Security
Differences between revisions 2 and 9 (spanning 7 versions)
|
Size: 2389
Comment: Wiki page moved from help to wiki -- Dr Small
|
Size: 1799
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| ||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;"><<TableOfContents>>|| | <<Include(BeginnersTeam/Includes/Header)>> |
| Line 4: | Line 4: |
| ||<tablestyle="float:right; font-size: 0.9em; width:20%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;":>{{attachment:neotuxg192.png}}|| | |
| Line 5: | Line 6: |
| While it is often remarked that Ubuntu comes secure out of the box, many users often express concern over further hardening their systems. Beyond fortifying their OS, there is often concern(s) over an attempt or successful breach of user security. The goal of the Security Focus Group is to assist these users, both new and old, in the attempt at developing and assisting with solutions to security related matters. | While it is often remarked that Ubuntu comes secure out of the box, an informed user can further harden their systems. A security conscious user can make choices, based on the environment their system will operate in, to further harden their installation. Users may also want to know how to monitor their system for signs of attack or how to determine if a successful breach happened. The purpose of the Security Focus Group is to increase awareness of security issues while helping users, both new and experienced, develop solutions to the security related matters they face. |
| Line 7: | Line 8: |
| == Agenda == | If you would like to join us: * Current Beginners Team Members - [[https://launchpad.net/~ubuntu-beginners-security|Join the LP Team]] * Others - [[https://wiki.ubuntu.com/BeginnersTeam/FocusGroups/Padawan|Join the Beginners Team]] |
| Line 9: | Line 12: |
| While the agenda could be implied from the purpose, the Security Focus Group should be willing and ready to assist a user in any way possible with working toward a solution for their security related problems. It is important that members of the security focus team be familiar with, or at least be willing to learn various security programs and procedures. These include, but are not limited to: IPTables, a working knowledge of the TCP/IP stack and basic server security. Basic server security should encapsulate at a bare minimum, setting up and maintaining a '''secure''' SSH server, '''secure''' Apache2 and Tomcat, in particular the proper logging and interpretation of access logs, setup practices and SFTP. Focus group members interested in a more advanced approach to security problems and resolutions should work on becoming well versed on the matters of SQL administration, common database exploitation methods, web vulnerability assessment, probing for vulnerable URL extensions and parameter tampering, and NMap flags and their various purposes. Continuing the advanced route, it is recommended that Security Focus Group members understand basic encryption, not necessarily the math but rather how to properly implement it. Familiarity with testing firewall rules and ACLs, Nessus, Metasploit, open source testing methodologies, HPing3, Nemesis and much more are also invaluable skills. | == Objectives == * Increase awareness of security amongst Ubuntu users * Review wiki articles on security and ensure they are accurate and up-to-date * Create wiki articles on security for uncovered topics * Assist the [[https://wiki.ubuntu.com/Learning|UCLP]] develop courses related to security * Monitor the [[http://ubuntuforums.org/forumdisplay.php?f=338|Security Discussions Forums]] on Ubuntuforums.org |
| Line 11: | Line 19: |
| Regardless of the individual's approach, the ability to prevent unauthorized access and probe for signs of unauthorized system entry are essential. | == Current Projects == == Sub Pages == <<Navigation(children,1)>> |
| Line 14: | Line 25: |
| === Firewall Related === *[[https://help.ubuntu.com/community/Uncomplicated_Firewall_ufw|UFW - Uncomplicated Firewall]] |
[[http://www.ubuntu.com/usn|Ubuntu Security Notices]] [[https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce|Security Announcement Mailing List]] |
This team is now deprecated. Official announcement about the team's closure can be found here. |
|
Purpose
|
While it is often remarked that Ubuntu comes secure out of the box, an informed user can further harden their systems. A security conscious user can make choices, based on the environment their system will operate in, to further harden their installation. Users may also want to know how to monitor their system for signs of attack or how to determine if a successful breach happened. The purpose of the Security Focus Group is to increase awareness of security issues while helping users, both new and experienced, develop solutions to the security related matters they face.
If you would like to join us:
Current Beginners Team Members - Join the LP Team
Others - Join the Beginners Team
Objectives
- Increase awareness of security amongst Ubuntu users
- Review wiki articles on security and ensure they are accurate and up-to-date
- Create wiki articles on security for uncovered topics
Assist the UCLP develop courses related to security
Monitor the Security Discussions Forums on Ubuntuforums.org
Current Projects
Sub Pages
Relative Links
BeginnersTeam/FocusGroups/Security (last edited 2010-10-27 03:12:14 by 71)