Linux Server Diary

The trials and tribulations of a Linux newbie trying to setup a home server.

Saturday, April 23, 2005

Securing the Server

I have so many things I would like to do with my server, and I'm having a tough time deciding what to do next. Here's the list:
  • Setup a backup routine
  • Configure a local SMTP server
  • Secure the server so that I can allow IMAP connections from the outside
On the third subject, you may remember that I used to allow IMAP connections on the old server. I wasn't as worried about it since I only had mail on that box. However, now that I'm using the new server for file storage, a break-in could be a lot more damaging. Of the three things listed, securing the server is the one I am least confident that I'll be able to handle.

[Computer Break-in]


A quick Vivisimo search found some help:

A book called Real World Linux Security looks interesting. Reviewers seem to like it. One down side is that it is from 2002 and is a little pricey. I'd like something a little more current if possible.

The Linux Security Cookbook from O'Reilly may also be a good read. Like the previous title, there are many good reviews filed. The first edition was published in 2003.

Kevin Fenzi and Dave Wreski's Linux Security HOWTO is available on the web at several locations. It was written in 2004 and looks to cover many important issues.

There seem to be several books that approach this problem from the other side by discussing known security holes and procedural mistakes, rather than walking the reader through the process of reasonably securing a Linux machine. Titles such as Maximum Linux Security and Hacking Linux Exposed are examples. I suppose that the administrator of servers used in a commercial enterprise would need to know things at this level, but I just want to feel reasonably sure that along with my backups I'm being responsible.

I'd like to hear how others have approach the security issue. Please leave comments or send email to dashdrum at hotpop dot com.

Labels:

0 Comments:

Post a Comment

<< Home