Language Selection

English French German Italian Portuguese Spanish

Unix How-To: Give Me That Old-Time Security!

Filed under
Security
HowTos

Even in the wild frontiers of today's Internet, good basic Unix system security provides extremely valuable protection against security breaches. In today's column, I'm going to rant about some basic security rules of thumb that every Unix sysadmin ought to consider.

The first basic security rule is to keep your consoles safe. Lock them up, eliminate them by replacing them with console servers (recovering rack space at the same time), and make sure that only a very select group of people have access to them. What's more, access to your data centers should be limited to just those who need to lay hands on the servers. If anyone can walk in and out, you're asking for a headache.

Data centers should be equipped with UPS or, better still, a generator to keep them up through significant power outages. Wait, you ask, is power to the data center security? You bet it is! Anything that threatens the productivity of your staff and the smooth running of your business is a security concern. UPS systems can often be configured to send low battery signals to systems and initiate auto-shutdown options, further preventing hardware loss. Check your UPS systems and make use of this feature if it's supported. If your AC is not also on the UPS or generator, auto-shutdown of systems might prevent them from being damaged through overheating.

rest here




More in Tux Machines

Android Leftovers

Mining cryptocurrency with Raspberry Pi and Storj

I'm always looking for ways to map hot technologies to fun, educational classroom use. One of the most interesting, and potentially disruptive, technologies over the past few years is cryptocurrencies. In the early days, one could profitably mine some of the most popular cryptocurrencies, like Bitcoin, using a home PC. But as cryptocurrency mining has become more popular, thanks in part to dedicated mining hardware, the algorithms governing it have boosted computational complexity, making home PC mining often impractical, unprofitable, and environmentally unwise. Read more

Latest Openwashing and Attacks on FOSS

Systemd, Devuan, and Debian; FOSS at the Back End

  • Systemd, Devuan, and Debian
  • Devuan ASCII sprint -- 15-16-17 Dec. 2017
  • This open-source, multicloud serverless framework claims faster-than-bare-metal speed
    The move toward fast, serverless computing technology got a boost this month from Iguazio Systems Ltd. The data platform company (named from the Iguazu waterfalls in South America) announced the release of Nuclio, an open-source, multicloud serverless framework that claims faster-than-bare-metal speed. “We provide one platform, all the data services that Amazon has, or at least the ones that are interesting, serverless functions, which are 100 times faster, and a few more tricks that they don’t have,” said Yaron Haviv (pictured), founder and chief technology officer of Iguazio Systems. “We do fewer services, but each one kicks ass; each one is much faster and better engineered.”
  • CORD Says It’s the De Facto Choice for Edge Computing
    The Open Networking Foundation (ONF) today released 4.1 of its Central Office Re-architected as a Data Center (CORD) code. CORD has only been around as an independent project within ONF for about a year and a half, but with this release a couple of things have gelled for the project. First, it has merged its residential-CORD, mobile-CORD, and enterprise-CORD into one overarching project. Secondly, the ONF has realized CORD’s relevance in edge computing and edge cloud data centers.