ITTips
AES-256 is stronger than RSA-512.
AES-256 ~ RSA-15,380
SELinux
http://elibrary.fultus.com/technical/index.jsp?topic=/com.fultus.redhat.elinux5/manuals/Deployment_Guide/rhlcommon-chapter-0017.html∞
nmap
Ping scan:
nmap -sP 10.20.30.0/24
TCP wrappers
- to check if a service comes under TCP wrapper checks:
root@www2:~# ldd /usr/sbin/sshd |grep wrap
libwrap.so.0 => /lib/libwrap.so.0 (0x00002aaaaabc2000)
root@www2:~# ldd /usr/sbin/apache2 |grep wrap
This is a neat piece of software that update iptables when people are trying to do brute force attacks
tcp_syncookie
This setting protects you from the TCP SYN flood.
The configuration file is living here:
/proc/sys/net/ipv4/tcp_syncookies
To have this surviving a reboot, update /etc/sysctl.conf:
net.ipv4.tcp_syncookies=1
There are no comments on this page. [Add comment]