Sysadmin:Security Todo

From UGCS
Jump to: navigation, search

Contents

Monitoring services

  • Tripwire
  • Process accounting, especially on Kerberos and AFS servers
  • Other intrusion detection

Security Libraries

  • libpam-tmpdir
  • Check the wrapper scripts for php and cgi scripts

Configuration changes

Policy Changes

  • Keep researching breaking vectors
  • Check login machine's auth.log to look for root accesses
  • Check core server login logs
  • Implement password expiration for sysadmins
  • Bootloader passwords

SSH

Personal tools