Language Selection

English French German Italian Portuguese Spanish

Unix How-To: Give Me That Old-Time Security!

Filed under
Security
HowTos

Even in the wild frontiers of today's Internet, good basic Unix system security provides extremely valuable protection against security breaches. In today's column, I'm going to rant about some basic security rules of thumb that every Unix sysadmin ought to consider.

The first basic security rule is to keep your consoles safe. Lock them up, eliminate them by replacing them with console servers (recovering rack space at the same time), and make sure that only a very select group of people have access to them. What's more, access to your data centers should be limited to just those who need to lay hands on the servers. If anyone can walk in and out, you're asking for a headache.

Data centers should be equipped with UPS or, better still, a generator to keep them up through significant power outages. Wait, you ask, is power to the data center security? You bet it is! Anything that threatens the productivity of your staff and the smooth running of your business is a security concern. UPS systems can often be configured to send low battery signals to systems and initiate auto-shutdown options, further preventing hardware loss. Check your UPS systems and make use of this feature if it's supported. If your AC is not also on the UPS or generator, auto-shutdown of systems might prevent them from being damaged through overheating.

rest here




More in Tux Machines

Fedora Notifications, 0.3.0 Release

Just as a heads up, a new release of the Fedora Notifications app (FMN) was deployed today (version 0.3.0). Frontend Improvements Negated Rules - Individual rules (associated with a filter) can now be negated. This means that you can now write a rule like: "forward me all messages mentioning my username except for meetbot messages and those secondary arch koji builds." Disabled Filters - Filters can now be disabled instead of just deleted, thus letting you experiment with removing them before committing to giving them the boot. Limited Info - The information on the "context" page is now successively revealed. Previously, when you first visited it, you were presented with an overwhelming amount of information and options. It was not at all obvious that you had to 'enable' a context first before you could receive messages. It was furthermore not obvious that even if you had it enabled, you still had to enter an irc nick or an email address in order for things to actually work. It now reveals each section as you complete the preceding ones, hopefully making things more intuitive -- it warns you that you need to be signed on to freenode and identified for the confirmation process to play out. Truncated Names - Lastly and least, on the "context" page, rule names are no longer truncated with a ..., so you can more easily see the entirety of what each filter does. Read more

ChromeOS vs Linux: The Good, the Bad and the Ugly

Anyone who believes Google isn't "making a play" for desktop users isn't paying attention. In recent years, I've seen ChromeOS making quite a splash on the Google Chromebook. Exploding with popularity on sites such as Amazon.com, it looks as if ChromeOS could be unstoppable. In this article, I'm going to look at ChromeOS as a concept to market, how it's affecting Linux adoption and whether or not it's a good/bad thing for the Linux community as a whole. Plus, I'll talk about the biggest issue of all and how no one is doing anything about it. Read more

Android powered Nvidia Shield tablet now available for pre-order

Nvidia’s 32GB LTE Shield Tablet is now available for pre-order. The Linux/Android powered tablet is priced at $399 and comes with an 8″ (1,920 x 1,200) display, Tegra K1 CPU and 2GB of RAM. Read more

FOSS Around the World: Latin America

Too often coverage of free/open source software news and commentary tends to focus on either developments and activities in North America or in Europe. While much of the news is made on these two continents, there’s a wider world out there where folks are doing some substantial things, and promoting FOSS in their own way in their own areas. Periodically, we at FOSS Force will be looking at areas of the world which have been either overlooked or neglected in digital news coverage. Today we’ll start south of the U.S. border with Latin America — Mexico, along with Central and South America, for those of you keeping track on maps at home. Read more