English
English
Menu Closim

Linux

Dispela page save providim advise lon sampela impotent activiti wei em partikularli relevan lon protectim Linux wokstasion.

Plenti ol moden Linux distrubusion providim sampela basik securiti featsa (automatik sopware/servis updat, event login, acess kontrol na firewall funcsion), em ol save enablim olgeta taim thru lon defalt olsem pat blon dispela Linux build. Ol wanwan lain husait em setim up ol Linux wokstasion mas gat ol basik understandin blon dispela operatin systim, na tu sapose necesari obtainim moa guidans (kain olsem lon ofisal Linux distribusion websit, ofisal online Linux forum o securiti mailin list blon dispela partikula Linux distribusion ol ol usim).

Ol hevi

Behavia risk

  • Plenti risk olsem fraud, phishim, spam na stealim ol identiti em save appli lon Linux usar wei em wainkain tu lon ol arapela operatin systim.
  • Em wanpela nugut usar sios, wei em weak o nogat paswod, failim lon monitorim ol event log na ino configurim Linux sopware lon korrect wei.

Tecnologi risk

  • Risk lon Linux wokstasion gen increas taim em runim ol unecasari servis na leavim vulerabal netwok port lon stap open.
  • Failim lon patshim Linux sopware na servis hariap o nogat tru, especiali waintaim ol publis vulnerabiliti.
  • Runum inherentli ol insekure servis, kain olsem usim wanpela systim wei ol designim lon usim lon ol lokal aria netwok ova lon intanet.

Exploitasion risk

  • Sosol enginerin, stealim ol infomasion.
  • Spam, Trojan, botnet, bak door, virus, rutkit
  • Denial ol servis atack
  • Unauthoris Privilig escalasionrkstations

Protectim infomasion na wokstasion blon yu

Lon statim

1. Acquirim wanpela Linux operatin systim sopware (includim binari, setup file na patshes) lon wanpela trustad, reliabal na reputabal sourse, kain olsem lon ol ofisal Linux distribusion CD/DVD o legitmat Linux distribusion websit.

2.Configurim dispela Linux wokstasion file systim waintaim ol multipal partision (kain olsem usim disk (o wainkain) lon creatim wanpela seperat rut partision, swap space, binari file na usar file space).

3. Chekim authenticiti blon ol Linux operatin systim sopware bipo yu instalim (kain olsem lon validatim ol disital signatsa blon ol na/o cheksum valu).

4. Avoidim login olsem wanpela privilig usar kain olsem rut. Insted, log in olsem wanpela non-privilig usar akount na usim dispela su komand lon performim ol administrative wok.

5. Disablim ol autorun featsa (o wainkain) lon preventim media lon ol mountim automatikali.

6. Configurim ol usar akount lon lockim dispela seson taim em stap lon pre-defin period blon inactiviti (kain olsem 15 minut).

7. Maintainim wanpela up-tu-date Linux build (kain olsemolgeta taim chekim lon ol updat na patshes blon dispela operatin systim and olgeta applicasion).

Configurim ol servis na usar

1. Disablim o restrictim olgeta unecasari servis na unecasari stat-up skript (includim ol dispela associatad wainatim Blutooth, USB, wireles netwok na infrared).

2. Avoidim usim ol insekure administrasion progkram kain olsem rlogin, telnet, tftp, rsh na rexec, na insted usim ol sekure remot login, file transfe na shel progkram, kain olsem sftp, scp na ssh.

3. Removim ol unecasari usar akount (kain olsem, guest) na grup, na ensurim olsem olgeta usar akount em requirim lon authentikat (kain olsem, usim ol paswod) bipo kisim acess lon ol Linux wokstasion.

4. Usim ol strongpela paswod blon olgeta usar akount lon Linux wokstasion (kain olsem, minimum eight karacta, mix blon upacase, lowacase, alphanumerik na spesal karacta).

5. Linux wokstasion requirmim ol range blon activiti, wei plenti em relevan lon ol komputa regadles lon ol operatin systim sopware ol usim, includim Microsoft Windows na Apple Mac OS X (kain olsem, protectim lon boot sequens, setim ol permison blon file, configurim event login, establishim bakup na monitorim lon ol suspisos file o activiti).

6. Sapose yu requirim moa detail advis blon protectim Linux wokstasion (includim firewall, virus protecsion, disk na file encrypsion, imail protecsion, web browsa configurasion, na bakup sopware) yu mas consultim wanpela spesalis advise lon wanpela man o meri o organisasion husait em spesalis insait lon Linux na Linux securiti.

 

Close

Glosari

Wanpela Glosari blon ol tem ol usim lon dispela artikle:

USB

Universial Serial Bus: em meanim olsem ol save physcali wokim connecsion lon ol komputa igo lo ol extenal storag, keybod na MP3 playa. 

Trojan

Em ol sopware em ol wok olsem ol trupela appicasion, wei em save haitim ol samthing lon malware. Dispela nem blon em kam lon dispela horse ol usim olsem trojan lon Greek tumbuna stori.

Spam

Em ol nugut na giman comersal e-mail. Ol save kolim olsem junk e-mail tu.

Sosol enginerin

Em wei blon usim ol giaman ofline lon kisim acess igo insait lon wanpela sekure syststim o pesonal infomasion, kain ol impersonatim olsem wanpela tekinal supot agen.

Linux

Em wanpela open-sourse, free-operatim systim.

Encrytipim

Lukim encryptim

Panim aut moa