Comments on: Security Guide for Linux by NSA http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/ Thu, 04 Dec 2008 03:32:43 +0000 http://wordpress.org/?v=2.6.5 By: artiomix http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2634 artiomix Thu, 10 Jan 2008 22:02:17 +0000 http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2634 Hi Wolfgang, Actually, tips and notes in above-mentioned guides are rather straightforward and it's very doubtful that NSA could affect Linux systems by them. Anyway commands like <code>yum erase telnet-server</code> might be useful even if they are suggested by NSA :) Hi Wolfgang,

Actually, tips and notes in above-mentioned guides are rather straightforward and it’s very doubtful that NSA could affect Linux systems by them. Anyway commands like yum erase telnet-server might be useful even if they are suggested by NSA :)

]]> By: wjl (Wolfgang Lonien) http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2214 wjl (Wolfgang Lonien) Thu, 27 Dec 2007 01:23:50 +0000 http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2214 Hmmm guys - have you read both http://www.linuxhaxor.net/2007/12/26/nsa-released-guide-to-secure-red-hat-linux/ and http://linux-blog.org/index.php?/archives/240-Are-You-Secure.html#extended? Are you still sure that you want to promote their stuff? I'm neither an American,nor do I live in the US of A, but I'm still paranoid enough never to trust those guys... cheers, wjl Hmmm guys - have you read both http://www.linuxhaxor.net/2007/12/26/nsa-released-guide-to-secure-red-hat-linux/ and http://linux-blog.org/index.php?/archives/240-Are-You-Secure.html#extended?

Are you still sure that you want to promote their stuff? I’m neither an American,nor do I live in the US of A, but I’m still paranoid enough never to trust those guys…

cheers,
wjl

]]> By: Erek Dyskant http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2115 Erek Dyskant Tue, 25 Dec 2007 01:17:04 +0000 http://www.linuxscrew.com/2007/12/24/security-guide-for-linux-by-nsa/#comment-2115 Good to see that the NSA is giving linux more attention. The military used to have a much higher than expected number of unix breakins, presumably because they have a high staff turnover of wildly different skill levels combined with until recently very few best practices documentation (at least in the public view. I have no idea about what they have/had that may be classified.) All of teh NSA security guides are useful as a baseline configuration. Especially in environments where you need a well-thought-out set of best practices, for example in bank web servers. Definitely doesn't replace good implementation thought, but an excellent jumping off point. Thanks for posting this. I hadn't noticed they have one for RHEL 5 yet. Good to see that the NSA is giving linux more attention. The military used to have a much higher than expected number of unix breakins, presumably because they have a high staff turnover of wildly different skill levels combined with until recently very few best practices documentation (at least in the public view. I have no idea about what they have/had that may be classified.)

All of teh NSA security guides are useful as a baseline configuration. Especially in environments where you need a well-thought-out set of best practices, for example in bank web servers. Definitely doesn’t replace good implementation thought, but an excellent jumping off point.

Thanks for posting this. I hadn’t noticed they have one for RHEL 5 yet.

]]>