Presentation is loading. Please wait.

Presentation is loading. Please wait.

Linux Security. Module 13 – Linux Security ♦ Overview Linux is more prone today to security loopholes and attacks, both inside and outside the network.

Published byScot Jennings Modified over 8 years ago

Similar presentations

Presentation on theme: "Linux Security. Module 13 – Linux Security ♦ Overview Linux is more prone today to security loopholes and attacks, both inside and outside the network."— Presentation transcript:

1 Linux Security

2 Module 13 – Linux Security ♦ Overview Linux is more prone today to security loopholes and attacks, both inside and outside the network. In this module we learn about the various services and their role in Linux booting process. This module deals with iptables and TCP Wrappers. ♦ Lessons covered in this module ► Introduction to System Service ► Securing Network

3 Linux Security Lesson 1 – Introduction to System Service ♦ Introduction In Linux, system initialization i.e. starting up the system processes whenever system boots, is controlled and maintained by several files and directories. All the processes run as they are indicated in the files and certain things can be manipulated to meet requirements. ♦ Topics covered in this lesson ► System Initialization ► Chkconfig

4 Linux Security ♦ The following three main steps happen each time a system boots up to run Linux: ► Boot hardware – On the basis of information in the system’s read only memory, i.e. BIOS, the system examines and starts up the hardware. ► Start boot loader – Ideally, the BIOS examines the master boot record on the primary hard disk to view what to load next. ► Boot the kernel – With an assumption that Linux is selected to be booted, the Linux kernel will be loaded. Topic 1 - System Initialization

5 Linux Security System RunLevels ♦ The Linux system is brought to a predefined working condition when the Linux kernel runs /sbin/init. ♦ /sbin/init reads its configuration file and begins all programs listed in the configuration file. This predefined working condition is known as runlevel. ♦ Two styles of init programs, BSD-derived init programs and System V- derived init programs are usually used ► BSD-derived init programs have only one predefined runlevel ► System V-style init programs are more flexible

6 Linux Security ♦ Red Hat comes with many predefined runlevels as listed in this table Predefined Runlevels

7 Linux Security System Startup Files ♦ The system startup files control and manage the tasks after the system gets booted up by the boot loader. ♦ These files are essential for successful operation of the computer since they regulate the processes at system boot up. ♦ There are several system startup files and scripts as listed below: ► The rc.sysinit script ► The /etc/init.d and /etc/rcX.d directories ► The /etc/rc script ► The /etc/rc.local file

8 Linux Security ♦ The chkconfig command offers the capability to inquire the configurations existing or to customize configuration currently on the system. [root@localhost ~]#chkconfig –level 345 sendmail on ► The above command would configure the system to start sendmail in runlevels 3, 4 and 5. ► The present configuration of a particular daemon can be found out by running the below command, [root@localhost ~]# chkconfig –list daemon Topic 2 - Chkconfig

9 Linux Security ♦ Introduction In Linux, to make a network environment safe, security has to be provided. TCP Wrapper is a tool usually used on Linux systems to regulate and filter connections to network services. iptables, a firewall product also restricts unauthorized access from accessing a network. ♦ Topics covered in this lesson ► Iptables ► TCP Wrappers Lesson 2 – Securing Network

10 Linux Security ♦ Firewall is a system designed to limit unauthorized access to or from a private network. ♦ Firewalls can be applied in both hardware and software or a combination of both. ♦ Firewalls are often used to avoid unauthorized Internet users from accessing private networks connected to the Internet and Intranet. ♦ Earlier, a firewall package called ipchains that is now replaced by iptables Topic 1 - iptables

11 Linux Security ♦ Iptables can be started, stopped and restarted after system boot by running the following commands: [root@localhost ~]# service iptables start [root@localhost ~]# service iptables stop [root@localhost ~]# service iptables restart ♦ The iptables can be made to get configured to start at system boot by using the chkconfig command as given below. [root@localhost ~]# chkconfig iptables on Starting iptables

12 Linux Security ♦ The table given below gives an overview of the procedure for packets transmitted by the firewall Packet Processing in iptables

13 Linux Security Packet Processing in iptables ♦ Illustration of a TCP packet from the Internet passing through the interface of the firewall on Network A

14 Linux Security Targets ♦ The way, the rules are added to the chains of the firewall are done using Targets Targets in iptables

15 Linux Security ♦ TCP Wrapper is a tool usually used on Linux systems to regulate and filter connections to network services. ♦ TCP Wrappers offer wrapper daemons, which can be installed without making changes in existing software. ♦ Most of the TCP/IP applications depend on the client and server model. ♦ The TCP wrapper configurations are stored in two files /etc/hosts.allow and /etc/hosts.deny. Permissions are stored in /etc/hosts.allow and denials in /etc/hosts.deny. Topic 2 – TCP Wrappers

16 Linux Security Topic 2 – TCP Wrappers ♦ Example for Blocking ssh (Secure shell) sshd: ALL (for all) sshd: ALL EXCEPT 192.168.10.10 ♦ Example for Blocking FTP (file transfer protocol) vsftpd: ALL (for all) vsftpd: ALL EXCEPT 192.168.10.10 ♦ Example for Allowing Telnet in.telnetd, sshd:.india.com192.168.0.8

17 Linux Security Lab Exercise ♦ iptables and TCP Wrappers In this lab we have to restrict access to the service using iptables and TCP_wrappers. You want to block the telnet service so that HOSTA will not be able to telnet HOSTB. Assume that HOSTA and HOSTB have IP address 192.168.1.1 and 192.168.1.2 respectively.

18 Linux Security ♦ Summary ► A Linux system can be brought into a pre-defined working condition called runlevel that signify a particular function ► There are several system startup files that control and regulate startup processes whenever a system boots up ► There are different ways to secure Linux, through Security services, Firewall and TCP Wrapper. ♦ Question and Answer Session Conclusion

Download ppt "Linux Security. Module 13 – Linux Security ♦ Overview Linux is more prone today to security loopholes and attacks, both inside and outside the network."

Similar presentations

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.

1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.
Linux Boot Loaders. ♦ Overview A boot loader is a small program that exists in the system and loads the operating system into the system’s memory at system.

Linux Boot Loaders. ♦ Overview A boot loader is a small program that exists in the system and loads the operating system into the system’s memory at system.
Chapter 9: Understanding System Initialization The Complete Guide To Linux System Administration.

Chapter 9: Understanding System Initialization The Complete Guide To Linux System Administration.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.

CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.
Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.
Securing Network using Linux. Lesson Outline Setting up a secure system TCP Wrapper configuration Firewalls in Linux Authentication Systems –NIS –Kerberos.

Securing Network using Linux. Lesson Outline Setting up a secure system TCP Wrapper configuration Firewalls in Linux Authentication Systems –NIS –Kerberos.
Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.

Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.
Linux Boot Up Process Bootstrapping –Bootstrapping is the standard term for “ starting up a computer”. During bootstrapping, the kernel is loaded into.

Linux Boot Up Process Bootstrapping –Bootstrapping is the standard term for “ starting up a computer”. During bootstrapping, the kernel is loaded into.
Layer 7- Application Layer

Layer 7- Application Layer
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
1 Web Server Administration Chapter 3 Installing the Server.

1 Web Server Administration Chapter 3 Installing the Server.
Lesson 4-Installing Network Operating Systems. Overview Installing and configuring Novell NetWare 6.0. Installing and configuring Windows 2000 Server.

Lesson 4-Installing Network Operating Systems. Overview Installing and configuring Novell NetWare 6.0. Installing and configuring Windows 2000 Server.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Lesson 19: Configuring Windows Firewall

Lesson 19: Configuring Windows Firewall
Www.BeyondSecurity.comwww.SecurITeam.com Beyond Security Ltd. Port Knocking Beyond Security Noam Rathaus CTO Sunday, July 11, 2004 Presentation on.

Beyond Security Ltd. Port Knocking Beyond Security Noam Rathaus CTO Sunday, July 11, 2004 Presentation on.
FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.
Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.

Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.
Managing Software using RPM. ♦ Overview In Linux, Red Hat Package Manager referred as RPM is a tool used for managing software packages and its main function.

Managing Software using RPM. ♦ Overview In Linux, Red Hat Package Manager referred as RPM is a tool used for managing software packages and its main function.
Linux+ Guide to Linux Certification Chapter Three Linux Installation and Usage.

Linux+ Guide to Linux Certification Chapter Three Linux Installation and Usage.

Similar presentations

Ads by Google