Detect insider threats with Linux auditing

Detect insider threats with Linux auditing – Organizations of all sizes need to mitigate the risk of insider threats. Misconduct by authorized users represents a grave threat to an organization. According to the 2005 Computer Security Institute and Federal Bureau of Investigation Computer Crime and Security Survey, organizations reported that computer intrusions from inside sources accounted for nearly half of all incidents. You can secure your network perimeter with intrusion detection systems, firewalls, and virus scanners, but don’t neglect to monitor authorized users. The Linux Audit daemon can help you detect violations of your security policies. [Linux.com]
Detect insider threats with Linux auditing

Organizations of all sizes need to mitigate the risk of insider threats. Misconduct by authorized users represents a grave threat to an organization. According to the 2005 Computer Security Institute and Federal Bureau of Investigation Computer Crime and Security Survey, organizations reported that computer intrusions from inside sources accounted for nearly half of all incidents. You can secure your network perimeter with intrusion detection systems, firewalls, and virus scanners, but don’t neglect to monitor authorized users. The Linux Audit daemon can help you detect violations of your security policies.

[Linux.com]

0 Shares:
You May Also Like

Nokia N810 gets official

The new N810 by Nokia was announced this morning, the following is some of its features as well as a picture of its pull and slide qwerty keyboard. A much bigger phone, but with a screen this size and a faster processor and more ram this phone is definitely going to be on a few peoples wish list.

Top 40 Drupal Projects and Modules

A great list of modules that you can use to make your durpal shine. This site at the moment uses quite a few of them with further modiciation.
Top 40 Drupal Projects and Modules - Angie Byron, Robert Douglass, Jeff Eaton, and Jeff Robbins celebrate the 40th podcast with cake, champagne, and a countdown of the top 40 Drupal Projects. Here's the list (Many thanks to Greg Knaddison for the linkifying!).

Plans for Ubuntu 7.10 (Gutsy Gibbon) revealed

Another Ubuntu Release in the works!
To give you the rundown on the notable changes. The desktop version will be shipping with a new default windows manager that looks kinda like Mac OSX:


We are aiming for Ubuntu to be one of the first distributions to ship
the newly merged Compiz and Beryl projects (compcomm/OpenCompositing);
and enable it as the default window manager on systems with a supported
combination of hardware and drivers.



http://compiz.org


cube effect peel effect cube effect cube effect


And the addition of AppArmour to the Server version of Ubuntu:




For increased security, the AppArmor security framework will be
available as an option for those that want it.

The following is the original statement by the Ubuntu Development Manager.


Now that the set of feature goals planned for Ubuntu 7.10 ("Gutsy
Gibbon") has been largely finalised, it seems like an appropriate point
to announce the plan to the world.
While this is based on the approved blueprints for gutsy[0], which are
expected to be implemented in time, we do release according to a
time-based schedule[1] rather than a feature-based one. It is not
unusual for some planned features to be delayed to later releases;
happily it is also not unusual for our developers to introduce neat
features we weren't expecting either.
[0] https://blueprints.launchpad.net/ubuntu/gutsy/
[1] https://wiki.ubuntu.com/GutsyReleaseSchedule
Desktop
-------
Ubuntu 7.10 will ship with the latest edition of the GNOME desktop,
2.20, released a few weeks before our own release. Kubuntu 7.10 will
ship with KDE 3.5.7, and should also include packages of KDE 4.0 rc 2
available for optional side-by-side installation.
We are aiming for Ubuntu to be one of the first distributions to ship
the newly merged Compiz and Beryl projects (compcomm/OpenCompositing);
and enable it as the default window manager on systems with a supported
combination of hardware and drivers.
Systems which do not support compositing, or those with it disabled by
user option, will use the existing metacity window manager.
Hardware Support
----------------
Ubuntu 7.10 will use the 2.6.22 Linux kernel, along with our usual
selection of updated and additional drivers.
We will also use Xorg 7.3, giving better graphics hardware support and
the option of hotplugging monitors (RandR 1.2) and input devices
(xserver 1.4).
As well as the easier configuration for hotplugging-supported drivers
("no xorg.conf"), we also aim to have better configuration for other
drivers and fallback settings for when there is a problem.
Some "winmodem" chips will be supported out of the box, where drivers
are available; though this may rely on the use of restricted drivers.
Improvements to the Restricted Driver Manager are expected, allowing
drivers to be disabled by default and proposed by the manager. As
previously announced, an edition of Ubuntu without restricted enabled by
default is in the works.
Mobile
------
As announced, Ubuntu 7.10 will be first release to include a new Mobile
and Embedded edition targeted at hand-held devices and other
mobile/embedded form factors.
This integrates the Hildon UI components developed by Nokia into Ubuntu,
on top of the existing Ubuntu platform.
Server
------
Development of the Ubuntu 7.10 Server Edition has received a new boost
with a dedicated development team at Canonical working on it. Features
aiming to improve the experience for new and hobbyist administrators are
expected, as well as features desirable for small businesses and
organisations.
For increased security, the AppArmor security framework will be
available as an option for those that want it.
Stability and Performance
-------------------------
Ubuntu 7.10 should function significantly better when the filesystem is
full or otherwise not writable, allowing the user to make room and then
continue working without undue interruption.
Improvements to our "apport" bug and crash reporting infrastructure are
planned, in particular integration with our software installation and
upgrade tools so that problems installing or upgrading packages can be
easily reported with relevant information attached. Kernel crashes will
also be intercepted on reboot, and may be reported using the tool.
Our efforts to improve boot reliability and performance continue;
unlimited and reliable stackability of software raid (MD) devices, LVM
volumes and software-managed (devmapper) devices will be supported with
no runtime ordering issues.
Ubuntu 7.10 will ship with Upstart 0.5, which will provide flexible and
reliable service supervision. We expect to harness this for suitable
core services, and some boot process tasks, as appropriate.
Scott
--
Scott James Remnant
Ubuntu Development Manager
scott at ubuntu.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : https://lists.ubuntu.com/archives/ubuntu-devel-announce/attachments/20070619/d46e34e1/attachment.pgp


Fortier & Co. Makes Stylin’ Body Armor

Fortier & Co. Makes Stylin’ Body Armor -

Those of our readers who are aspiring rap artists should pay close attention. Frontier & Co. works with big name clothing designers like Burberry, YSL, Kenneth Cole, etc. to design body armor that blends in naturally with your apparel. Take for instance this beautiful trenchcoat from Burberry. It uses ballistic fibers that are stronger than steel, yet lightweight, to protect you from oncoming bullets. It also doubles as an incredibly handsome coat.

Unfortunately, protection and style do not come cheap. The aforementioned coat will set you back $2195 for the basic model. That means you could end up spending some serious cash if you’re worried about being taken out by an AK-47.

Fortier & Co. Body Armor [Luxist]

[CrunchGear]

Have Windows 2003 event viewer alerts sent to a network syslog server

I stumbled upon a little application called "evtsys" that was created by some Computer Engineering folks at Purdue University. The program runs on Microsft Windows 2000/2003/Vista 32-bit or 64-bit version and sends eventlog messages to a networked syslog server. You can then have syslog either print out the alert or write to a file.