Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
RE: Linux free software auditing
From: Ronen Gottlib (ronenxpert.com)
Date: Thu Sep 01 2005 - 04:14:00 CDT
You can check the Center for Internet Security, www.cisecurity.com.
They have great benchmarks/tools, among them for Linux too.
CIS_RHLinux_Benchmark_v1.0.3.pdf - the Benchmark document contains detailed
instructions for implementing the steps necessary for CIS Level-I security
on Red Hat Linux systems.
cis_score_tool_linux_v1.6.8.sh.gz a Host-based Scoring Tool scores the
security of a system against the Benchmark and creates a variance report.
This package also contains the benchmark PDF.
Beside that, the Nessus security scanner can also do the trick.
Ronen Gootlib, CISSP
IT Security Consultant
From: ancekyyahoo.com.br [mailto:ancekyyahoo.com.br]
Sent: г 31 аевеси 2005 14:52
Subject: Linux free software auditing
Can anyone tell me some references (sites, articles) about Linux free
software auditing ?
I need procedures, tools, tips to analyse the software security (source and
binary format) and avoid malicious behaviour like not authorized network
connections, suspect syscalls, ...
- application/x-pkcs7-signature attachment: smime.p7s