sections, with the Front-Cover Texts being “Original Author: Oskar http://people. Oskar Andreasson speaks with about his comprehensive IP . I hope that the iptables-tutorial give Linux administrators the possibility to. Oskar Andreasson [email protected] by Oskar Andreasson. Copyright © .. 1. txt.

Author: Zolonris Doshura
Country: Guadeloupe
Language: English (Spanish)
Genre: Life
Published (Last): 25 August 2009
Pages: 283
PDF File Size: 2.83 Mb
ePub File Size: 15.46 Mb
ISBN: 568-2-38736-834-1
Downloads: 45183
Price: Free* [*Free Regsitration Required]
Uploader: Vojind


What is the most important Linux security technology? I have currently written an online course about Linux and Unix for a company called Libendo. Sorry, your blog cannot share posts by email. Anyway, my aims with this documentation is to get more people to understand the extremely advanced routing functionalities that really are part of Linux.

After some months I had the first version of the tutorial published. I think that this project will look a lot like the iptables tutorial when it gets going, especially in writing style and how it will be built up with a lot of examples among other things.

Brazilian bank Inter pays fine over customer data leak. iptablees

Also, a nice firewall will always be handy when osoar comes to security. The fewer packages we have to keep up to date, the less work to maintain and to keep it up and running. This would not change the fact that the tutorial will be available on the Internet, it will always be. Tricky question, I don’t know really.

To leave these extremely powerful parts of Linux undocumented should almost be criminal, it is horrendous to see these parts undocumented. Are there other documents you have written that you think might be beneficial to the Linux and open source security communities?

One of the main problems of Linux iptanles is in my way of seeing things, that there is a huge lack of documentation, especially when you start digging into the deeper aspects of Linux.

Oskar Andreasson IP Tables Tutorial – The Community’s Center for Security

However, good security practices on a server includes installing only the absolutely necessary packages. Frozentux Yet another site.

Some good examples of what this document will contain is explanations on how the ip command works and the syntax, how all the different options and flags to the command is used and information on how each “subcommand” works.


I would suggest at least installing a NIDS i. This site uses cookies.

Oskar Andreasson speaks with LinuxSecurity. Iptablrs was not until or so that I started seeing Linux around and tested it. Any kind of computer would suffice, even Pentiums at the tutorrial, as long as I can have a few network cards with them 9 or so, but less would suffice too. Guardian Digital Mail Systems: Sure, there are a lot of pieces of information available out there, but a lot of it raises more questions than they answer.

I am in an extreme need for a lab network at the moment since I lost the main part of it when I moved months ago. I most definitely think so. The iptables-tutorial is currently rather stable, and contains information on all the currently available matches and targets in iptahlesas well as a couple of complete example scripts and explanations. Is there something the community can do to assist you with writing and maintaining your security research? Currently there are quite a lot of plans.

Security Highlights from Defcon Of course, the tutorial also aims at the security interested people out there and anyone who tuotrial be interested in setting up a local network with Internet access. Open source gives everyone the chance to look at the source code, and it becomes easier to spot errors for a third party, and hence report to the producer.

As I said before, the more I write, the more I find that I want to write about. What are your future plans for the iptables reference? Only registered users can write comments. However, I haven’t gotten very far so far since I have run into problems with the whole deal. To leave packages such as these without documentation makes people go away and start using other operating systems such as Windows.

It was quite small, tutkrial pages or so, and didn’t cover all the intricacies of iptables and the more I used iptables and tested it; the more things I found that needed documentation. There was no documentation at all describing how to get started, nor was there any examples available.

Iptables-tutorial : Frozentux

Also, some commands and functions are clearly not documented enough. Finally, you get a reply that this is not a bug; this is a feature TM strangely enough removed in the next version of the program. Arbitrary command execution Debian LTS: What are some of the major pitfalls Linux Administrators fall into? After this, it is all a matter of keeping those few packages you have installed up to date.


Closed source on the other hand is harder to debug for a third party, and if you really do find a bug, you are more likely to just throw the bug on the crap pile and hope for it to be fixed in the next release, they don’t feel anything in common for the actual development of the product nor do they actually have a good reason for telling the developers about the bug. You may also contact the linuxsecurity mailing list at security-discuss Tutroial linuxsecurity dotcom. A person using an oskkar source product is more likely to actually look at the code and to try and fix the problem, and then send the bug over to the developer, in my own experience.

These errors might be unknown to the Linux administrator for a long time and, in the long run they may notice the error to late.

Then there is a request by some people that want to know how to make a transparent http proxy with iptables and iptab,es. How can your iptables reference help to avoid these problems? This would more or less be a way for me to get some money from the project, and a way for those who has read and liked it to actually contribute to what I have written and to show that they support me.

I have also started another project on my spare time, to document the iproute2 package and its uses. If you have fixed the most common vulnerability and someone is determined tutoriql get into your host, then you can be certain that the attacker will leave the second most common vulnerability out, or the third for that matter.

I believe that this course may actually hold a lot of interest even for the Linux zealots out there who may not have a lot of experience with the console of Linux.