Language Selection

English French German Italian Portuguese Spanish

Unix How-To: Give Me That Old-Time Security!

Filed under
Security
HowTos

Even in the wild frontiers of today's Internet, good basic Unix system security provides extremely valuable protection against security breaches. In today's column, I'm going to rant about some basic security rules of thumb that every Unix sysadmin ought to consider.

The first basic security rule is to keep your consoles safe. Lock them up, eliminate them by replacing them with console servers (recovering rack space at the same time), and make sure that only a very select group of people have access to them. What's more, access to your data centers should be limited to just those who need to lay hands on the servers. If anyone can walk in and out, you're asking for a headache.

Data centers should be equipped with UPS or, better still, a generator to keep them up through significant power outages. Wait, you ask, is power to the data center security? You bet it is! Anything that threatens the productivity of your staff and the smooth running of your business is a security concern. UPS systems can often be configured to send low battery signals to systems and initiate auto-shutdown options, further preventing hardware loss. Check your UPS systems and make use of this feature if it's supported. If your AC is not also on the UPS or generator, auto-shutdown of systems might prevent them from being damaged through overheating.

rest here




More in Tux Machines

Android Leftovers

Emulator now runs x86 apps on all Raspberry Pi models

Eltech’s faster ExaGear Desktop software version now supports ARMv6, in addition to ARMv7, letting users run x86 apps on all models of the Raspberry Pi. Russia-based Eltechs announced its ExaGear Desktop virtual machine last August, enabling Linux/ARMv7 SBCs and mini-PCs to run x86 software. That meant that users of the quad-core, Cortex-A7-based Raspberry Pi 2 Model B, could use it as well, although the software was not yet optimized for it. Read more

Maintaining an open source project at the Guardian

Over the 2015 Easter holiday the Scribe project received more than 3000 stars (a combination of bookmarking, liking and favouriting) on Github, making it easily one of the most popular open-source projects we have created at the Guardian. In addition to that milestone we also celebrated the release to our internal production systems of a number of community-contributed changes to Scribe. Guardian journalists now benefit every day from participation in the open-source community! Read more

Trade agreement could prohibit open source code supply

An international trade agreement under negotiation with Australia, the United States, the European Union and others may have wide-ranging implications for the technology users, according to civil liberties groups. The Electronic Frontier Foundation has analysed leaked drafts of texts for the Trade In Services Agreement (TISA) written in February this year, and claims it would prohibit countries involved from forcing vendors to disclose source code used for applications in their equipment. Read more