh-8-security-and-logging/m-p/2994082#M217 Vitaly Karasik_1 2003-06-11T10:54:55Z