.

intro to linux hardening talk

<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1187

Joined: Mon Jul 27, 2009 1:25 pm

Post Tue Apr 17, 2012 10:45 pm

intro to linux hardening talk

Hey, I had a chance last week to do a talk on basic Linux hardening and how it applies to Security Distros like Backtrack. I focused on Backtrack for the Security distro part, and covered CentOS and Ubuntu (at least those were the test machines) for the general Linux part.

It's on Youtube: http://youtu.be/QLz0Ylpaf8w

I'm going to go back and add notes to the slide deck probably starting next week (need something to do on the drive to Chicago for Bsides Chicago), and then paste them somewhere.

The group I did the talk in front of was MiSec (www.michsec.org), a statewide attempt at creating a security comunity after the 2011 Bsides Detroit.
OSWP, Sec+
<<

dynamik

Recruiters
Recruiters

Posts: 1134

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Mon Apr 23, 2012 12:22 pm

Re: intro to linux hardening talk

I'm still just a few minutes into it because my schedule has been insane, but you've done very well so far.

Definitely let us know when the slide deck is available; that would be some great reference material.
The day you stop learning is the day you start becoming obsolete.
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1187

Joined: Mon Jul 27, 2009 1:25 pm

Post Mon Apr 23, 2012 2:00 pm

Re: intro to linux hardening talk

I need time to work on it. was going to over the weekend, but was sick. Spent most of the weekend asleep
OSWP, Sec+
<<

knwminus

User avatar

Full Member
Full Member

Posts: 100

Joined: Thu Feb 25, 2010 11:26 pm

Post Mon Apr 23, 2012 3:23 pm

Re: intro to linux hardening talk

Watching it now. Thanks!
A+ N+ CCNA CCNA:S CNSS 4011 Security+

Next Up: CCNP CCNP:S
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1187

Joined: Mon Jul 27, 2009 1:25 pm

Post Wed Apr 25, 2012 11:54 am

Re: intro to linux hardening talk

I'd be surprised if it gets picked, but just submitted the talk to Derby Con.
OSWP, Sec+
<<

DelimitingCharacter

User avatar

Newbie
Newbie

Posts: 10

Joined: Tue Mar 17, 2015 9:37 pm

Post Tue Mar 17, 2015 10:01 pm

Re: intro to linux hardening talk

Wasn't Kali Linux already hardened?

I am not that familiar with it, but its basically the same as Debian correct?
A+, CCNA(ICND)
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1187

Joined: Mon Jul 27, 2009 1:25 pm

Post Wed Mar 18, 2015 10:35 am

Re: intro to linux hardening talk

DelimitingCharacter wrote:Wasn't Kali Linux already hardened?

I am not that familiar with it, but its basically the same as Debian correct?


No, Backtrack and Kali are not hardened by default. Neither is Debian.

As Purehate (was on the Backtrack team a the time) said, it's a security distro not a secure distro. It has well known default passwords, and known behaviors on the network.

Pentoo claims to be harden out of the box. When I gave my talk at DerbyCon, the lead developer for Pentoo was there to make sure I knew that.

Some people claim that securing BT / Kali makes it useless, but from my experience I have to disagree. If you can set up a reverse shell to call back to you, you can take the extra minute to set up the rules to allow it through your Netfilter (also known as IP Tables) config.
<<

DelimitingCharacter

User avatar

Newbie
Newbie

Posts: 10

Joined: Tue Mar 17, 2015 9:37 pm

Post Wed Mar 18, 2015 7:54 pm

Re: intro to linux hardening talk

What is a good beginner book for learning all this stuff about Linux and what your referring to: IP Tables and such. A good overall book to get my feet wet.
?

Thanks
A+, CCNA(ICND)
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1704

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Mar 19, 2015 7:46 am

Re: intro to linux hardening talk

There are quite a few books on Linux firewalls, which go into detail on iptables, etc.

Start with something like:

http://www.nostarch.com/firewalls.htm

or

http://www.amazon.com/Linux-Firewalls-E ... 0672327716
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1187

Joined: Mon Jul 27, 2009 1:25 pm

Post Thu Mar 19, 2015 12:10 pm

Re: intro to linux hardening talk

Running Linux used to be a decent book to get a good foundation covered a lot of areas. So was the Unix and Linux Administration Handbook. The LPI certification in a Nutshell wasn't too bad.

Nixcraft is a decent website to read too.

Return to OS

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software