Author: Benjamin D. Thomas
openswan, enscript, zlib, gaim, cvs, openssl, curl, ruby, rhgh, file,
net-tools, gimp, squid, dump, mc, dbus, kdepim, xpdf, kernel, ngIRCd,
tikiwiki, f2c, ncfs, clamav, imap, chbg, vim, perl-dbi, and
ethereal. The distributors include Debian, Fedora, Gentoo,
Mandrake, and Red Hat.Getting to Know Linux Security: File Permissions
Welcome to the first tutorial in the ‘Getting to Know Linux Security’ series.
The topic explored is Linux file permissions. It offers an easy to follow explanation
of how to read permissions, and how to set them using chmod. This guide is intended
for users new to Linux security, therefore very simple. If the feedback is good,
I’ll consider creating more complex guides for advanced users. Please let us
know what you think and how these can be improved.
Hello, my name is Benjamin Thomas and I am with Guardian Digital,
the primary sponsor of LinuxSecurity.com Welcome to the first of the
“Getting to know Linux Security” series tutorials that will be
featured on our site. Today’s topic is file permissions. This
lesson is primarily intended for those users who are just getting
started, and other wishing to brush up old skills. The examples I
show you today are from a typical Linux command line. Today, I’ll
be using EnGarde Secure Linux. More information about this
distribution can be found at Guardian Digital.com and it can be
downloaded at EnGardeLinux.org.
Lets Begin. To see a listing of files in a directory, execute the
command ‘ls’. As you’ll see, there are no files in the temporary
directory that I’m using. Let’s first create several files.
touch file1 file2 file3
The command ‘ls’ then shows the files we have created. A more
informative way to show the files is ls -la. The ‘l’ switch lists
files in long format and the ‘a’ switch lists all files,
including hidden ones.
Click to view video demo:
http://www.linuxsecurity.com/content/view/118181/49/
LinuxSecurity.com
Feature Extras:The
Tao of Network Security Monitoring: Beyond Intrusion Detection
– To be honest, this was one of the best books that I’ve read on network security.
Others books often dive so deeply into technical discussions, they fail to
provide any relevance to network engineers/administrators working in a corporate
environment. Budgets, deadlines, and flexibility are issues that we must all
address. The Tao of Network Security Monitoring is presented in such a way
that all of these are still relevant.Encrypting
Shell Scripts – Do you have scripts that contain sensitive information
like passwords and you pretty much depend on file permissions to keep it secure?
If so, then that type of security is good provided you keep your system secure
and some user doesn’t have a “ps -ef” loop running in an attempt to capture
that sensitive info (though some applications mask passwords in “ps” output).A
2005 Linux Security Resolution – Year 2000, the coming of the
new millennium, brought us great joy and celebration, but also brought great
fear. Some believed it would result in full-scale computer meltdown, leaving
Earth as a nuclear wasteland. Others predicted minor glitches leading only
to inconvenience. The following years (2001-2004) have been tainted with the
threat of terrorism worldwide.
Take advantage of our Linux Security discussion
list! This mailing list is for general security-related questions and comments.
To subscribe send an e-mail to security-discuss-request@linuxsecurity.com
with “subscribe” as the subject.
Thank you for reading the LinuxSecurity.com
weekly security newsletter. The purpose of this document is to provide our readers
with a quick summary of each week’s most relevant Linux security headline.
Debian | ||
Debian: New squirrelmail package fixes several vulnerabilities |
||
1st, February, 2005
|
||
Debian: New prozilla packages fix arbitrary code execution |
||
1st, February, 2005
|
||
Debian: New cpio packages fix insecure file permissions |
||
2nd, February, 2005 | ||
Fedora | ||
Fedora Core 3 Update: enscript-1.6.1-28.0.4 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: openswan-2.1.5-2.FC3.1 | ||
28th, January, 2005
|
||
Fedora Core 2 Update: elinks-0.9.1-1.1 | ||
28th, January, 2005 | ||
Fedora Core 3 Update: elinks-0.9.2-2.1 | ||
28th, January, 2005
|
||
Fedora Core 2 Update: enscript-1.6.1-25.3 | ||
28th, January, 2005
|
||
Fedora Core 3 Update: enscript-1.6.1-28.0.3 | ||
28th, January, 2005
|
||
Fedora Core 2 Update: zlib-1.2.1.2-0.fc2 | ||
28th, January, 2005
|
||
CORRECTION: Fedora Core 2 Update: gaim-1.1.2-0.FC2 | ||
28th, January, 2005
|
||
CORRECTION: Fedora Core 3 Update: gaim-1.1.2-0.FC3 | ||
28th, January, 2005
|
||
Fedora Core 3 Update: NetworkManager-0.3.3-1.cvs20050119.2.fc3 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: openssl096b-0.9.6b-21 | ||
31st, January, 2005
|
||
Fedora Core 2 Update: openssl096b-0.9.6b-20 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: curl-7.12.3-2 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: system-config-printer-0.6.116.1-1 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: ruby-1.8.2-1.FC3.1 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: rhgb-0.16.2-1.FC3 | ||
31st, January, 2005
|
||
Fedora Core 3 Update: file-4.12-1.FC3.1 | ||
1st, February, 2005
|
||
Fedora Core 3 Update: net-tools-1.60-37.FC3.1 | ||
1st, February, 2005
|
||
Fedora Core 3 Update: gimp-2.2.3-0.fc3.2 | ||
1st, February, 2005
|
||
Fedora Core 3 Update: system-config-services-0.8.18-0.fc3.1 | ||
1st, February, 2005
|
||
Fedora Core 2 Update: squid-2.5.STABLE7-1.FC2.1 | ||
1st, February, 2005
|
||
Fedora Core 3 Update: squid-2.5.STABLE7-1.FC3.1 | ||
1st, February, 2005
|
||
Fedora Core 2 Update: dump-0.4b39-1.FC2 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: dump-0.4b39-1.FC3 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: mc-4.6.1-0.12.FC3 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: selinux-policy-targeted-1.17.30-2.75 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: policycoreutils-1.18.1-2.6 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: dbus-0.22-10.FC3.2 | ||
2nd, February, 2005
|
||
Fedora Core 3 Update: kdepim-3.3.1-1.FC3.1 | ||
3rd, February, 2005
|
||
Fedora Core 3 Update: xpdf-3.00-10.3 | ||
3rd, February, 2005
|
||
Fedora Core 2 Update: kernel-2.6.10-1.12_FC2 | ||
3rd, February, 2005
|
||
Fedora Core 3 Update: kernel-2.6.10-1.760_FC3 | ||
3rd, February, 2005
|
||
Gentoo | ||
Gentoo: SquirrelMail Multiple vulnerabilities | ||
28th, January, 2005
|
||
Gentoo: ngIRCd Buffer overflow | ||
28th, January, 2005
|
||
Gentoo: TikiWiki Arbitrary command execution | ||
30th, January, 2005
|
||
Gentoo: VDR Arbitrary file overwriting issue |
||
30th, January, 2005
|
||
Gentoo: f2c Insecure temporary file creation | ||
30th, January, 2005
|
||
Gentoo: ncpfs Multiple vulnerabilities | ||
30th, January, 2005
|
||
Gentoo: Gallery Cross-site scripting vulnerability |
||
30th, January, 2005
|
||
Gentoo: ClamAV Multiple issues | ||
31st, January, 2005
|
||
Gentoo: FireHOL Insecure temporary file creation |
||
1st, February, 2005
|
||
Gentoo: FireHOL Insecure temporary file creation |
||
1st, February, 2005
|
||
Gentoo: UW IMAP CRAM-MD5 authentication bypass |
||
2nd, February, 2005
|
||
Gentoo: enscript Multiple vulnerabilities | ||
2nd, February, 2005
|
||
Gentoo: Squid Multiple vulnerabilities | ||
2nd, February, 2005
|
||
Gentoo: Newspost Buffer overflow vulnerability | ||
2nd, February, 2005
|
||
Mandrake | ||
Mandrake: Updated clamav package | ||
29th, January, 2005
|
||
Mandrake: Updated clamav packages fix | ||
31st, January, 2005
|
||
Mandrake: Updated KDE packages | ||
31st, January, 2005
|
||
Mandrake: Updated imap packages fix | ||
2nd, February, 2005
|
||
Mandrake: Updated chbg packages fix | ||
2nd, February, 2005
|
||
Mandrake: Updated vim packages fix | ||
2nd, February, 2005
|
||
Red Hat |
||
RedHat: Updated enscript package fixes security issues |
||
1st, February, 2005
|
||
RedHat: Updated CUPS packages fix security issue |
||
1st, February, 2005
|
||
RedHat: Updated perl-DBI package fixes security issue |
||
1st, February, 2005
|
||
RedHat: Updated Ethereal packages fix security issues |
||
2nd, February, 2005
|
||