Difference between revisions of "Template:Menu content security"
(→Firewall) |
(→Firewall) |
||
| Line 71: | Line 71: | ||
| − | You can also try to setup the interactive firewall: DouaneAPP (http://douaneapp.com/) | + | You can also try to setup the interactive firewall: DouaneAPP (http://douaneapp.com/) |
# [https://github.com/Douane/Douane/wiki/Dependencies Install Douane dependencies and requirements] | # [https://github.com/Douane/Douane/wiki/Dependencies Install Douane dependencies and requirements] | ||
# [https://github.com/Douane/Douane/wiki/Compilation Douane compilation and setup] | # [https://github.com/Douane/Douane/wiki/Compilation Douane compilation and setup] | ||
| + | |||
| + | >> Official Douane website: https://github.com/Douane/Douane | ||
==SSL== | ==SSL== | ||
Revision as of 20:15, 19 April 2016
Contents
Security
How to secure your server / workstation ?
Global security
Internet security
SSH
SSH
- SSH server setup
- SSH server using local user / password auth.
- SSH server using key auth.
- SSH server using LDAP user auth.
- SSH server using LDAP key auth.
Firewall
This section explains HOW to create, maintain and use a firewall with IpTables.
| Firewall | |
|---|---|
| Basics | Firewall principle |
| Firewall basics | |
| Firewall core (main) protocols | |
| Firewall VPN | |
| Firewall OUTPUT filters | |
| Firewall INPUT filters | |
| Firewall log dropped | |
| Advanced | Firewall port forwarding |
| Firewall source address filtering | |
| Installation and scripts | Firewall installation scripts |
You can also try to setup the interactive firewall: DouaneAPP (http://douaneapp.com/)
>> Official Douane website: https://github.com/Douane/Douane
SSL
SSL certificates and chain of trust
VPN
Virtual Private Network (VPN)
Remote desktop
Remote desktop
Intrusion Detection / Protection
Protection is good, but that's not enough! We need to detect attacks.
- IDS = Intrusion Detection System : tool that detect attacks.
- IPS = Intrusion Protection System : detect an intrusion attempt and react upon it.
I'm using one of the most famous IDS: "Snort" (https://www.snort.org/).
Crontab
To run some task / scripts periodically
