Linux

Periodic security reviews (and a bit of a rant)

Today marks one month that my "work time" is 100% devoted to Red Hat; last month I "retired" from any of the IT/web work for my church that I've been doing for the last 12 or so years. It's been an interesting month being able to spend time on things that I want to spend on outside of regular Red Hat work hours. =) My rediscovered and available time has been spent ...

Read More

Linux

Getting started with firewalld

I'm mostly writing this for my own reference as I spent a bunch of time figuring this out while I was on holidays with some serious oVirt misadventures and didn't document any of what I did, so since I had to reinstall CentOS 7, I'm stuck doing this all over again.

Effectively I'm migrating from CentOS 6 to CentOS 7 and trying to take advantage of the new way of doing things. I could easily ...

Read More

Linux

Learn to use extended file attributes in Linux to boost security

This week's TechMail is Learn to use extended file attributes in Linux to boost security which takes a look at using chattr, getfattr, setfattr, getfacl, and setfacl; tools that can be used to offer more granular security to files and directories. Being able to use SELinux or GrSecurity, AppArmor, and other security enhancements to the kernel are great, but they're not always available and not always easily configurable. These tools take you ...

Read More

Linux

rsec, msec, sectool.. hmmm... I smell opportunities

So I was approached by Eugeni, one of my former fellows at Mandriva, today about some collaboration in regards to Mandriva's msec and my way-back-when fork for Annvix, rsec. He wrote a blog post about msec's future and plans detailing the things he wants to do with msec in the future. So he dropped me a line to see how I'd feel about making msec and rsec play nice together so there ...

Read More

Linux

Monitor your system for threats with rsec alerts

This week's TechMail is Monitor your system for threats with rsec alerts which discusses the rsec tool I forked from Mandriva's msec years ago (for Annvix). It's been updated and is available for Red Hat Enterprise Linux 5 (and CentOS 5) as I think it's still a pretty good tool and complements stuff like logwatch quite nicely. rsec essentially reports on various bits of your system... it lets you know if there ...

Read More

Linux

Towards responsible disclosure

This week was interesting, dealing with the supposed "OpenSSH 0day" vulnerability stuff... rumours, innuendo, strange logs and packet capture files... it made for a long week trying to keep an eye on this and sort fact from fiction. Instead of focusing on the issue itself like other blogs and news sites are doing, I thought it might be interesting to look at some general resources to aid in the responsible disclosure of issues. ...

Read More

Linux

Store passwords with pwsafe

This week's techmail is Store passwords with pwsafe which looks at the pwsafe CLI application that can keep track of all your passwords and login credentials in a safe and secure manner (and throws in strong password generation as a bonus). Really useful app.

Read More