http://www.Linux-Sec.net Hardening-Tightening Security_Policy Hardening-HOWTO Linux Distros Distro Patches Kernel-Patches Dedicated Servers Firewalls DNS Servers Mail Servers Web Servers Turn-Off Daemons Tighten Inetd Services Top-10 Vulnerabilities Top-7 Security Mistakes Top-10 Vulnerabilities Top-20 Most Critical Vulnerability Top-10 Virus Scans/Attacks Stats Top-10 Attacks Hacked Servers One Minute Audits OpenPorts Audit AntiVirus - AntiSpam Anti-Spam Anti-Virus spam.wav Wireless [In]Security Sniffers Security Tools SSH_SSL Firewalls MailServer FileSystem VPN Port Scan Detectors IDS Tools LogFile Analysis Ethernet Monitoring Server Monitoring Tracking & Forensics Hackers Tools Audit Tools Port Scanners Hacking Tools DDOS Tools Sniffer Tools Spoof Tools Exploits & Vulnerbilities Wireless Wireless [In]Security Misc Statistics Linux/BSD Distros Links,Articles,WatchDogs Security Mailing Lists/FAQs Liability Insurance 1U Rackmount Chassis Custom-Chassis.com Linux-1U.net 1U-ITX.net ITX-Blades.net Small PC cases Mini-Box.net Wrap-Box.net Wrap-OS.net Wan-Sim.net Linux-Consulting.com Linux-CAE.net Linux-Sec.net Linux-Boot.net Linux-Backup.net Linux-Wireless.org Linux-Office.net Linux-Video.net Linux-VOIP.net Linux-Jobs.net Linux-Diff.net 1U-Raid5.net Linux-Howto.net Spam Reporting Free Linux CDs ISO9660.org Distro-CD.org Patch-CD.org Contact Linux is a registered trademark of Linus Torvalds More Linux Legalese

File Systems Tightening NFS hosts.allow # # Only allow local machines to mount # portmap : localhost 192.168.1.0/255.255.255.0 rpc.mountd : localhost 192.168.1.0/255.255.255.0 # # end hosts.deny # # Deny everything # ALL : ALL # # end exports # # Allow only those ( 3 ) machines ( *.1, *.2, *.3 ) can rw, others are readonly # /opt/home 192.168.1.0/30 (rw,no_root_squash) /opt/home 192.168.1.0 (ro) # # if you're lazy, a common/shared area # /tmp 192.168.1.0 (rw) # # end Erasing and Undeleting Files Linux-Sec.net undeleting files Partitioning Tools Linux-1U.net/Partition Partition Stuff NFS Services SourceForge.net NFS NFSv4.org Sun.com NFSv4 Cromwell-Intl.com TCP/IP Stack Hardening ( local copy ) CIS.ohio-State.edu NFS - RFC-1813 CIS.ohio-State.edu NFS - RFC-1094 NetApp.com NFS Background info MetaLab.unc.edu NFS-Howto NIS+ FAQ NFS FAQ Slu.se NFS Server CalTech.edu NFS Security scn.snow.nl Securing NFS howto UAlberta.ca Secure NFS over SSH Tunnel CSUA.berkeley.edu kNFSd fys.uio.no NFSv3 fys.uio.no NFSv3 mount Secure RPC win.tue.nl more Secure PortMapper win.tue.nl mroe secure rpc CalTech,edu NetworkIce.com RPC Servcices uv.nl SecureRPC NIST.gov SecureRPC Secure PortMapper win.tue.nl more Secure PortMapper win.tue.nl mroe secure rpc scn.snow.nl Securing Portmapper Secure NFS CalTech,edu Cornell.edu SecureNFS sNFS CSUA.Berkeley.edu kNFSd UMich.edu NFSv4 ( kerberos based) SunHelp.org 3.5 secure NFS Encrypted File System Linux-Sec.net/FileSystem Various FS Linux-Sec.net/FileSystem

Copyright © 2000	Linux-Consulting	All Rights Reserved.	Updated: Mon May 1 18:23:27 2006 PDT