- Training
- Training Live Events
- Training Without Travel
- Security Courses
- Security Curricula
- Certified Instructors
- Training Calendars
- SANS vLive! / SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- Coins
- SANS Onsite
- SANS SelfStudy
- SANS Summit Series
- SANS Partnership Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- List of Resources
- Top 20 List
- Top 25 Programming Errors
- 20 Coolest Jobs
- Application Security Procurement Language
- Top 10 Security Trends
- Top 5 Essential Log Reports
- Reading Room
- Webcasts
- AudioCasts
- WhatWorks
- Newsletters
- RSS Feeds
- Calendar Feeds
- Security Thought Leaders
- Security Policy Project
- Security+ Study Guide
- SANS Buyers Guide
- Security Tool Demos
- 2008 Salary Survey
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
The most trusted source for computer security training, certification and research.
SANS InfoSec Reading Room - Linux Issues
Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large. SANS attempts to ensure the accuracy of information, but papers are published "as is". Errors or inconsistencies may exist or may be introduced over time as material becomes dated. If you suspect a serious error, please contact webmaster@sans.org.
Featuring 14 papers as of Nov 22, 2009
Hardening Debian 4.0 – Creating a simple and solid foundation for your applications- By: Alexandre Dery (posted on January 14, 2008)
- NFS Security in Both Trusted and Untrusted Environments
- By: Jakub Dlugolecki (posted on November 1, 2007)
- Secure Network Configuration Management for Linux based Routers
- By: Ron Young (posted on May 5, 2005)
- This paper presents a detailed implementation and operation plan for remote configuration management of a research network infrastructure. GIAC University is currently involved with several large-scale research projects that utilize individually identifiable medical records.
- Step by Step Installation of a Secure Linux Web, DNS and Mail Server
- By: John Holbrook (posted on April 8, 2004)
- This paper will show how the author configured a Linux based web and e-mail server for a small company. This server is co-located at a local ISP. Because of budget limitations, the company can only locate one physical box at the ISP which limits what security measures that can be installed.
- Linux Kernel Hardening
- By: Taylor Merry (posted on December 21, 2003)
- This paper outlines the installation and configuration of a Grsecurity-enhanced kernel.
- Linux Process Containment - A practical look at chroot and User Mode
- By: Paul Lessard (posted on October 31, 2003)
- This document will explore some of the general ideas of how process containment is performed with chroot and User-mode Linux, and how to help ensure that a successful attack on a jailed process does not affect the main system.
- Secure OS Environments for Linux
- By: Pedro Luz-Romero (posted on October 31, 2003)
- In this paper I make a review of the main set of tools and resources available for Linux system administrators willing to build an operating system with enhanced security features that allow applications to run securely in a network accessible from the Internet.
- Linux RootKits For Beginners - From Prevention to Removal
- By: Jeromey Hannel (posted on October 31, 2003)
- This paper provides an understanding of rootkits and will discuss how to monitor for a rootkit, and the steps taken to remove one.
- Security Applications of Bootable Linux CD-ROMs
- By: Richard Bajusz (posted on October 31, 2003)
- This paper examines the security applications of bootable Linux CD-ROMs.
- The Easily Recoverable CD-ROM Booted Linux Internet Server: A How-To
- By: Brian C. Otto (posted on October 31, 2003)
- The purpose of this paper is to detail the general steps to create a read-only Internet Server providing DNS and static web pages (bind and Apache).
- The Role of Bastille Linux in Information Security
- By: Michael Russell Grimaila (posted on October 31, 2003)
- In this paper, the author will briefly examine the evolution of Linux, discuss its popularity, and examine in detail Bastille Linux, which is used to increase the security of RedHat and Mandrake Linux distributions.
- Aggressive Patching and the Use of a Standard Build: An OpenBSD Example
- By: Michael Sullenszino (posted on October 31, 2003)
- This paper discusses the importance of a standard build and defines Aggressive Patching as a vital part of defense in depth. It then goes on to demonstrate how to implement Aggressive Patching by creating a Standard Build internet server farm and support structures that allow for automated patching and rapid deployment of hardened servers.
- Using Linux Scripts to Monitor Security
- By: Harvey Newstrom (posted on October 31, 2003)
- This paper will demonstrate how to create a generic tool using Linux scripting to enable network security monitoring.
- An Introduction to the NSA's Security-Enhanced Linux: SELinux
- By: Susan Rajnic (posted on October 31, 2003)
- This paper will introduce the NSA's research project termed "Security-enhanced" Linux.
Check Them Out!
Intense, fast paced. Modern day Sherlock Holmes!
-Cody Drake, Allstate Ins. Co.
- © 2000-2009 The SANS™ Institute
- Web Privacy Policy | Web Contact |
- Press Room | Trademark Usage Policy