Language Selection

English French German Italian Portuguese Spanish

Unix How-To: Give Me That Old-Time Security!

Filed under
Security
HowTos

Even in the wild frontiers of today's Internet, good basic Unix system security provides extremely valuable protection against security breaches. In today's column, I'm going to rant about some basic security rules of thumb that every Unix sysadmin ought to consider.

The first basic security rule is to keep your consoles safe. Lock them up, eliminate them by replacing them with console servers (recovering rack space at the same time), and make sure that only a very select group of people have access to them. What's more, access to your data centers should be limited to just those who need to lay hands on the servers. If anyone can walk in and out, you're asking for a headache.

Data centers should be equipped with UPS or, better still, a generator to keep them up through significant power outages. Wait, you ask, is power to the data center security? You bet it is! Anything that threatens the productivity of your staff and the smooth running of your business is a security concern. UPS systems can often be configured to send low battery signals to systems and initiate auto-shutdown options, further preventing hardware loss. Check your UPS systems and make use of this feature if it's supported. If your AC is not also on the UPS or generator, auto-shutdown of systems might prevent them from being damaged through overheating.

rest here




More in Tux Machines

Servo Night Builds Begin, Linux Packages Coming

The Mozilla developers working on the Servo browser layout engine and the Browser.html HTML-based web UI have kept to their goal of making a tech preview available in June. As of last night, the Servo developers hit their tech preview milestone we've been looking forward to seeing for months. Nightly builds of Servo and Browser.html have begun and they are going to be making available Linux packages shortly. Read more

Android Leftovers

Leftovers: OSS

  • Modern open source systems management
    Open source IT systems management is undergoing a renaissance. Adopters include global, household-name enterprises, as well as a groundswell of IT operations teams that are borrowing flexible, collaborative practices from the Agile software development movement. Some open source IT systems management tools are familiar to most admins, with broad adoption -- think Nagios or the Elasticsearch, Logstash and Kibana stack. Others -- Docker is a prime example -- burst onto the scene recently and are shaking up IT deployments.
  • Code Alliance connects nonprofits with tech volunteers
    Code Alliance is a Benetech initiative that connects technology professionals to volunteer opportunities with open source software projects for social good. On the first day of the CHI4GOOD conference, we brought over 40 projects to the San Jose Convention Center to participate in a hack4good Day of Service event. More than 100 developers, UX designers, and researchers came together to help our nonprofit cohort with their technological needs. The nonprofits benefitted from expert technical development work, and the volunteers were gracious, skilled, and excited to leverage their professional skills to give back.
  • Nonprofit's Open Source Designs Reduce Cost Barriers for Startups
    A project that originated in "The Middle of Nowhere, Missouri," as the founders call it, aims to lower the barrier to entry across a number of industries, all while maintaining a sustainable footprint. It's called Open Source Ecology (OSE), the brainchild of Marcin Jakubowski, founder of the Factor E Farm in Missouri where OSE is based.
  • The Open Building Institute - A Sustainable Way to Build Modular Housing
  • Open Building Institute is revolutionizing sustainable home building through open-source technologies
  • Pulp Smash Introduction
    Pulp Smash is a functional test suite for Pulp. It’s used by the Pulp developers and Pulp QE team on a daily basis. It’s implemented as a GPL licensed pure Python library, and getting started is as simple as installing Python and executing the following...
  • How Oracle’s business as usual is threatening to kill Java
    Stop me if you've heard this one before: Oracle has quietly pulled funding and development efforts away from a community-driven technology where customers and partners have invested time and code. It all seems to be happening for no reason other than the tech isn't currently printing money. It's a familiar pattern for open source projects that have become the property of Oracle. It started with OpenSolaris and continued with OpenOffice.org. And this time, it's happening to Java—more specifically to Java Enterprise Edition (Java EE), the server-side Java technology that is part of hundreds of thousands of Internet and business applications. Java EE even plays an integral role for many apps that aren't otherwise based on Java. For months as Oracle Corporation's attorneys have battled Google in the courts over the use of Java interfaces in Android's Davlik programming language, Oracle's Java development efforts have slowed. And in the case of Java EE, they've come to a complete halt. The outright freeze has caused concerns among companies that contribute to the Java platform and among other members of the Java community—a population that includes some of Oracle's biggest customers.
  • Friday's security updates

Openwashing