PacketSource — Security White Papers
 
A A A
 

All pages tagged with root

Hardning the Linux Kernel

This 26 page paper explores two approaches for hardening the standard Linux kernel. Address space or memory protection and access control. The author covers several well known hardening tips, including ...

Document added on March 12, 2011

Malicious Hackers and Spam, Part 2

I discovered that a spammer was using the client's server to relay spam. Although the server wasn't an open relay, the spammer was somehow authenticating to the server to send ...

Document added on Feb. 28, 2011

Building a Secure User Environment with SSH ChRootGroups

With SSH version 2.1.0, SSH Communications Security introduced the ChRootGroups feature; which provides a quick and easy way for administrators to lock users inside a chrooted cage.

Written by: Blake R. Swopes and added on May 4, 2011

An Evening with Berferd

On 7 January 1991 a cracker, believing he had discovered the famous sendmail DEBUG hole in our Internet gateway machine, attempted to obtain a copy of our password file. I ...

Document added on March 14, 2011

Ten Steps to a Cleaner Web Root

The first security policy I always implement for a web site is to keep the webroot clean. You cannot keep a secure site that is filled with clutter. Clutter includes ...

Document added on March 8, 2011

What You Don't See On Your Hard Drive

This paper will address two security concerns that I found very interesting. They both have to do with things that are not in plain sight. The first security concern covers ...

Written by: Brian Kuepper and added on Jan. 10, 2011

Nokia IPSO Boot Manager Upgrade Instructions

As the title suggest I documented this process while upgrading an IP330, these steps may or may not be the same for other Nokia IP products.<br></br><br>Download file</br><br>Go to https://support.nokia.com and ...

Written by: Mitchell Rowton and added on March 2, 2011

Using Chroot Securely

The chroot() function can be a powerful mechanism to secure your system, but only if used correctly. Anton provides a good foundation for implementing it in your programs and services ...

Written by: Anton Chuvakin, Ph.D. and added on March 6, 2011

Googling Up Passwords

I&#39;m not putting down Google. Far from it: it&#39;s a great search engine, and I use it all the time. I couldn&#39;t do my many jobs without Google, so I&#39;ve ...

Written by: Scott Granneman and added on March 6, 2011

Building a Secured OS for a Root Certificate Authority

This paper discusses the procedures necessary for securing an installation of Red Hat Enterprise Server 2.1 in support of a root certificate authority that will eventually function in the Higher ...

Written by: Don Murdoch, and added on May 4, 2011