Language Selection

English French German Italian Portuguese Spanish

Book Review: Linux Firewalls - Attack Detection and Response with iptables, psad, and fwsnort

Working in a university environment, one gets used to doing more with less. Security, particularly, seems to never get the budget it deserves though it has increased in recent years. For all their limitations, open-source tools are the vital lifeblood that makes IT work, and work securely, in academia.

Using Netfilter (or commonly called iptables) for the firewalls have managed to reduce costs but provide stable and secure service to the users. However, for some time we've been looking to get more out of our firewalls to enhance the security and data reporting from the firewalls. The syslogs are all fine and good, but no one is seriously going to review them without some application doing the heavy lifting of making the data presentable.

Linux Firewalls, in this regard, is a great resource. It provided insight and helpful information into additional tools to get the most out of iptables and to add in additional functionality. The book covers basic iptables fundamentals and then covers the additional applications of psad, fwsnort, fwknop and data visualization of firewall logs.

More Here

More in Tux Machines

Liquorix Kernel Benchmarked Against Linux 4.2, Linux 4.3 Kernels

Recently there were a number of requests about testing the latest state of Liquorix, the self-prcolaimed "better distro kernel" that is an optimized version of the Linux kernel with extra patches that makes it optimal for desktop, multimedia, and gaming workloads. Here's some fresh Liquorix vs. mainline Linux kernel performance benchmarks. Read more

Ada Lovelace Day: Marina Zhurakhinskaya and Outreachy

Working as a senior software engineer at Red Hat on the GNOME Project, I was very impressed by the talent of the project contributors, by how rewarding it is to work on free software, and by the feeling of connectedness one gets when collaborating with people all over the world. Yet, at GUADEC 2009, of approximately 170 attendees, I believe I was one of only eight women. Of the software developers working on the entire GNOME project at the time, I was one of only three. Read more

Why Samsung's Open-Source Group Likes The LLVM Clang Compiler

Samsung is just one of many companies that has grown increasingly fond of the LLVM compiler infrastructure and Clang C/C++ front-end. Clang is in fact the default compiler for native applications on their Tizen platform, but they have a whole list of reasons why they like this compiler. Read more