- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Re: Trusted Linux box
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-24-2001 11:25 AM
тАО08-24-2001 11:25 AM
Trusted Linux box
I am using RedHat 7.0 2.2.16 kernel release.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-24-2001 01:08 PM
тАО08-24-2001 01:08 PM
Re: Trusted Linux box
As such Linux has lot of features, it is matter of disabling everything and then enabling only the things you want. But if you are looking for a command like we do in HP to make a system trusted, then i don't believe there is anything like that.
But you can definitely try running bastille
http://wwww.bastille-linux.org
It will definitely make a default installation more secure.
-HTH
Ramesh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-02-2001 01:45 PM
тАО09-02-2001 01:45 PM
Re: Trusted Linux box
Please have a look at :
http://www.hp.com/security/products/linux
This is a recent announcement. It seems to offer lots of security features and some of these features look like HP-UX ones (system event auditing).
Don't hesitate to download and read the technical product brief in PDF.
Good luck.
Kodjo
P.S. Don't forget to rate this answer (from 1 to 10).
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-21-2001 10:36 AM
тАО09-21-2001 10:36 AM
Re: Trusted Linux box
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-21-2001 12:24 PM
тАО09-21-2001 12:24 PM
Re: Trusted Linux box
Before anyone can give a coherent answer to your question, you're first going to have to define what you mean by "Trusted."
Since this is an HP forum and you've capitalized the word, you may mean as in HP-UX Trusted Mode. In that case you're looking for password aging, shadow passwords, and kernel auditing capabilities. The first two are bundled with most Linux distributions. The auditing capabilities are built into some security-conscience implementations (such as the HP one mentioned by someone else), but are also available with the Lnux Intrusion Detection System (LIDS) kernel module for other distributions.
You may mean trusted as in other systems trust it for root level access. In that case see the comments about .rhosts stuff by someone else, though you probably want to use ssh instead of rsh (www.openssh.org).
You may also mean trusted as in US Government Trusted Systems Evaluation Criteria (C2, B1, B2, etc.). There are no Linux systems with official TSEC evaluations that I know of, but...
o The following should be able to meet C2 standards:
- Any Linux distro reasonably hardened and running LIDS
- The Wirex distro
o The following should be able to meet B1 standards when running on physically secured hardware
- The SGI distro
- The HP distro
- A well hardened system running the NSA SE Linux patches
For information on hardening Linux systems, see the SANS Institute's 'Securing Linux Step-by-Step', the RedHat site mentioned by someone else, and also the Bastille Linux Project (www.bastille-linux.org).
There are also Linux guidelines being produced by the Center for Internet Security (www.cis.org), but these aren't out yet.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-21-2001 12:34 PM
тАО09-21-2001 12:34 PM
Re: Trusted Linux box
In addition to his links, there is another good doc on Securing/Optimizing Linux:
http://www.redhat.com/mirrors/LDP/LDP/solrhe/Securing-Optimizing-Linux-RH-Edition-v1.3/index.html
Lots of good stuff in there and its free.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-02-2001 10:41 AM
тАО10-02-2001 10:41 AM